Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3410 commits 1 branch 0 tags 494 MiB
Commit graph

3410 commits

This branch
This branch
All branches
Author SHA1 Message Date
Jack Wu
b67138e8ae sepolicy: gs101: fix charger_vendor permission denied 
[   27.025458][  T443] type=1400 audit(1644391560.640:11): avc: denied { search } for comm="android.hardwar" name="vendor" dev="tmpfs" ino=2 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:mnt_vendor_file:s0 tclass=dir permissive=0
[   26.563658][  T447] type=1400 audit(1644397622.588:5): avc: denied { search } for comm="android.hardwar" name="/" dev="sda1" ino=2 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:persist_file:s0 tclass=dir permissive=0
[   27.198144][  T442] type=1400 audit(1644398156.152:5): avc: denied { search } for comm="android.hardwar" name="battery" dev="sda1" ino=12 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:persist_battery_file:s0 tclass=dir permissive=0
[   27.327035][  T443] type=1400 audit(1644398785.276:5): avc: denied { read } for comm="android.hardwar" name="defender_active_time" dev="sda1" ino=17 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:persist_battery_file:s0 tclass=file permissive=0
[   27.355009][  T443] type=1400 audit(1644398785.276:6): avc: denied { write } for comm="android.hardwar" name="defender_charger_time" dev="sda1" ino=16 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:persist_battery_file:s0 tclass=file permissive=0
[   26.771705][  T444] type=1400 audit(1644379988.804:4): avc: denied { read } for comm="android.hardwar" name="specification_version" dev="sysfs" ino=56257 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=file permissive=0
[   27.898684][  T445] type=1400 audit(1644392754.928:8): avc: denied { read } for comm="android.hardwar" name="thermal_zone6" dev="sysfs" ino=15901 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:sysfs_thermal:s0 tclass=lnk_file permissive=0
[   29.180076][  T447] type=1400 audit(1644397625.200:9): avc: denied { write } for comm="android.hardwar" name="mode" dev="sysfs" ino=15915 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:sysfs_thermal:s0 tclass=file permissive=0
[   27.043845][  T444] type=1400 audit(1644379988.808:9): avc: denied { search } for comm="android.hardwar" name="thermal" dev="tmpfs" ino=899 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:thermal_link_device:s0 tclass=dir permissive=0
[   27.064916][  T444] type=1400 audit(1644379988.808:10): avc: denied { read } for comm="android.hardwar" name="u:object_r:vendor_battery_defender_prop:s0" dev="tmpfs" ino=306 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:vendor_battery_defender_prop:s0 tclass=file permissive=0
[   27.356266][  T444] type=1107 audit(1644404450.376:4): uid=0 auid=4294967295 ses=4294967295 subj=u:r:init:s0 msg='avc: denied { set } for property=vendor.battery.defender.state pid=457 uid=1000 gid=1000 scontext=u:r:charger_vendor:s0 tcontext=u:object_r:vendor_battery_defender_prop:s0 tclass=property_service permissive=0'

Bug: 218485039
Test: manually test, no avc: denied
Signed-off-by: Jack Wu <wjack@google.com>
Change-Id: I091dbbca35fb833e59fdbc234d74b90bfe74014c
Merged-In: I091dbbca35fb833e59fdbc234d74b90bfe74014c
 2022-03-23 11:27:45 -07:00
Roshan Pius
d0c2478e05 gs-policy: Remove obsolete uwb vendor service rules am: 3ffd8035a2 am: 45e114114e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17293462

Change-Id: Ie30676f2f92e4fde61b7e63f4ccae9809e69f8ae
 2022-03-22 03:52:31 +00:00
Roshan Pius
45e114114e gs-policy: Remove obsolete uwb vendor service rules am: 3ffd8035a2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17293462

Change-Id: I0bc3127f0b0e8acd79a4ab244a585e1459dbf88c
 2022-03-22 03:30:22 +00:00
Roshan Pius
5b2354536d gs-policy: Remove obsolete uwb vendor service rules am: 3ffd8035a2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17293462

Change-Id: Ic25a57e37eee40138bb546bfe5fbed701d834c0a
 2022-03-22 03:30:14 +00:00
Stephane Lee
117be90229 Fix off-mode (charger) sepolicy for the health interface 
Bug: 223537397
Test: Ensure that there are no selinux errors for sysfs_batteryinfo in
   off-mode charging

Change-Id: I46fa1b7552eb0655d0545538142131465a337f23
 2022-03-21 17:42:17 -07:00
Roshan Pius
3ffd8035a2 gs-policy: Remove obsolete uwb vendor service rules 
This service no longer exists in the UCI stack.

Bug: 186585880
Test: Manual UWB tests
Change-Id: I198a20f85cb24f9e38035fa037609d6541640d9e
 2022-03-21 09:19:16 -07:00
Armelle Laine
64c22491ca [automerger skipped] Merge changes from topic "trusty-dsu_fix-sc-qpr3" into sc-v2-dev-plus-aosp am: 92707e72ab -s ours am: fcc7d1dbae -s ours am: 516314f812 -s ours 
am skip reason: Merged-In I86055dd5601f8c2899d28f29bdfcb4dcb9b90d1b with SHA-1 b69ac35ff0 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16727208

Change-Id: Ifb500eea4d2fa4c461968761990cab1085cd3fba
 2022-03-18 05:16:14 +00:00
Stephen Crane
377bc556bb [automerger skipped] [automerged blank] Allow TEE storageproxyd permissions needed for DSU handling 2p: b9beafc9fa am: e48d11c26c -s ours am: 8a0cbfea6d -s ours am: 8b66c6449d -s ours 
am skip reason: Merged-In I86055dd5601f8c2899d28f29bdfcb4dcb9b90d1b with SHA-1 b69ac35ff0 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16727208

Change-Id: Ic4a04ea4a6c26c2ad0f10782266498c31a79fb73
 2022-03-18 05:16:13 +00:00
Armelle Laine
516314f812 [automerger skipped] Merge changes from topic "trusty-dsu_fix-sc-qpr3" into sc-v2-dev-plus-aosp am: 92707e72ab -s ours am: fcc7d1dbae -s ours 
am skip reason: Merged-In I86055dd5601f8c2899d28f29bdfcb4dcb9b90d1b with SHA-1 b69ac35ff0 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16727208

Change-Id: If1138137f6e515d104c53d43b482044f402bcd72
 2022-03-18 04:53:44 +00:00
Armelle Laine
11c508437e [automerger skipped] Merge changes from topic "trusty-dsu_fix-sc-qpr3" into sc-v2-dev-plus-aosp am: 92707e72ab -s ours am: fcc7d1dbae -s ours 
am skip reason: Merged-In I86055dd5601f8c2899d28f29bdfcb4dcb9b90d1b with SHA-1 b69ac35ff0 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16727208

Change-Id: I2719145ab55c0cad93770a4f126f57cb1686fc80
 2022-03-18 04:53:43 +00:00
Stephen Crane
8b66c6449d [automerger skipped] [automerged blank] Allow TEE storageproxyd permissions needed for DSU handling 2p: b9beafc9fa am: e48d11c26c -s ours am: 8a0cbfea6d -s ours 
am skip reason: Merged-In I86055dd5601f8c2899d28f29bdfcb4dcb9b90d1b with SHA-1 b69ac35ff0 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16727208

Change-Id: I3b0cb7e1e6081ed09bda6f16e92807d5bf4d261a
 2022-03-18 04:53:43 +00:00
Stephen Crane
2447cb94a3 [automerger skipped] [automerged blank] Allow TEE storageproxyd permissions needed for DSU handling 2p: b9beafc9fa am: e48d11c26c -s ours am: 8a0cbfea6d -s ours 
am skip reason: Merged-In I86055dd5601f8c2899d28f29bdfcb4dcb9b90d1b with SHA-1 b69ac35ff0 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16727208

Change-Id: I2b7c2f87f479e9ac36c1ed865a1c2084b560ad6f
 2022-03-18 04:53:41 +00:00
Armelle Laine
fcc7d1dbae [automerger skipped] Merge changes from topic "trusty-dsu_fix-sc-qpr3" into sc-v2-dev-plus-aosp am: 92707e72ab -s ours 
am skip reason: Merged-In I86055dd5601f8c2899d28f29bdfcb4dcb9b90d1b with SHA-1 b69ac35ff0 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16727208

Change-Id: I485b582f2dd3df1d6c9f25e3df31094e82e8bfc0
 2022-03-18 04:31:42 +00:00
Stephen Crane
8a0cbfea6d [automerger skipped] [automerged blank] Allow TEE storageproxyd permissions needed for DSU handling 2p: b9beafc9fa am: e48d11c26c -s ours 
am skip reason: Merged-In I86055dd5601f8c2899d28f29bdfcb4dcb9b90d1b with SHA-1 b69ac35ff0 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16727208

Change-Id: I4e9ded6165f8e1db1aed145f8156347de70d5e73
 2022-03-18 04:31:40 +00:00
Armelle Laine
92707e72ab Merge changes from topic "trusty-dsu_fix-sc-qpr3" into sc-v2-dev-plus-aosp 
* changes:
  [automerged blank] Allow TEE storageproxyd permissions needed for DSU handling 2p: b9beafc9fa
  Allow TEE storageproxyd permissions needed for DSU handling
 2022-03-18 04:14:36 +00:00
Darren Hsu
d4d02b4cfe sepolicy: reorder genfs labels for system suspend am: 2018f942a7 am: 83e88065fc am: 186f2306d7 am: 61e944b081 am: f714240360 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2026063

Change-Id: I4a900092602a6cb10fd4b5362a4a8811b13f4a3a
 2022-03-17 06:31:55 +00:00
Darren Hsu
a7016645ef sepolicy: reorder genfs labels for system suspend am: 2018f942a7 am: 83e88065fc am: 186f2306d7 am: 61e944b081 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2026063

Change-Id: I0b7acc879c1a2dfc824ea549e74852e076d385cc
 2022-03-17 05:27:43 +00:00
Darren Hsu
f714240360 sepolicy: reorder genfs labels for system suspend am: 2018f942a7 am: 83e88065fc am: 186f2306d7 am: 61e944b081 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2026063

Change-Id: I1a0978f7f2b47135559e961e3f3a80d6c46c9d7b
 2022-03-17 05:27:32 +00:00
Darren Hsu
61e944b081 sepolicy: reorder genfs labels for system suspend am: 2018f942a7 am: 83e88065fc am: 186f2306d7 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2026063

Change-Id: Ieebbc5aafe7ddabe3560310dd599573d0ced3caf
 2022-03-17 04:54:29 +00:00
Darren Hsu
186f2306d7 sepolicy: reorder genfs labels for system suspend am: 2018f942a7 am: 83e88065fc 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2026063

Change-Id: I732b1d982c15846e2b9ae1365894b4d0ea0f424f
 2022-03-17 03:55:26 +00:00
Darren Hsu
83e88065fc sepolicy: reorder genfs labels for system suspend am: 2018f942a7 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2026063

Change-Id: Ic1a74c930cc6ade12dc6ea7a42f9ed347a491c95
 2022-03-17 02:49:16 +00:00
samou
753edef5f6 Move ODPM file rule to pixel sepolicy 
Bug: 213257759
Change-Id: Ic9a89950a609efe5434dfedc0aa023312c4192d9
 2022-03-16 06:05:52 +00:00
Darren Hsu
2018f942a7 sepolicy: reorder genfs labels for system suspend 
Bug: 223683748
Test: check bugreport without relevant avc denials
Change-Id: I66ede69d94bb3cb1a446e1cd5f3250b6f9b7f7e9
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-03-15 11:48:39 +08:00
TreeHugger Robot
c019372a17 Merge "sepolicy: reorder genfs labels for system suspend" into tm-dev am: e4dfe23d99 am: 05e3349229 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17146134

Change-Id: Ia739df193845bb2c78b5a1bebb4ea514833f7996
 2022-03-15 03:40:34 +00:00
TreeHugger Robot
05e3349229 Merge "sepolicy: reorder genfs labels for system suspend" into tm-dev am: e4dfe23d99 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17146134

Change-Id: I0db3bd3fa8aab0b09a58c0e33d2e0e37961e7fe9
 2022-03-15 03:16:17 +00:00
TreeHugger Robot
4379ef3fdb Merge "sepolicy: reorder genfs labels for system suspend" into tm-dev am: e4dfe23d99 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17146134

Change-Id: I0b6de431f3f0905b5304d49242722d87c2b1d61a
 2022-03-15 03:15:11 +00:00
TreeHugger Robot
e4dfe23d99 Merge "sepolicy: reorder genfs labels for system suspend" into tm-dev 2022-03-15 02:52:34 +00:00
TreeHugger Robot
c68e3856e1 Merge "gs-sepolicy(uwb): Changes for new UCI stack" into tm-dev am: 85f293ab62 am: 8c1cd23ce7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16945227

Change-Id: Icc52294ed920876657c7a869282ecd13ef6837bd
 2022-03-14 17:03:52 +00:00
TreeHugger Robot
8c1cd23ce7 Merge "gs-sepolicy(uwb): Changes for new UCI stack" into tm-dev am: 85f293ab62 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16945227

Change-Id: Icbefda5f6814c27ede2d7da8e761b52dc5d43db9
 2022-03-14 16:40:38 +00:00
TreeHugger Robot
ce5590c9c1 Merge "gs-sepolicy(uwb): Changes for new UCI stack" into tm-dev am: 85f293ab62 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/16945227

Change-Id: I0a32fa5a6ecce07104755a689fb15e041a0d2d39
 2022-03-14 16:40:35 +00:00
TreeHugger Robot
85f293ab62 Merge "gs-sepolicy(uwb): Changes for new UCI stack" into tm-dev 2022-03-14 16:09:09 +00:00
TeYuan Wang
3ddc4c7bf8 Move libperfmgr thermal rules to pixel-sepolicy am: f7aba10674 am: fe826745b3 am: faec59da79 am: 6052118e99 am: 812fd9c717 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2020535

Change-Id: If4ea1e049cb1abaa5bc3e291f9c7851fced2451b
 2022-03-14 07:06:06 +00:00
TeYuan Wang
b264420d23 Move libperfmgr thermal rules to pixel-sepolicy am: f7aba10674 am: fe826745b3 am: faec59da79 am: 6052118e99 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2020535

Change-Id: Ie4e7b40564d2cd1d48c987a3f6fe5f7bceeba96e
 2022-03-14 06:45:37 +00:00
TeYuan Wang
812fd9c717 Move libperfmgr thermal rules to pixel-sepolicy am: f7aba10674 am: fe826745b3 am: faec59da79 am: 6052118e99 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2020535

Change-Id: Ia3e15c8a4af73167f65c5933b14fdecf06b64b45
 2022-03-14 06:44:14 +00:00
TeYuan Wang
6052118e99 Move libperfmgr thermal rules to pixel-sepolicy am: f7aba10674 am: fe826745b3 am: faec59da79 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2020535

Change-Id: I44c643184de6294c407c9fc1670b0631faac3e45
 2022-03-14 06:22:59 +00:00
TeYuan Wang
faec59da79 Move libperfmgr thermal rules to pixel-sepolicy am: f7aba10674 am: fe826745b3 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2020535

Change-Id: I919c688388bcd8cc320068f6139432b58b3f0ea4
 2022-03-14 06:02:51 +00:00
TeYuan Wang
fe826745b3 Move libperfmgr thermal rules to pixel-sepolicy am: f7aba10674 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2020535

Change-Id: Ie191a767c8b3450df75a37e36deebf5f20242575
 2022-03-14 05:40:21 +00:00
Kris Chen
bd8bdfb845 Allow hal_fingerprint_default to access fwk_sensor_hwservice am: 9b54bf3665 am: 41ecb11342 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17149561

Change-Id: I5218f78ad72eb5fee7674910e18ff38c51fa543c
 2022-03-14 03:11:10 +00:00
Kris Chen
41ecb11342 Allow hal_fingerprint_default to access fwk_sensor_hwservice am: 9b54bf3665 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17149561

Change-Id: I61c3a00cd9e0ce8b8a6adfbf0310459afe9112df
 2022-03-14 02:59:35 +00:00
Kris Chen
a79e5a21d1 Allow hal_fingerprint_default to access fwk_sensor_hwservice am: 9b54bf3665 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17149561

Change-Id: I3443e7e27508ae8fc5cc119ce1e722fdc36c2818
 2022-03-14 02:59:29 +00:00
eddielan
17f6a0a1ba sepolicy: Add policy for persist.vendor.udfps 
Bug: 222175797
Test: Build Pass
Change-Id: I978325adb5cf25a590b307a38ce2deac4034e656
 2022-03-14 10:57:53 +08:00
TeYuan Wang
f7aba10674 Move libperfmgr thermal rules to pixel-sepolicy 
Bug: 213257759
Bug: 188579571
Test: build
Change-Id: I9893d53055594bfb4e4dba3d68b53f0fe132617d
 2022-03-10 21:28:33 +08:00
Kris Chen
9b54bf3665 Allow hal_fingerprint_default to access fwk_sensor_hwservice 
Fix the following avc denial:
avc:  denied  { find } for interface=android.frameworks.sensorservice::ISensorManager sid=u:r:hal_fingerprint_default:s0 pid=1258 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:fwk_sensor_hwservice:s0 tclass=hwservice_manager permissive=0

Bug: 197789721
Test: build and test fingerprint on device.
Change-Id: I7494f28e69e5a1b660dc7fbaa528b1088048723b
 2022-03-10 16:53:22 +08:00
TreeHugger Robot
d6dc27040e Merge "Update avc error on ROM 8276520" into tm-dev am: a1f73d0faa am: e2d47ba125 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17131103

Change-Id: I54ac7763edfcfa31912694e524e626caa2cdbb6c
 2022-03-10 03:27:29 +00:00
TreeHugger Robot
85f4543496 Merge "Update avc error on ROM 8276520" into tm-dev am: a1f73d0faa 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17131103

Change-Id: I255ba3211db9c8422e041e65f36db7141379b724
 2022-03-10 03:00:41 +00:00
TreeHugger Robot
e2d47ba125 Merge "Update avc error on ROM 8276520" into tm-dev am: a1f73d0faa 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17131103

Change-Id: Ie0ebdab2e78f4dfd8612b2c5a346fbc2328a22ae
 2022-03-10 03:00:35 +00:00
TreeHugger Robot
a1f73d0faa Merge "Update avc error on ROM 8276520" into tm-dev 2022-03-10 02:40:10 +00:00
Darren Hsu
44fcba7efd sepolicy: reorder genfs labels for system suspend 
Bug: 223683748
Test: check bugreport without relevant avc denials
Change-Id: I66ede69d94bb3cb1a446e1cd5f3250b6f9b7f7e9
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-03-10 09:19:31 +08:00
Michael Eastwood
58b95e5278 Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" am: 82a110ba3b am: a45d075fd0 am: ada03db5e0 am: ecb7a69d78 am: bcf33b6879 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2016899

Change-Id: Ife60bc844b1e6be460dcd6140ef9092ed43325b6
 2022-03-09 19:53:07 +00:00
Michael Eastwood
bcf33b6879 Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" am: 82a110ba3b am: a45d075fd0 am: ada03db5e0 am: ecb7a69d78 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2016899

Change-Id: I278288a3290cb78ffcfefaf2fd7eb6a5d67a1a13
 2022-03-09 19:31:05 +00:00