Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3861 commits 1 branch 0 tags 494 MiB
Commit graph

3861 commits

This branch
This branch
All branches
Author SHA1 Message Date
Wilson Sung
12abc8ef4a Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 287169829
Change-Id: I0a245d81ae243a0461c19583e19912566062bb71
 2023-06-14 15:30:31 +08:00
Jenny Ho
03c6806df9 Add permissions for read maxfg debugfs 
Bug: 286001476
Change-Id: I787a8af17963c612dbbb9172fc539172f6633ca2
Signed-off-by: Jenny Ho <hsiufangho@google.com>
 2023-06-06 16:32:12 +08:00
Donnie Pollitz
7a95093a60 Merge "Allow vendor_init to fix permissions of TEE data file" into udc-dev 2023-05-26 07:17:41 +00:00
TreeHugger Robot
1518744c74 Merge "thermal: thermal_metrics: Update selinux to reset stats" into udc-dev 2023-05-25 05:28:46 +00:00
Donnie Pollitz
59c1582928 Allow vendor_init to fix permissions of TEE data file 
Background:
* vendor_init needs to be able to possibly fix ownership of
  tee_data_file

Bug: 280325952
Test: Changed permissions and confirmed user transitions
Change-Id: I26aaf70548a3ad132e5d0da2c10a2753a0954ffc
Signed-off-by: Donnie Pollitz <donpollitz@google.com>
 2023-05-24 16:51:22 +02:00
Jin Jeong
6f8bcc95aa Merge "[GS101][eSIM] Add system properties rule" into udc-dev 2023-05-24 01:07:11 +00:00
Jin Jeong
ec56e377c5 Merge changes from topic "esim_prop" into udc-dev 
* changes:
  Revert "Fix SELinux error for com.google.android.euicc"
  Revert "Fix LPA crash due to selinux denial"
 2023-05-24 01:07:11 +00:00
Jinyoung Jeong
b6d74a5196 [GS101][eSIM] Add system properties rule 
Bug: 279988311
Test: https://fusion2.corp.google.com/d517f34a-3242-40b1-adf6-acb6035ff2cb , b/282901698
Change-Id: I6caed744d2bba7882f80f8ace229f6c4b4133c65
 2023-05-17 06:53:34 +00:00
Jin Jeong
15e1832396 Revert "Fix SELinux error for com.google.android.euicc" 
Revert submission 22899490-euicc_selinux_fix

Reason for revert: b/279988311 we rename the vendor.modem property so we don't need to add the new rules

Bug: 279988311
Reverted changes: /q/submissionid:22899490-euicc_selinux_fix

Change-Id: I72da756853a540d6251e074313b1880c9c9038e8
 2023-05-16 12:18:21 +00:00
Jin Jeong
d569008b77 Revert "Fix LPA crash due to selinux denial" 
Revert submission 22955599-euicc_selinux_fix2

Reason for revert: b/279988311 we rename the vendor.modem property so we don't need to add the new rules

Bug: 279988311
Reverted changes: /q/submissionid:22955599-euicc_selinux_fix2

Change-Id: I6421319ba280fb11d05f2e107754449e54e5afa4
 2023-05-16 01:05:47 +00:00
allieliu
a1f81bef7a vendor_init: add esim_modem_prop 
Bug: 279988311

Change-Id: I5f8759baff65073b758ce335772e72a383827d05
Signed-off-by: allieliu <allieliu@google.com>
 2023-05-16 00:58:49 +00:00
Wilson Sung
20364fe3b3 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 281814691
Change-Id: I2f73f5b75aec1145dee615499a7442400defbf8a
 2023-05-11 06:43:02 +00:00
sashwinbalaji
38640e48dd thermal: thermal_metrics: Update selinux to reset stats 
Bug: 193833982
Test: Local build and verify statsD logs
adb shell cmd stats print-logs && adb logcat -b all | grep -i 105045
Change-Id: I79710aa05ff52caf9d08f21fa7a36c46a1b2a3d9
 2023-05-08 05:15:49 +00:00
Jinyoung Jeong
d3a0214801 Fix LPA crash due to selinux denial 
Bug: 280336861
Test: No crash found during LPA basic tests: download eSIM,
enable/disalbe eSIM.

Change-Id: I15227415993ef3975e183f500711416f8eb8e62c
 2023-05-02 11:02:39 +00:00
TreeHugger Robot
eccb905391 Merge "[TSV2] Remove tcpdump sepolicy from gs101 and move sepolicy to gs-common" into udc-dev 2023-05-02 03:16:03 +00:00
Jin Jeong
5b3b2c2b1c Merge "Fix SELinux error for com.google.android.euicc" into udc-dev 2023-04-30 02:51:46 +00:00
martinwu
3785b0d271 [TSV2] Remove tcpdump sepolicy from gs101 and move sepolicy to gs-common 
Bug: 264490014
Test: 1. Enable tcpdump_logger always-on function
      2. Dump bugreport
      3. Pull dumpstate_board.bin and chagne it to zip
      4. Unzip dumpstate_board.zip and check if tcpdump files
         are there.
Change-Id: Iea67de1e645592c6993a3ee6f2ca8e6bf3c6c949
Merged-In: Iea67de1e645592c6993a3ee6f2ca8e6bf3c6c949
 2023-04-29 13:03:01 +00:00
Jinyoung Jeong
42a0c82065 Fix SELinux error for com.google.android.euicc 
bug: 279548423
Test: http://fusion2/bb76429b-7d84-4e14-b127-8458abb3e2ed
Change-Id: I00bdf71f04eec985147189eb1b474c7ff6797023
 2023-04-28 13:39:35 +00:00
Bruno BELANYI
88f5acac54 Merge changes from topic "hal_neuralnetworks_armnn-selinux-exceptions - udc" into udc-dev 
* changes:
  Remove 'hal_neuralnetworks_armnn' '/data' access exception
  Remove 'hal_neuralnetworks_armnn' sysprop exceptions
  Add ArmNN config sysprops SELinux rules
 2023-04-27 08:06:48 +00:00
Martin Wu
e30ee618d6 Revert "Remove tcpdump sepolicy from gs101 and move sepolicy to ..." 
Revert submission 22814097-Fix-tcpdump-sepolicy

Reason for revert: build break

Reverted changes: /q/submissionid:22814097-Fix-tcpdump-sepolicy

Change-Id: I3d47d22250b435416c4ca44ff1956569662591ee
 2023-04-27 02:20:55 +00:00
martinwu
6be45972bb Remove tcpdump sepolicy from gs101 and move sepolicy to gs-common 
Bug: 264490014
Test: 1. Enable tcpdump_logger always-on function
      2. Dump bugreport
      3. Pull dumpstate_board.bin and chagne it to zip
      4. Unzip dumpstate_board.zip and check if tcpdump files
         are there.
Change-Id: I3d0cb388cf9b7c96d2856f46c0440b4017477480
 2023-04-27 01:38:04 +00:00
Bruno BELANYI
9702cb57f2 Remove 'hal_neuralnetworks_armnn' '/data' access exception 
The mali driver has been configured not to look there anymore.

Bug: 205779871
Bug: 264489188
Test: manual - reboot device and check the absence of AVC denials
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:347dfbe925e2218189d82d37697540af25401a22)
Merged-In: Ic8bf0d51414461689ee5768821a2a1acda923c41
Change-Id: Ic8bf0d51414461689ee5768821a2a1acda923c41
 2023-04-26 17:21:18 +00:00
Bruno BELANYI
b4001ec206 Remove 'hal_neuralnetworks_armnn' sysprop exceptions 
Bug: 205202540
Bug: 264489188
Test: manual - reboot device and check the absence of AVC denials
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:e4254a16aa516f5960f48732b078aad4ed63df6f)
Merged-In: Ied38dc6b323911aa909f4f42b66ee404fc7062fa
Change-Id: Ied38dc6b323911aa909f4f42b66ee404fc7062fa
 2023-04-26 17:20:54 +00:00
Bruno BELANYI
a668555419 Add ArmNN config sysprops SELinux rules 
Bug: 205202540
Bug: 264489188
Test: manual - reboot device and check the absence of AVC denials
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:0f99f3e63450befc661d38827e9afc853ca9257a)
Merged-In: I70c89dcc4b2bbe665d69cc4be1ac2f6cf8155a10
Change-Id: I70c89dcc4b2bbe665d69cc4be1ac2f6cf8155a10
 2023-04-26 08:12:54 +00:00
Joseph Jang
37e90d3f3a Merge "Move recovery.te to device/google/gs-common/dauntless/sepolicy" into udc-dev 2023-04-26 03:24:40 +00:00
Joseph Jang
ac6f4e0d00 Move recovery.te to device/google/gs-common/dauntless/sepolicy 
Bug: 279381809
Change-Id: If41449f97e729053caa98930cc7f2ef9fd6d844e
 2023-04-24 08:09:23 +00:00
Adam Shih
843b0ad6b4 Update error on ROM 9930000 
Bug: 277989397
Bug: 277155042
Bug: 277989067
Test: scanBugreport
Change-Id: I38a3f852e2f5f0f6895db15141825909361a267d
Merged-In: I38a3f852e2f5f0f6895db15141825909361a267d
 2023-04-24 09:58:14 +08:00
jimsun
26e3d2abd0 rild: allow rild to ptrace 
06-20 18:47:41.940000  8708  8708 I auditd  : type=1400 audit(0.0:7): avc: denied { ptrace } for comm="libmemunreachab" scontext=u:r:rild:s0 tcontext=u:r:rild:s0 tclass=process permissive=0
06-20 18:47:41.940000  8708  8708 W libmemunreachab: type=1400 audit(0.0:7): avc: denied { ptrace } for scontext=u:r:rild:s0 tcontext=u:r:rild:s0 tclass=process permissive=0

Bug: 263757077
Test: manual
Change-Id: I35ad31e6cc4e2942c671e51720f28a9abce3dcca
 2023-04-18 07:48:32 +00:00
Bruno BELANYI
bf8675143b Merge "Use restricted vendor property for ARM runtime options" into udc-dev 2023-04-17 10:59:23 +00:00
Xin Li
ab4e3e986a [automerger skipped] Merge TQ2A.230405.003 am: 82232b6423 am: 26cfa34cb7 -s ours am: 9505121ada -s ours 
am skip reason: Merged-In I8c265919f7ae4b18aa304b0a584536d2a0f4b27a with SHA-1 9828cc747a is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: I07cabb680ee2172a60bdc37f9a61a2af528844d1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 20:57:06 +00:00
Xin Li
9505121ada [automerger skipped] Merge TQ2A.230405.003 am: 82232b6423 am: 26cfa34cb7 -s ours 
am skip reason: Merged-In I8c265919f7ae4b18aa304b0a584536d2a0f4b27a with SHA-1 9828cc747a is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: Ie91202c445df25847c5bcd37cf8224e7bae6536e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 20:22:54 +00:00
Xin Li
26cfa34cb7 Merge TQ2A.230405.003 am: 82232b6423 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: I92a1d4dff4571e4aa8f11ca6f71978d549bfc812
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 19:00:54 +00:00
Mike McTernan
b46b936df8 confirmationui: Allow securedpud to access the systemsuspend HAL. 
In order to use a wakelock, securedpud needs access to binder and the
system_suspend_service HAL.

Bug: 274851247
Test: manual, trigger TUI and check for AVC denials
Change-Id: Ibd27d32e092269f91d6557ebddcd27d4ccf1355a
 2023-04-11 13:04:53 +00:00
Xin Li
82232b6423 Merge TQ2A.230405.003 
Bug: 271343657
Merged-In: I8c265919f7ae4b18aa304b0a584536d2a0f4b27a
Change-Id: I61dd94e23d10e5405135626487ddadddb1f89f9f
 2023-04-10 23:55:29 -07:00
Wilson Sung
c41cb55d4f Update SELinux error 
Test: scanBugreport
Bug: 277528855
Change-Id: Ia59cd4045433f2e82a602672fe533e27e87b0275
 2023-04-10 11:02:52 +08:00
Adam Shih
d186da49ea Merge "use dumpsate from gs-common" into udc-dev 2023-04-10 01:11:17 +00:00
Wilson Sung
816622f352 Update error on ROM 9891405 
Bug: 277155042
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: Ic2129188db52ec85a8afaf92c507a42695e82804
 2023-04-07 14:56:21 +08:00
Adam Shih
240c435174 use dumpsate from gs-common 
Bug: 273380985
Test: adb bugreport
Change-Id: I9092e2e004e3ad0b3667b948ed4d633cd50d088c
 2023-04-07 13:02:21 +08:00
Victor Liu
d87df92740 Merge "uwb: add permission for ccc ranging" into udc-dev 2023-04-06 20:57:49 +00:00
feiyuchen
391f954d5d Allow camera HAL to access edgetpu_app_service in gs101 
We are seeing SELinux error b/276911450. It turns out that I only added the SE policy for 2023 device ag/22248613, but I forgot to add it for gs101 and gs201. So I created this CL.

See more background in ag/22248613.

Test: For gs201, I tested on my Pixel7 and I saw no more error. For gs101, I just did mm.
Bug: 275016466
Bug: 276911450
Change-Id: I3d691128daa2d7115f80c378f7b42de334cd8ed5
 2023-04-04 21:32:36 +00:00
Bruno BELANYI
7838603828 Use restricted vendor property for ARM runtime options 
They need to be read by everything that links with libmali, but we don't
expect anybody to actually write to them.

Bug: b/272740524
Test: CtsDeqpTestCases (dEQP-VK.protected_memory.stack.stacksize_*)
Change-Id: I963fb55fb92ef5f91426dbec913c901e58cacf64
 2023-04-04 13:04:00 +00:00
Victor Liu
a55bb8682c uwb: add permission for ccc ranging 
Bug: 255649425
Change-Id: I05aac586146bf25569b5f6251d2fd62b921631be
 2023-03-31 14:04:13 -07:00
Wilson Sung
083b5fe640 Merge "Update SELinux error" into udc-dev 2023-03-31 10:18:47 +00:00
Wilson Sung
accb299d5d Update SELinux error 
Test: scanBugreport
Bug: 276385941
Change-Id: I54627db892f95ac7ee6e9b08762b7a72793d4a00
 2023-03-31 10:55:58 +08:00
Wilson Sung
28afe7393f Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 275002227
Change-Id: If2133d83efbfa00ee9643a25047f465c60d2d3c4
 2023-03-29 06:34:07 +00:00
Adam Shih
7cc3817f71 Move power dump text section out of hal_dumpstate_default 
Bug: 273380985
Test: adb bugreport
Change-Id: I77b59ea719055972429b2b8a1349e52e0e1fe395
 2023-03-28 15:03:22 +08:00
Adam Shih
5bfe1bdd6d Move camera text dump to dump_gs101 
Bug: 273380985
Test: adb bugreport
Change-Id: Iba138e608885a1215515ec8cc5f5e997dfcfcf3f
 2023-03-27 10:37:02 +08:00
TreeHugger Robot
feef477d2f Merge "Remove tracking_denials/hal_fingerprint_default.te" into udc-dev 2023-03-27 01:37:37 +00:00
chenkris
2bd6ae14f3 Remove tracking_denials/hal_fingerprint_default.te 
Bug: 187015705
Bug: 183338543
Test: build and test fingerprint on device.
Test: no fingerprint avc denials in logcat.
Change-Id: I1dde2c0d8c8ab2610c2b8147c15ac5c9f813345a
 2023-03-24 07:40:05 +00:00
Adam Shih
e7ea94d8e1 Move cma dump to itself 
Bug: 273380985
Test: adb bugreport
Change-Id: I40ecb631c7fbbea216f5c56857b92152c997e466
 2023-03-24 13:56:31 +08:00