Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3861 commits 1 branch 0 tags 494 MiB
Commit graph

225 commits

Author SHA1 Message Date
Adam Shih
4d9aa0b28f use devfreq dump from gs-common 
Bug: 273380985
Test: adb bugreport
Change-Id: I0ea6767fd7640c2ee1be66f659f94c15cb4766cd
 2023-03-21 12:41:23 +08:00
Adam Shih
7d3f25d95b Move display dump to gs-common 
Bug: 269212897
Test: adb bugreport
Change-Id: Id40661687bbd04d7eba4790dc5fe17ca5c79e47d
 2023-03-07 13:01:05 +08:00
Adam Shih
9a7bb8df86 Move memory dump to gs-common 
Bug: 240530709
Test: adb bugreport
Change-Id: I78433d8d170af54a4daee6c9a9218ce35e78e730
 2023-02-13 14:56:30 +08:00
Chungkai Mei
f5ee8054e0 sepolicy: fix avc denial 
fix avc denial when applying aosp/2333702

Bug: 261678056
Test: boot without avc denial
Change-Id: I4674a5cb13f2f06f011c380699353b1a561ad290
Signed-off-by: Chungkai Mei <chungkai@google.com>
 2023-01-05 09:40:42 +00:00
Taylor Nelms
807f7b2efa Modify permissions to allow dumpstate process to access decon_counters node 
Bug: 240346564
Test: Build for Oriole device with "user" build, check bugreport for decon_counters content
Change-Id: I71883632857e76cfead39b16560b3695e13a6746
Signed-off-by: Taylor Nelms <tknelms@google.com>
 2022-12-16 16:51:12 +00:00
Adam Shih
35492ad70f use touch dump from gs-common 
Bug: 256521567
Test: adb bugreport
Change-Id: I02a5831e6282eb431f2cbf89941ef188e801bd09
 2022-11-28 14:08:51 +08:00
Cheng Chang
3ed3d20133 gps: nstandby path depend on platform 
Bug: 259353063
Test: no avc denied about nstandby
Change-Id: Ia90cf2d66e4f6071f38db815d4458889b278f025
 2022-11-24 02:20:58 +00:00
TreeHugger Robot
d95b753282 Merge "remove raven touch dump" 2022-11-16 07:42:25 +00:00
Adam Shih
36dc4e181d move thermal dump to gs-common 
Bug: 257880034
Test: adb bugreport
Change-Id: Ib3efb17fcc3f69fac565599cffb06eff83e7cc8e
 2022-11-15 14:02:15 +08:00
Adam Shih
84b32a700f move edgetpu to gs-common 
Bug: 258114806
Test: build pass
Change-Id: Ie576f6511dc60db59bc44567ff0a929506224203
 2022-11-08 13:15:28 +08:00
Adam Shih
b00f9adf61 remove raven touch dump 
Bug: 256521567
Test: adb bugreport
Change-Id: Idfa891c545994f457004b99be1ddda14f971142f
 2022-11-08 10:05:37 +08:00
Adam Shih
630a5af43b Merge "move brcm gps solution to gs-common" 2022-10-28 05:33:40 +00:00
Adam Shih
07a5f33a8d move brcm gps solution to gs-common 
Bug: 254758553
Test: google map can locate on pixel
Change-Id: Iaf954f3af043dc5080b0be473ed8b78b1c6d0e22
 2022-10-27 09:37:46 +08:00
Sam Ou
768196f828 sepolicy: fix odpm avc denials 
add wakeup permissions for odpm driver
since we update acc_data based on alarmtimer

Bug: 250813284
Change-Id: Id7f70d02475a03e53a206dde3b8efa584cacef85
Signed-off-by: Sam Ou <samou@google.com>
 2022-10-24 10:45:55 +08:00
Adam Shih
72aa5a98fc move aoc settings to gs-common 
Bug: 248426917
Test: boot with aoc launched
Change-Id: I891767f10dfac7528b76e27fd2756b77ed46e45c
 2022-10-20 11:41:19 +08:00
TreeHugger Robot
688b2b08f3 Merge "sepolicy: ignore and fix avc denial" 2022-10-17 04:51:55 +00:00
Chungkai Mei
4dc474a7b3 sepolicy: ignore and fix avc denial 
ignore and fix avc denial

Bug: 228181404
Test: boot without avc denial
Signed-off-by: Chungkai Mei <chungkai@google.com>
Change-Id: I83640aae46bd1823c4e4dcf15f00e64fa7a87aef
 2022-10-17 02:15:45 +00:00
Adam Shih
7c74638f0c Merge "move soc dump to gs-common" 2022-10-05 02:14:15 +00:00
Adam Shih
0508a69dbd move soc dump to gs-common 
Bug: 248428203
Test: adb bugreport
Change-Id: I09c8279685626125ab1c5a6b73d1143de7ae2f1d
 2022-10-04 12:56:28 +08:00
Vaibhav Devmurari
ac878d3f62 Add SePolicy for system_server accessing sysfs for USB devices 
Add SePolicy to allow Android input manager accessing sysfs nodes
for external USB devices

To support input device lights manager feature in frameworks, provide
sysfs node access to system server process.
DD: go/pk_backlight_control (For keyboard backlight control for external
keyboards)

Kernel provides a standardized LED interface to expose LED controls
over sysfs: https://docs.kernel.org/leds/leds-class.html
The feature will be provided for devices with kernel sysfs class led
support and vendor kernel driver for input controllers that do have
lights. The kernel sysfs class led support is a kernel config option
(LEDS_CLASS), and an input device driver will create the sysfs class
node interface.
By giving system_server the access to these sysfs nodes, the feature
will work on devices with the kernel option and kernel input/hid driver
support. We do use CTS tests to enforce the kernel options and the
input device drivers.

What's already supported?
- We already support access to UHID sysfs node which used for all
bluetooth based external peripherals

What's included in this CL?
- Adding support to access sysfs nodes for USB based external devices

Test: manual
Bug: 245506418
Change-Id: Ieb55614ed651b85f0e6752a17d02f4d370fd1e6f
 2022-10-03 14:52:52 +00:00
Adam Shih
3cd9384799 dump f2fs in gs-common 
Bug: 248143736
Test: adb bugreport
Change-Id: I902030f7960b2247e9b8e913e78d447741423efb
 2022-09-27 17:03:38 +08:00
JJ Lee
8c36ac66d8 sepolicy: add nodes for aoc memory votes stats am: f07279785d am: 479f2286d7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19739216

Change-Id: Icdd11f323d212c2e10a42108afbd91674dce7a3c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-08 06:00:10 +00:00
JJ Lee
479f2286d7 sepolicy: add nodes for aoc memory votes stats am: f07279785d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19739216

Change-Id: I795b972da3d42e7394fbd954f041934370fbd77a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-08 05:16:23 +00:00
JJ Lee
f07279785d sepolicy: add nodes for aoc memory votes stats 
Bug: 223674292
Test: build pass, not blocking bugreport
Change-Id: I4732c8b3271f553edc423ac115eb8a6afaebff37
Signed-off-by: JJ Lee <leejj@google.com>
 2022-09-07 11:45:18 +00:00
Roger Fang
d5e2902e91 sepolicy: add permission for AMS rate of pixelstats-vend am: a8eab1aaaf am: 5321008d5c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19711052

Change-Id: If5dad118d1a1c845a84d3b53baff485c58cce03c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-30 05:45:30 +00:00
Roger Fang
5321008d5c sepolicy: add permission for AMS rate of pixelstats-vend am: a8eab1aaaf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19711052

Change-Id: I61f3cfbb14f0f34bf0af2eaba1922b9aed4b7948
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-30 05:15:55 +00:00
Roger Fang
a8eab1aaaf sepolicy: add permission for AMS rate of pixelstats-vend 
I pixelstats-vend: type=1400 audit(0.0:1025): avc: denied { read } for name="ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
I pixelstats-vend: type=1400 audit(0.0:1026): avc: denied { open } for path="/sys/devices/platform/audiometrics/ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
pixelstats-vend: type=1400 audit(0.0:1027): avc: denied { getattr } for path="/sys/devices/platform/audiometrics/ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1

Bug: 239508478
Test: Manually test passed

Signed-off-by: Roger Fang <rogerfang@google.com>
Change-Id: I5c47003bed664f2cd9b6fe3630a6445aca27d10d
 2022-08-30 04:36:41 +00:00
Denny cy Lee
ea1580002f HwInfo: Move hardware info sepolicy to pixel common 
Bug: 215271971
Test: no sepolicy for hardware info

Signed-off-by: Denny cy Lee <dennycylee@google.com>
Change-Id: Ia7bfd171fe724848e9a6f0c1adab59402d2788a9
 2022-08-02 07:43:56 +00:00
matthuang
c061348b1c Add security context for com.google.usf.non_wake_up/wakeup. am: c96220c282 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19291365

Change-Id: Idd09818dc82348398e780db3ee81948d75ffda4b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-19 01:47:05 +00:00
matthuang
c96220c282 Add security context for com.google.usf.non_wake_up/wakeup. 
Bug: 195077076
Test: Confirm there is no avc denied log.
Change-Id: I8600283d9ff2ebcb45df95e5259484a60921fb1a
 2022-07-18 15:12:45 +08:00
sashwinbalaji
7bb947b88e thermal: added property persist.vendor.disable.thermal.dfs.control am: 1a4cd82bc8 am: 6ffe88201a 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2133444

Change-Id: I71bd9b49f2dc76e1e50f0b35bd404f7c8660d5d9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-27 09:07:19 +00:00
sashwinbalaji
1a4cd82bc8 thermal: added property persist.vendor.disable.thermal.dfs.control 
Updated the sepolicy to access tmu register

Bug: 235156080
Test: Used local build to verify security context of tmu_reg files
Change-Id: Ia2a274ec3424bfeec25ae24e762f8ad41cb7ae86
 2022-06-24 13:54:24 +08:00
Jidong Sun
61b72806e8 gs101: Allow BootControl to access sysfs blow_ar 
Bug: 232277507
Signed-off-by: Jidong Sun <jidong@google.com>
Merged-In: I120672722a5ab8b5cadf0dce6d872e00c9fae642
Change-Id: I120672722a5ab8b5cadf0dce6d872e00c9fae642
 2022-06-10 06:02:53 +00:00
Jidong Sun
1ca6610378 gs101: Allow BootControl to access sysfs blow_ar am: f276625942 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18740593

Change-Id: Ie359bb975e3e5315e910f33f3c69e16a9a0b2e32
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-08 20:30:32 +00:00
Jidong Sun
f276625942 gs101: Allow BootControl to access sysfs blow_ar 
Bug: 232277507
Signed-off-by: Jidong Sun <jidong@google.com>
Change-Id: I120672722a5ab8b5cadf0dce6d872e00c9fae642
 2022-06-04 01:23:40 +00:00
Will McVicker
f78f5ab19a genfs_contexts: fix more i2c raw paths am: 9cbc9eceec 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18192191

Change-Id: If52caa5df6e4008c9c038fe128f7e4f1e1f56c30
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-10 22:55:56 +00:00
Will McVicker
9cbc9eceec genfs_contexts: fix more i2c raw paths 
These were added in commit 8a19d8be9c ("genfs_contexts: fix path for
i2c peripheral devices") to address missing i2c paths when kernel
modules are loaded in parallel. The raw i2c paths were not added in that
commit. So add them here in order to fix a vibrator crash for
P21-mainline due to not having the named i2c paths.

Bug: 231637004
Fixes: 8a19d8be9c ("genfs_contexts: fix path for i2c peripheral devices")
Change-Id: I02dfff504704f761c99c328b39595789c2cbeef5
 2022-05-05 16:04:31 -07:00
William McVicker
cb0bdc8681 Merge "genfs_contexts: add raw i2c-s2mpg10mfd and i2c-s2mpg11mfd nodes" into tm-dev am: e6250cd86e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18123741

Change-Id: I11fe5e32944b784ad60c3b88177cddff72db879b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-04 16:38:59 +00:00
William McVicker
e6250cd86e Merge "genfs_contexts: add raw i2c-s2mpg10mfd and i2c-s2mpg11mfd nodes" into tm-dev 2022-05-04 16:10:16 +00:00
Jenny Ho
549a58875a Merge "sepolicy: allow access debugfs charger register dump" into tm-dev am: 9b27bbdab6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17944214

Change-Id: Ic470338a2d29551f83a06795ddb75ba43838a380
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-03 13:30:43 +00:00
Albert Wang
11aeebbc15 Merge "Expand the xHCI wakeup path for suspend_control" am: 77db706d9b am: 84866a80c1 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2075870

Change-Id: I7eb9ed2f555c49806685deede90d169b8f5bf71d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-03 08:46:25 +00:00
Will McVicker
12b3700a38 genfs_contexts: add raw i2c-s2mpg10mfd and i2c-s2mpg11mfd nodes 
This adds the [067]-001f and [178]-002f raw i2c numberings to the
sepolicy for the P21-mainline driver which doesn't use the i2c vendor
hook to rename these numberings. This is required for the thermal hal to
work.

Bug: 231155356
Signed-off-by: Will McVicker <willmcvicker@google.com>
Change-Id: I8e4bbbd0768e63e708f46eb42bddb5fc28b29caa
 2022-05-02 10:12:15 -07:00
Albert Wang
ee1758317e Expand the xHCI wakeup path for suspend_control 
Error log:
Error opening kernel wakelock stats for: wakeup132 (../../devices/platform/11110000.usb/11110000.dwc3/xhci-hcd-exynos.5.auto/usb2/2-1/wakeup/wakeup132): Permission denied
avc: denied { read } for name="wakeup132" dev="sysfs" ino=3607558 scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

Bug: 209745132
Test: test build to verify sepolicy log
Signed-off-by: Albert Wang <albertccwang@google.com>
Change-Id: I6c70272a79059f7ca4e3b0e525bbc09625e25135
 2022-04-28 06:41:24 +00:00
Jenny Ho
15036785cf sepolicy: allow access debugfs charger register dump 
[  438.549652] type=1400 audit(1651035282.616:8): avc: denied { read } for comm="dumpstate@1.1-s" name="registers" dev="debugfs" ino=31549 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:debugfs:s0 tclass=file permissive=0
[  438.550252] type=1400 audit(1651035282.616:9): avc: denied { read } for comm="dumpstate@1.1-s" name="registers" dev="debugfs" ino=31532 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:debugfs:s0 tclass=file permissive=0

Bug: 230360103
Signed-off-by: Jenny Ho <hsiufangho@google.com>
Change-Id: I102a159ca23a65d99a52cac3d011f5ce535a37e7
 2022-04-27 10:09:48 +00:00
Wei Wang
1291c3cec9 Grant trusty to power hal 
Bug: 229350721
Test: UDFPS with stress
Signed-off-by: Wei Wang <wvw@google.com>
Change-Id: Ia88d6cff1d21940e22ae5122dbfcf52de27ad700
 2022-04-24 04:30:03 +00:00
chungkai
11770d9dfe sepolicy: Remove tracking denials files and fix avc problems 
04-19 10:53:57.364 W binder:575_2: type=1400 audit(0.0:17):
avc: denied { read } for name="wakeup11" dev="sysfs" ino=59892
scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir
permissive=0

Bug: 229670628
Test: pass
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: I6a83b77c4a4bb836e4014cf865cb720a360fd981
 2022-04-21 07:24:21 +00:00
chungkai
19073ba66c sepolicy: fix avc denials 
add potential paths for i2c peripheral devices
sine we enable parallel module loading

Bug: 229670628
Test: do bugreport without avc denials
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: I6747e6d36731664d7f2fd88382c8a6189c936860
 2022-04-19 06:10:34 +00:00
chungkai
953583844f genfs_contexts: fix path for i2c peripheral device 
paths are changed when we enable parallel module loading and
reorder the initializtaion of devices.

Test: without avc denial on R4/O6 when booting
Bug: 22754176
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: Ibcd5138170449e24115a0de5c3beda79914d1dc1
 2022-04-14 04:45:41 +00:00
Darren Hsu
acb5cc9e03 sepolicy: label charger wakeups for system suspend am: 3c11d8d1c5 am: 4df95c6d08 am: 9b9e2b4f3c 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2060630

Change-Id: Ib0aa15719df8e4e0e7eb673b389d4e0b6be99640
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-12 04:19:48 +00:00
Darren Hsu
3c11d8d1c5 sepolicy: label charger wakeups for system suspend 
Bug: 226887726
Test: do bugreport without avc denials
Change-Id: I779b646846da90cdc710145e959644efc4733b3b
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-04-11 10:56:33 +08:00