Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3468 commits 1 branch 0 tags 494 MiB
Commit graph

3468 commits

This branch
This branch
All branches
Author SHA1 Message Date
Kris Chen
9b54bf3665 Allow hal_fingerprint_default to access fwk_sensor_hwservice 
Fix the following avc denial:
avc:  denied  { find } for interface=android.frameworks.sensorservice::ISensorManager sid=u:r:hal_fingerprint_default:s0 pid=1258 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:fwk_sensor_hwservice:s0 tclass=hwservice_manager permissive=0

Bug: 197789721
Test: build and test fingerprint on device.
Change-Id: I7494f28e69e5a1b660dc7fbaa528b1088048723b
 2022-03-10 16:53:22 +08:00
TreeHugger Robot
d6dc27040e Merge "Update avc error on ROM 8276520" into tm-dev am: a1f73d0faa am: e2d47ba125 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17131103

Change-Id: I54ac7763edfcfa31912694e524e626caa2cdbb6c
 2022-03-10 03:27:29 +00:00
TreeHugger Robot
85f4543496 Merge "Update avc error on ROM 8276520" into tm-dev am: a1f73d0faa 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17131103

Change-Id: I255ba3211db9c8422e041e65f36db7141379b724
 2022-03-10 03:00:41 +00:00
TreeHugger Robot
e2d47ba125 Merge "Update avc error on ROM 8276520" into tm-dev am: a1f73d0faa 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17131103

Change-Id: Ie0ebdab2e78f4dfd8612b2c5a346fbc2328a22ae
 2022-03-10 03:00:35 +00:00
TreeHugger Robot
a1f73d0faa Merge "Update avc error on ROM 8276520" into tm-dev 2022-03-10 02:40:10 +00:00
Darren Hsu
44fcba7efd sepolicy: reorder genfs labels for system suspend 
Bug: 223683748
Test: check bugreport without relevant avc denials
Change-Id: I66ede69d94bb3cb1a446e1cd5f3250b6f9b7f7e9
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-03-10 09:19:31 +08:00
Michael Eastwood
58b95e5278 Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" am: 82a110ba3b am: a45d075fd0 am: ada03db5e0 am: ecb7a69d78 am: bcf33b6879 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2016899

Change-Id: Ife60bc844b1e6be460dcd6140ef9092ed43325b6
 2022-03-09 19:53:07 +00:00
Michael Eastwood
bcf33b6879 Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" am: 82a110ba3b am: a45d075fd0 am: ada03db5e0 am: ecb7a69d78 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2016899

Change-Id: I278288a3290cb78ffcfefaf2fd7eb6a5d67a1a13
 2022-03-09 19:31:05 +00:00
Michael Eastwood
d947ec661c Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" am: 82a110ba3b am: a45d075fd0 am: ada03db5e0 am: ecb7a69d78 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2016899

Change-Id: I9df6016d123bc1f71601d3e518e97ab1fa205c10
 2022-03-09 19:30:27 +00:00
Michael Eastwood
ecb7a69d78 Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" am: 82a110ba3b am: a45d075fd0 am: ada03db5e0 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2016899

Change-Id: Ic6e51b5ea87b5d682f406a9711d39d80c4b29a9c
 2022-03-09 18:55:19 +00:00
Michael Eastwood
ada03db5e0 Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" am: 82a110ba3b am: a45d075fd0 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2016899

Change-Id: I2b73c3f4576a4f42f76afbf7b8e75fd3be838107
 2022-03-09 18:32:59 +00:00
Michael Eastwood
a45d075fd0 Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" am: 82a110ba3b 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2016899

Change-Id: I55cfbec1df5a5b3952e02875860d25db44b64b98
 2022-03-09 18:00:28 +00:00
Michael Eastwood
82a110ba3b Merge "Update SELinux policy to allow camera HAL to send Perfetto trace packets" 2022-03-09 17:31:28 +00:00
Xin Li
b8f4b3d29c [automerger skipped] Merge Android 12L am: 22c3ab8b6b -s ours am: 594011b90b -s ours am: 0e86159889 -s ours am: 6bc47cde6f -s ours am: a78738e763 -s ours 
am skip reason: Merged-In I7b9186af0cb135241e23504fa9d6f7c3d6718c7c with SHA-1 22f2ffcbee is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2012332

Change-Id: I01d9d28f8f24a01d95b4816428ec961487489e6b
 2022-03-09 12:06:39 +00:00
Xin Li
d299c8c1b6 [automerger skipped] Merge Android 12L am: 22c3ab8b6b -s ours am: 594011b90b -s ours am: 0e86159889 -s ours am: 6bc47cde6f -s ours 
am skip reason: Merged-In I7b9186af0cb135241e23504fa9d6f7c3d6718c7c with SHA-1 22f2ffcbee is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2012332

Change-Id: Ief16a611fa732ecc93b9810bcf6e349978d8ebe7
 2022-03-09 11:36:48 +00:00
Xin Li
a78738e763 [automerger skipped] Merge Android 12L am: 22c3ab8b6b -s ours am: 594011b90b -s ours am: 0e86159889 -s ours am: 6bc47cde6f -s ours 
am skip reason: Merged-In I7b9186af0cb135241e23504fa9d6f7c3d6718c7c with SHA-1 22f2ffcbee is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2012332

Change-Id: I11d278c39c1961aeb00f2f6d67c60bcf6a627e6b
 2022-03-09 11:36:34 +00:00
Xin Li
6bc47cde6f [automerger skipped] Merge Android 12L am: 22c3ab8b6b -s ours am: 594011b90b -s ours am: 0e86159889 -s ours 
am skip reason: Merged-In I7b9186af0cb135241e23504fa9d6f7c3d6718c7c with SHA-1 22f2ffcbee is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2012332

Change-Id: I53a128252845f7a2403302749aae2e6e43bce8bd
 2022-03-09 10:02:38 +00:00
sukiliu
037f9cda4e Update avc error on ROM 8276520 
Bug: 223502652
Bug: 223330933
Test: PtsSELinuxTestCases
Change-Id: Ib8c14c4928410ee5ed4626e95e2882b89341ee9a
 2022-03-09 14:16:33 +08:00
Darren Hsu
28feed2df5 sepolicy: fix VTS failure for SuspendSepolicyTests am: c3d3c574f4 am: f0805e42df 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17118111

Change-Id: I6ddf4ad2f2016def7258fcc12265243f3658d978
 2022-03-09 04:15:34 +00:00
Darren Hsu
f0805e42df sepolicy: fix VTS failure for SuspendSepolicyTests am: c3d3c574f4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17118111

Change-Id: I405782f527555e9a965f858048dc44517fb14007
 2022-03-09 03:52:38 +00:00
Darren Hsu
a26d7c6c2f sepolicy: fix VTS failure for SuspendSepolicyTests am: c3d3c574f4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17118111

Change-Id: I318f81f0feec7e3894460156c93df63fdcb94f2b
 2022-03-09 03:52:14 +00:00
Michael Eastwood
f648f3c989 Update SELinux policy to allow camera HAL to send Perfetto trace packets 
Example denials:

03-04 04:25:37.524   823   823 I TracingMuxer: type=1400 audit(0.0:31): avc: denied { use } for path=2F6D656D66643A706572666574746F5F73686D656D202864656C6574656429 dev="tmpfs" ino=20229 scontext=u:r:hal_camera_default:s0 tcontext=u:r:tr
aced:s0 tclass=fd permissive=1
03-04 04:25:37.524   823   823 I TracingMuxer: type=1400 audit(0.0:32): avc: denied { read write } for path=2F6D656D66643A706572666574746F5F73686D656D202864656C6574656429 dev="tmpfs" ino=20229 scontext=u:r:hal_camera_default:s0 tcontext
=u:object_r:traced_tmpfs:s0 tclass=file permissive=1
03-04 04:25:37.524   823   823 I TracingMuxer: type=1400 audit(0.0:33): avc: denied { getattr } for path=2F6D656D66643A706572666574746F5F73686D656D202864656C6574656429 dev="tmpfs" ino=20229 scontext=u:r:hal_camera_default:s0 tcontext=u:
object_r:traced_tmpfs:s0 tclass=file permissive=1
03-04 04:25:37.524   823   823 I TracingMuxer: type=1400 audit(0.0:34): avc: denied { map } for path=2F6D656D66643A706572666574746F5F73686D656D202864656C6574656429 dev="tmpfs" ino=20229 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:traced_tmpfs:s0 tclass=file permissive=1

Bug: 222684359
Test: Build and push new SELinux policy. Verify that trace packets are received by Perfetto.
Change-Id: I0180c6bccf8cb65f444b8fb687ab48422c211bac
 2022-03-08 13:54:34 -08:00
Darren Hsu
c3d3c574f4 sepolicy: fix VTS failure for SuspendSepolicyTests 
Label the common parent wakeup path instead of each
individual wakeup source to avoid bloating the genfs
contexts.

Bug: 221174227
Test: run vts -m SuspendSepolicyTests
Change-Id: I83a074840198aba323805fd455ee78a0e57174ac
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-03-08 20:57:42 +08:00
Xin Li
0e86159889 [automerger skipped] Merge Android 12L am: 22c3ab8b6b -s ours am: 594011b90b -s ours 
am skip reason: Merged-In I7b9186af0cb135241e23504fa9d6f7c3d6718c7c with SHA-1 22f2ffcbee is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2012332

Change-Id: If0e4880aa30ddfcc89e252de3f041da19401d4bc
 2022-03-08 11:04:07 +00:00
Xin Li
594011b90b [automerger skipped] Merge Android 12L am: 22c3ab8b6b -s ours 
am skip reason: Merged-In I7b9186af0cb135241e23504fa9d6f7c3d6718c7c with SHA-1 22f2ffcbee is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2012332

Change-Id: Ic29497624866c936ddf7a7f34f9539de55d73eb9
 2022-03-08 10:19:17 +00:00
Xin Li
22c3ab8b6b Merge Android 12L 
Bug: 222710654
Merged-In: I7b9186af0cb135241e23504fa9d6f7c3d6718c7c
Change-Id: I60cda8853fd8575beb8617025479d08ccf816fbb
 2022-03-08 00:15:28 +00:00
Roshan Pius
34c5b9b239 gs-sepolicy(uwb): Changes for new UCI stack 
1. Rename uwb vendor app.
2. Rename uwb vendor HAL binary name & service name.
3. Allow vendor HAL to host the AOSP UWB HAL service.
4. Allow NFC HAL to access uwb calibration files.

Bug: 186585880
Test: Manual Tests
Change-Id: I2c7c2466f42317d643634e24b1efb1855e673d09
 2022-03-06 18:15:16 -08:00
Tri Vo
da64016221 Merge "Don't audit storageproxyd unlabeled access" am: fbf92e2ada am: 22f2ffcbee am: a5ccc7efa8 am: 56b17a34c8 am: ece657656a 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2007441

Change-Id: I4faaa95f8a3c8531470ed81f11c8b39ca558b23f
 2022-03-04 19:59:13 +00:00
Tri Vo
adfd900367 Merge "Don't audit storageproxyd unlabeled access" am: fbf92e2ada am: 22f2ffcbee am: a5ccc7efa8 am: 56b17a34c8 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2007441

Change-Id: Ifbf1caca3b35aa80897b7555000ed8a5b82a1a2e
 2022-03-04 19:26:55 +00:00
Tri Vo
ece657656a Merge "Don't audit storageproxyd unlabeled access" am: fbf92e2ada am: 22f2ffcbee am: a5ccc7efa8 am: 56b17a34c8 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2007441

Change-Id: I5829427d16236a1652301713f5a1bb4dc76d1420
 2022-03-04 19:26:20 +00:00
Tri Vo
56b17a34c8 Merge "Don't audit storageproxyd unlabeled access" am: fbf92e2ada am: 22f2ffcbee am: a5ccc7efa8 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2007441

Change-Id: I58998bc0820db2eeb6f2362a604aaff81159594e
 2022-03-04 18:50:56 +00:00
Tri Vo
a5ccc7efa8 Merge "Don't audit storageproxyd unlabeled access" am: fbf92e2ada am: 22f2ffcbee 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2007441

Change-Id: Ie2af054a900f32cbde1352ba9f708e163f76d86c
 2022-03-04 18:29:27 +00:00
Tri Vo
22f2ffcbee Merge "Don't audit storageproxyd unlabeled access" am: fbf92e2ada 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2007441

Change-Id: I7b9186af0cb135241e23504fa9d6f7c3d6718c7c
 2022-03-04 18:06:53 +00:00
Tri Vo
fbf92e2ada Merge "Don't audit storageproxyd unlabeled access" 2022-03-04 17:45:37 +00:00
Midas Chien
7dea42d711 [automerger skipped] [Do Not Merge] Allow composer to read panel_idle_handle_exit sysfs node am: 0e1e0e2830 -s ours am: b637545191 -s ours am: 9285045f0b -s ours am: 5e5133e7f6 -s ours am: 8b1611fbdc -s ours 
am skip reason: subject contains skip directive

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2009176

Change-Id: Id5d23953f719aa78c8a7f1761a9bb249e682d02b
 2022-03-04 13:54:27 +00:00
Midas Chien
8b1611fbdc [automerger skipped] [Do Not Merge] Allow composer to read panel_idle_handle_exit sysfs node am: 0e1e0e2830 -s ours am: b637545191 -s ours am: 9285045f0b -s ours am: 5e5133e7f6 -s ours 
am skip reason: subject contains skip directive

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2009176

Change-Id: Ie922a17aa95c184a762bb6004982d11c0a39f888
 2022-03-04 13:32:08 +00:00
Midas Chien
8c32b2ae3f [automerger skipped] [Do Not Merge] Allow composer to read panel_idle_handle_exit sysfs node am: 0e1e0e2830 -s ours am: b637545191 -s ours am: 9285045f0b -s ours am: 5e5133e7f6 -s ours 
am skip reason: subject contains skip directive

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2009176

Change-Id: I8a7bcd3f93b1a8d9757302558859642a57e624d6
 2022-03-04 13:31:58 +00:00
Midas Chien
5e5133e7f6 [automerger skipped] [Do Not Merge] Allow composer to read panel_idle_handle_exit sysfs node am: 0e1e0e2830 -s ours am: b637545191 -s ours am: 9285045f0b -s ours 
am skip reason: subject contains skip directive

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2009176

Change-Id: I29262cf0b26426b83493008aa2e569548e2fa436
 2022-03-04 13:10:39 +00:00
Midas Chien
9285045f0b [automerger skipped] [Do Not Merge] Allow composer to read panel_idle_handle_exit sysfs node am: 0e1e0e2830 -s ours am: b637545191 -s ours 
am skip reason: subject contains skip directive

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2009176

Change-Id: Iaf03b02cd8feadc0da6b1f7cb4d0d25f47907f39
 2022-03-04 12:50:47 +00:00
Midas Chien
b637545191 [automerger skipped] [Do Not Merge] Allow composer to read panel_idle_handle_exit sysfs node am: 0e1e0e2830 -s ours 
am skip reason: subject contains skip directive

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2009176

Change-Id: I5771c4702d7e76db359bba65f059f913d69d774f
 2022-03-04 12:29:41 +00:00
Midas Chien
0e1e0e2830 [Do Not Merge] Allow composer to read panel_idle_handle_exit sysfs node 
Change panel_idle_exit_handle selinux type to sysfs_display to allow
composer to access it.

Bug: 202182467
Test: ls -Z to check selinux type
Test: composer can access it in enforce mode
Merged-In: I5ca811f9500dc452fe6832dd772376da51f675a8
Change-Id: I5ca811f9500dc452fe6832dd772376da51f675a8
 2022-03-04 10:48:08 +00:00
Midas Chien
77aa7d778e Merge "Allow composer to read panel_idle_handle_exit sysfs node" into tm-dev am: 08c3646fc1 am: 2aef601024 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17005478

Change-Id: Id81b8895f498599251947e6f32dcce2ab15214e3
 2022-03-04 07:45:10 +00:00
Midas Chien
b3e1b0b41f Merge "Allow composer to read panel_idle_handle_exit sysfs node" into tm-dev am: 08c3646fc1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17005478

Change-Id: Ib0315b976910888fbb3e10afc9e47da982fd8058
 2022-03-04 07:22:58 +00:00
Midas Chien
2aef601024 Merge "Allow composer to read panel_idle_handle_exit sysfs node" into tm-dev am: 08c3646fc1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17005478

Change-Id: I46a7ce198c316d163fbb3b6dee4d1c5e8edf589e
 2022-03-04 07:21:52 +00:00
Midas Chien
08c3646fc1 Merge "Allow composer to read panel_idle_handle_exit sysfs node" into tm-dev 2022-03-04 06:55:05 +00:00
Tri Vo
03fef48542 Don't audit storageproxyd unlabeled access 
Test: m sepolicy
Bug: 197502330
Change-Id: I794dac85e475434aaf024027c43c98dde60bee27
 2022-03-03 13:12:17 -08:00
TreeHugger Robot
058dabbda9 Merge "Add sepolicy rules for fingerprint hal" into tm-dev am: c865c80379 am: bdc06d1db9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17033478

Change-Id: I4ec676163a69811a1b3a1c750d5b170e810219ee
 2022-03-02 03:19:34 +00:00
Robert Lee
7751e41ad2 Fix selinux error for aocd am: e5cf8beff3 am: 2e5b1c4e48 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17033481

Change-Id: I5292b87afd5537bb66b5b1ec875606478341d536
 2022-03-02 03:19:02 +00:00
TreeHugger Robot
0a8e6fdf61 Merge "Add sepolicy rules for fingerprint hal" into tm-dev am: c865c80379 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17033478

Change-Id: Icb1194793de57e5b709caba326571268403f603d
 2022-03-02 02:58:36 +00:00
Robert Lee
c56fcea847 Fix selinux error for aocd am: e5cf8beff3 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17033481

Change-Id: Iab67ca429892fa837fb604a37646da0f123abf4c
 2022-03-02 02:58:02 +00:00