Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1090 commits 1 branch 0 tags 494 MiB
Commit graph

1090 commits

This branch
This branch
All branches
Author SHA1 Message Date
TreeHugger Robot
694694857a Merge "qllow priv-app to access Pixel power HAL extension." into sc-dev 2021-06-12 10:22:24 +00:00
Jayachandran C
5492a92a39 Allow telephony to access the file descriptor of the priv_apps tcp_socket 
The priv_apps could register for QOS notifications for its tcp_socket.
This change allows telephony to access the file descriptor for the
tcp_socket so it could double check the source and destination address
of the socket when the QOS indication is received from modem.

This addresses the following SE policy denial
auditd  : type=1400 audit(0.0:219): avc: denied { read write } for
comm="ConnectivitySer" path="socket:[98511]" dev="sockfs" ino=98511
scontext=u:r:radio:s0 tcontext=u:r:priv_app:s0:c512,c768 tclass=tcp_socket
permissive=0

Bug: 190580419
Test: Manual
Change-Id: I35d4e1fb06242eb5fcbcb36439a55c11166b149b
 2021-06-12 05:18:15 +00:00
Rick Yiu
ad47112c59 gs101-sepolicy: Fix avc denial for permissioncontroller_app 
Bug: 190671898
Test: build pass
Change-Id: I3ccfe958892cd27ebbcacc651847d4277d39855b
 2021-06-11 18:41:10 +08:00
Adam Shih
d0bb828434 remove vcd from user ROM 
Bug: 190331325
Test: build all ROM variants with only user ROM without vcd
Change-Id: If9dc555ee8582b605ccdf9d60c3a9c89cd6634d8
 2021-06-11 11:46:22 +08:00
Richard Hsu
8c979899cc [BugFix] SEPolicy for libedgetpu_darwinn2.so logging to stats service 
In order to access the darwinn metrics library from the google camera
app (product partition), we need to create an SELinux exception for
the related shared library (in vendor) it uses. This CL adds the same_process_hal_file tag to allow this exception.

Bug: 190661153, 151063663

Test: App can load the .so and not crash after this change.
Before: No permission to access namespace.
(https://paste.googleplex.com/6602755121610752)
After: GCA doesn't crash on load.

Change-Id: I8671732184bbbe283c94d1acd3bb1ff397fe651c
 2021-06-10 19:36:35 -07:00
Adam Shih
d00aafac75 remove obsolete entries 
Bug: 190672147
Bug: 173969091
Bug: 171760921
Bug: 178331773
Bug: 178752616
Bug: 188752940
Bug: 184005231
Bug: 182086688
Bug: 177176899
Bug: 182953825
Bug: 176528557
Bug: 183935382
Test: boot and do bugreport with no relevant error showed up
Change-Id: I869db698e96d2d6cfd533b7fd24c8c88d39fd0eb
 2021-06-11 10:35:59 +08:00
Denny cy Lee
25373353a7 Sepolicy: Remove permission for fuel gauge 
Bug: 189811224
Test: manually, read success in enforcing mode
Change-Id: Ie56179980a9946010fb25683e3819cddbfb93cfb
Signed-off-by: Denny cy Lee <dennycylee@google.com>
 2021-06-11 09:39:53 +08:00
Kris Chen
7db400b679 Add sepolicy to let fingerprint access power service 
Fix the following avc denial:
SELinux : avc:  denied  { find } for pid=1055 uid=1000 name=android.hardware.power.IPower/default scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:hal_power_service:s0 tclass=service_manager permissive=0

Bug: 185893477
Test: Observe from systrace that the CPU frequency is boosted when
      running fingerprint algorithm.
Change-Id: I245058b912ec2af3555154934dbe722b445181a9
 2021-06-10 21:31:06 +00:00
Sung-fang Tsai
985aa698c7 qllow priv-app to access Pixel power HAL extension. 
SELinux issues to solve:

native  : aion.cc:780 Error loading lib_aion_buffer.so dlopen failed: library "pixel-power-ext-V1-ndk_platform.so" not found: needed by /vendor/lib64/lib_aion_buffer.so in namespace sphal

05-23 10:11:32.055   420   420 E SELinux : avc:  denied  { find } for pid=6630 uid=10089 name=android.hardware.power.IPower/default scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:hal_power_service:s0 tclass=service_manager permissive=0

Bug: 187373665
Test: Passed, procedure listed in b/187373665#comment8 with forrest.
Change-Id: Ice7c69bca4a029a61ca1ccb7087ea01948ae5f24
 2021-06-10 17:56:17 +00:00
SHUCHI LILU
4e81985347 Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 am: 7d1fa8b9ce 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I2f7a9744c830156ce4b1ff8c9ad7c3c68e6d953e
 2021-06-10 11:34:14 +00:00
SHUCHI LILU
b7394346cd Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 am: f2bc0d7bd7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I7eca5fe2191e8b5b127d4efdc5594fb1eb53320a
 2021-06-10 11:33:23 +00:00
SHUCHI LILU
f2bc0d7bd7 Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I4ea6afe2de9a03eca793775f14ea24b8678931cf
 2021-06-10 11:22:24 +00:00
SHUCHI LILU
7d1fa8b9ce Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I4cfc4f0fb97b796a3a118859ac30399ab15a2446
 2021-06-10 11:21:07 +00:00
SHUCHI LILU
61843906c0 Merge "Update avc error on ROM 7444346" into sc-dev 2021-06-10 11:06:35 +00:00
TreeHugger Robot
891656c7a7 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd am: fadd9f9dd2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: If051249b25d3fd5dc96492a66dd274dc7c0e8446
 2021-06-10 07:57:13 +00:00
TreeHugger Robot
a086a78e86 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd am: e7d53d61b0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: Ie9be7a6977b11a8f8e8330fe7f59404b01779e0f
 2021-06-10 07:56:32 +00:00
TreeHugger Robot
e7d53d61b0 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: I64965eae7d9d39ed1495bb87b51358a55c894301
 2021-06-10 07:39:05 +00:00
TreeHugger Robot
fadd9f9dd2 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: I65292901788f5e98123e550dc676be9b66f958b3
 2021-06-10 07:37:41 +00:00
TreeHugger Robot
a501b656dd Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev 2021-06-10 07:20:58 +00:00
sukiliu
d27e574f3e Update avc error on ROM 7444346 
Bug: 190672147
Bug: 190671898
Test: Test: PtsSELinuxTestCases
Change-Id: Ie9400df24f30474915d757b61ddb1c3fb77903c5
 2021-06-10 15:16:37 +08:00
Adam Shih
c36fe574f4 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f am: 70121504b6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: I935fdf9107adb939dd61cc21bd1af4324fa3d907
 2021-06-10 06:25:10 +00:00
Adam Shih
c7a6a9f592 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f am: 922b7f6057 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: Idb0cabcf72b3ab36cd01debf573a7d580e130418
 2021-06-10 06:24:28 +00:00
Adam Shih
922b7f6057 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: I668f8e93d4edf03746aea4cf76155af17df5fb50
 2021-06-10 06:13:24 +00:00
Adam Shih
70121504b6 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: Idc5ee712a86aa778f62abb93d6b6ff4cdcefec4c
 2021-06-10 06:12:07 +00:00
Adam Shih
a81732dd6f Merge "reorganize trusty_metricsd settings" into sc-dev 2021-06-10 05:52:40 +00:00
TreeHugger Robot
e967755371 Merge "update wakeup node" into sc-dev am: d3b0256025 am: a34e5d929b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928571

Change-Id: I4369bc59ada2cf68681469d5a967238ff35951e9
 2021-06-10 04:30:21 +00:00
TreeHugger Robot
55540c1dd5 Merge "update wakeup node" into sc-dev am: d3b0256025 am: 15c7fdc5bb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928571

Change-Id: I85395aa73d49d6211f72b7943276a3b76cc7b14a
 2021-06-10 04:29:27 +00:00
TreeHugger Robot
15c7fdc5bb Merge "update wakeup node" into sc-dev am: d3b0256025 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928571

Change-Id: I787229985b0214fff17ea2feae9b4788e9a35d95
 2021-06-10 04:12:58 +00:00
TreeHugger Robot
a34e5d929b Merge "update wakeup node" into sc-dev am: d3b0256025 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928571

Change-Id: I5881e148d45f8a1361e28a85a296b774b5ca1269
 2021-06-10 04:11:32 +00:00
Rick Yiu
797b646234 gs101-sepolicy: Fix avc denial for sysfs_vendor_sched 
Fix mediaprovider_app and bluetooth

Bug: 190563839
Bug: 190563916
Test: build pass
Change-Id: I477325ee812d1362db4d5005e999cba989a44216
 2021-06-10 04:10:24 +00:00
TreeHugger Robot
d3b0256025 Merge "update wakeup node" into sc-dev 2021-06-10 03:56:50 +00:00
Adam Shih
7907b8eb44 Merge "organize EdgeTPU modules and sepolicy" into sc-dev am: 22fae537b5 am: 6f1be4dcf7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911633

Change-Id: I1749b2c7512067fdcd31e4b9fb66fd47ed449b68
 2021-06-10 03:29:20 +00:00
Adam Shih
e53941fb89 Merge "organize EdgeTPU modules and sepolicy" into sc-dev am: 22fae537b5 am: 8879662f92 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911633

Change-Id: I8a7ba2a9bf58b81631cc2e699180147e9515f9dd
 2021-06-10 03:24:10 +00:00
Adam Shih
ef113ab8ac update wakeup node 
Bug: 190672147
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I3a8e8fa8b9007f556a5bfb402c4e8c726499d66f
 2021-06-10 03:23:52 +00:00
Adam Shih
6f1be4dcf7 Merge "organize EdgeTPU modules and sepolicy" into sc-dev am: 22fae537b5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911633

Change-Id: I4e35a44d8e36220eb05fd478cbdfe8a264d90c29
 2021-06-10 03:12:38 +00:00
Adam Shih
8879662f92 Merge "organize EdgeTPU modules and sepolicy" into sc-dev am: 22fae537b5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911633

Change-Id: If19b793eb2d76a6856b61b67ea6b001136c013ec
 2021-06-10 03:09:57 +00:00
Adam Shih
8947d2dfeb reorganize trusty_metricsd settings 
Bug: 190331503
Test: build ROM and see the file and sepolicy settings are still there
Change-Id: Ib157f64428166232c3bbbd176d3c1fbed4ac31d6
 2021-06-10 02:54:00 +00:00
Adam Shih
22fae537b5 Merge "organize EdgeTPU modules and sepolicy" into sc-dev 2021-06-10 02:53:28 +00:00
SHUCHI LILU
e2d6f14941 Merge "Update avc error on ROM 7440434" into sc-dev am: e5c8613686 am: c5a1aeaf18 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911640

Change-Id: I0d7de500d5482356bb076a6b1494718c072db2ee
 2021-06-09 12:56:56 +00:00
SHUCHI LILU
fd325dda0b Merge "Update avc error on ROM 7440434" into sc-dev am: e5c8613686 am: f8336cf329 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911640

Change-Id: I5e7c0489ec0a5ea81402b8b818588e57553ab865
 2021-06-09 12:43:55 +00:00
SHUCHI LILU
c5a1aeaf18 Merge "Update avc error on ROM 7440434" into sc-dev am: e5c8613686 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911640

Change-Id: Id833703d833b14d5a2411c06d021e51bc3790328
 2021-06-09 12:28:28 +00:00
SHUCHI LILU
f8336cf329 Merge "Update avc error on ROM 7440434" into sc-dev am: e5c8613686 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911640

Change-Id: I2a0d5dd5aa501f6fe07f835169b903d9d6b61b65
 2021-06-09 12:26:45 +00:00
SHUCHI LILU
e5c8613686 Merge "Update avc error on ROM 7440434" into sc-dev 2021-06-09 12:05:04 +00:00
TreeHugger Robot
72a928292e Merge "Grant powerhal access to thermal_link_device and sysfs_thermal" into sc-dev am: 3c66c45102 am: 54420d120a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14731906

Change-Id: I3ff031f2bbff5ef038ca78fa6d38416defed0390
 2021-06-09 08:27:11 +00:00
TreeHugger Robot
2466ae7393 Merge "Grant powerhal access to thermal_link_device and sysfs_thermal" into sc-dev am: 3c66c45102 am: ea845e1796 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14731906

Change-Id: Ica2dd97db3acb67af082661c1ebcf5ce6d6c0661
 2021-06-09 08:21:15 +00:00
TreeHugger Robot
54420d120a Merge "Grant powerhal access to thermal_link_device and sysfs_thermal" into sc-dev am: 3c66c45102 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14731906

Change-Id: I13e36ee7e00f0466e46d0ae340571342fcae197a
 2021-06-09 08:08:15 +00:00
sukiliu
6ce3aa9d75 Update avc error on ROM 7440434 
Bug: b/190563838
Bug: b/190563916
Bug: b/190563896
Bug: b/190563897
Test: Test: PtsSELinuxTestCases
Change-Id: Idbd0bc0f9a4770b3f976196058a311820e6e3c11
 2021-06-09 16:07:32 +08:00
TreeHugger Robot
ea845e1796 Merge "Grant powerhal access to thermal_link_device and sysfs_thermal" into sc-dev am: 3c66c45102 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14731906

Change-Id: I0c86b40d9bdaf76bfefaee1aa2376985925564b0
 2021-06-09 08:06:26 +00:00
TreeHugger Robot
3c66c45102 Merge "Grant powerhal access to thermal_link_device and sysfs_thermal" into sc-dev 2021-06-09 07:46:26 +00:00
TreeHugger Robot
48130880f5 Merge "Add sysfs_camera label for powerhint flow to access intcam & tnr clock" into sc-dev am: c5d10f245a am: 6058fd94db 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14795451

Change-Id: I27dc6741659605a5fc0a4abd4551e2cadc7a8d6e
 2021-06-09 05:00:39 +00:00