Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2953 commits 1 branch 0 tags 494 MiB
Commit graph

2953 commits

This branch
This branch
All branches
Author SHA1 Message Date
chungkai
19073ba66c sepolicy: fix avc denials 
add potential paths for i2c peripheral devices
sine we enable parallel module loading

Bug: 229670628
Test: do bugreport without avc denials
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: I6747e6d36731664d7f2fd88382c8a6189c936860
 2022-04-19 06:10:34 +00:00
Xin Li
104e2d21c2 [automerger skipped] Empty merge of sc-v2-dev-plus-aosp-without-vendor@8433047 am: 7a573b067c -s ours 
am skip reason: Merged-In I7f65597f91db5a16d4f9de4f6bb018bd5b50a965 with SHA-1 e60773b926 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17805214

Change-Id: I403afd3d5e0c240130d398c28118334b3d8934bd
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-19 04:21:15 +00:00
Jason Macnak
f2be252260 Remove sysfs_gpu type definition 
... as it has moved to system/sepolicy.

Bug: b/161819018
Test: presubmit
Change-Id: I6fcafa87541ed0cbaf3ba74fa5ff4dbdebd533f7
Merged-In: I6fcafa87541ed0cbaf3ba74fa5ff4dbdebd533f7
 2022-04-18 22:45:55 +00:00
Xin Li
7a573b067c Empty merge of sc-v2-dev-plus-aosp-without-vendor@8433047 
Bug: 226662282
Merged-In: I7f65597f91db5a16d4f9de4f6bb018bd5b50a965
Change-Id: I9a8579c87c05c1329fd5670f63d1edd848782334
 2022-04-18 20:43:19 +00:00
Joshua Mccloskey
5ca305b99f Merge "Allow platform apps to access FP Hal" into tm-dev am: 23d2a657fe 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17624936

Change-Id: I0584f1e69ef2deddfc61e8cb5e4cb7d9ec7e14cc
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-15 22:13:03 +00:00
Joshua Mccloskey
23d2a657fe Merge "Allow platform apps to access FP Hal" into tm-dev 2022-04-15 21:39:59 +00:00
Chung-Kai (Michael) Mei
98e852e561 Merge "genfs_contexts: fix path for i2c peripheral device" into tm-dev am: 9309ec2609 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17751064

Change-Id: Icf63d47e42862813a775aaceec43ca0ffa71091c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-15 01:28:35 +00:00
Chung-Kai (Michael) Mei
9309ec2609 Merge "genfs_contexts: fix path for i2c peripheral device" into tm-dev 2022-04-15 01:01:25 +00:00
Joshua McCloskey
517ab7da4d Allow platform apps to access FP Hal 
Bug: 227247855
Test: Verified manually that the fingerprint extension is working.
Change-Id: Ia8fedcb373e23bf2103803195f844bf90b1807bc
 2022-04-14 21:44:11 +00:00
Anthony Stange
a2049901b9 Merge "Update SELinux to allow CHRE to talk to the Wifi HAL" into tm-dev am: 0cfdc0266c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17722708

Change-Id: Ie34cec39350b6ff0e02bc7421744a2f13ae4027f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-14 16:14:07 +00:00
Anthony Stange
0cfdc0266c Merge "Update SELinux to allow CHRE to talk to the Wifi HAL" into tm-dev 2022-04-14 15:23:23 +00:00
chungkai
953583844f genfs_contexts: fix path for i2c peripheral device 
paths are changed when we enable parallel module loading and
reorder the initializtaion of devices.

Test: without avc denial on R4/O6 when booting
Bug: 22754176
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: Ibcd5138170449e24115a0de5c3beda79914d1dc1
 2022-04-14 04:45:41 +00:00
Anthony Stange
613bdcdec8 Update SELinux to allow CHRE to talk to the Wifi HAL 
Bug: 206614765
Test: Run locally
Change-Id: I73bcf96ed1cab0a101e5f84852a1d82258b9c690
 2022-04-12 20:58:12 +00:00
TreeHugger Robot
30ccdb4113 Merge "sepolicy: Add policy for persist.vendor.udfps" into tm-dev am: 4e91f5530e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17180644

Change-Id: Id51b5bfc069fa61a3b5022b07ec3a9918e39cb46
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-12 11:17:07 +00:00
TreeHugger Robot
4e91f5530e Merge "sepolicy: Add policy for persist.vendor.udfps" into tm-dev 2022-04-12 10:56:32 +00:00
Darren Hsu
3abe13185c sepolicy: label charger wakeups for system suspend am: 3c11d8d1c5 am: 4df95c6d08 am: 9b9e2b4f3c am: acb5cc9e03 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2060630

Change-Id: Id39b33cd76a3dd707bbd602222a717501aa1f38b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-12 04:50:24 +00:00
Darren Hsu
acb5cc9e03 sepolicy: label charger wakeups for system suspend am: 3c11d8d1c5 am: 4df95c6d08 am: 9b9e2b4f3c 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2060630

Change-Id: Ib0aa15719df8e4e0e7eb673b389d4e0b6be99640
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-12 04:19:48 +00:00
Darren Hsu
9b9e2b4f3c sepolicy: label charger wakeups for system suspend am: 3c11d8d1c5 am: 4df95c6d08 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2060630

Change-Id: I6648d98e50b0c8c01206071537fedbe4083e1f11
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-12 04:04:56 +00:00
Darren Hsu
4df95c6d08 sepolicy: label charger wakeups for system suspend am: 3c11d8d1c5 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2060630

Change-Id: I058cb3909d972cc5784e507fcb26b46196c33aa4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-12 03:39:39 +00:00
Badhri Jagan Sridharan
ddfbcf6a0a Merge "Allow usb hal to read contaminantdisable property" into tm-dev am: 93b8189c2b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17649293

Change-Id: I8bb37378e46fe74cbd6251f6918b86e84ee63bea
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-11 22:45:21 +00:00
Badhri Jagan Sridharan
93b8189c2b Merge "Allow usb hal to read contaminantdisable property" into tm-dev 2022-04-11 22:22:28 +00:00
Patty
40cd670c9f Grant policy for EWP feature 
Bug: 220121592
Test: Manual
Change-Id: I274a9519c40915cf65de45a3d8cf452faf16c8b4
 2022-04-11 14:40:02 +08:00
Darren Hsu
3c11d8d1c5 sepolicy: label charger wakeups for system suspend 
Bug: 226887726
Test: do bugreport without avc denials
Change-Id: I779b646846da90cdc710145e959644efc4733b3b
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-04-11 10:56:33 +08:00
Badhri Jagan Sridharan
8606aa8a51 Allow usb hal to read contaminantdisable property 
avc: denied { read } for comm="android.hardwar" name="u:object_r:vendor_usb_config_prop:s0"
dev="tmpfs" ino=367 scontext=u:r:hal_usb_impl:s0
tcontext=u:object_r:vendor_usb_config_prop:s0 tclass=file permissive=0

Bug: 227792357
Change-Id: Id4d5ef7c214f0c0f672db28991b9fbe0152530b7
 2022-04-07 17:21:15 -07:00
Chung-Kai (Michael) Mei
363728f850 Merge changes from topic "gs101_parallel_load_sepolicy" into tm-dev am: 9a909d4058 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17614589

Change-Id: I072c7a8e680a7998574f9a20863b2c4ab269f076
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-07 10:31:05 +00:00
chungkai
cd1005d92a genfs_contexts: fix path for i2c peripheral devices am: 8a19d8be9c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17504913

Change-Id: Ie14aabd4432cf66615265a8e29f115fef417e590
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-07 10:30:59 +00:00
Chung-Kai (Michael) Mei
9a909d4058 Merge changes from topic "gs101_parallel_load_sepolicy" into tm-dev 
* changes:
  sepolicy: ignore avc denial
  genfs_contexts: fix path for i2c peripheral devices
 2022-04-07 09:33:26 +00:00
Siddharth Kapoor
5d40de63da Merge "Revert "Move ODPM file rule to pixel sepolicy"" into tm-dev am: 9d3a25fb29 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17609198

Change-Id: I91ec76384d8ba27c6ef35ff7871fde1d1172659f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-07 04:23:37 +00:00
Siddharth Kapoor
9d3a25fb29 Merge "Revert "Move ODPM file rule to pixel sepolicy"" into tm-dev 2022-04-07 04:06:31 +00:00
Siddharth Kapoor
13f85a37f3 Revert "Move ODPM file rule to pixel sepolicy" 
Revert "Move ODPM file rule to pixel sepolicy"

Revert submission 17215583-odpm_sepolicy_refactor-tm-dev

Reason for revert: build failure tracked in b/228261711
Reverted Changes:
Ic9a89950a:Move ODPM file rule to pixel sepolicy
I24105669b:Move ODPM file rule to pixel sepolicy
I044a285ff:Move ODPM file rule to pixel sepolicy

Change-Id: I36abfddaa5903739f9c5bf65d3c1cd506db9e604
 2022-04-07 03:29:56 +00:00
chungkai
384218408f sepolicy: ignore avc denial 
dont audit since it's debugfs

Bug: 228181404
Test: forrest with boot test
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: I7f2a85e2a405c78c9d8d11e9c2fdfdc5e87f7931
 2022-04-06 09:21:24 +00:00
chungkai
8a19d8be9c genfs_contexts: fix path for i2c peripheral devices 
paths are changed when we enable parallel module loading and
reorder the initializtaion of devices.

Test: without avc denial on Raven
Bug: 227541760
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: I7d835205696fd727e9be24fcf010ed44bcd5d6ae
 2022-04-06 09:15:46 +00:00
Albert Wang
8713e0b0b7 Add more xHCI wakeup path for suspend_control am: e60773b926 am: 092298b579 am: aed8848fb0 am: 7839be7474 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2052478

Change-Id: I02382970a84b9b2f8a5f0002d1ee6d225fd09b81
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-06 09:04:42 +00:00
Albert Wang
7839be7474 Add more xHCI wakeup path for suspend_control am: e60773b926 am: 092298b579 am: aed8848fb0 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2052478

Change-Id: I251a791b13d863de275ceffc3ba926db9a458c07
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-06 08:42:39 +00:00
Albert Wang
aed8848fb0 Add more xHCI wakeup path for suspend_control am: e60773b926 am: 092298b579 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2052478

Change-Id: Ieaa74f326039e13ec8409167112c11b16cb47480
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-06 08:15:54 +00:00
Albert Wang
092298b579 Add more xHCI wakeup path for suspend_control am: e60773b926 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2052478

Change-Id: Ib07b92bf159c8b69dcdc7bc17e7f19a44aab20f9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-06 08:00:41 +00:00
Sam Ou
0f7d68a9b1 Merge "Move ODPM file rule to pixel sepolicy" into tm-dev am: de81154964 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17215583

Change-Id: I5043f68a22d8887a0105613bf848edf7655b776c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-06 02:38:48 +00:00
Sam Ou
de81154964 Merge "Move ODPM file rule to pixel sepolicy" into tm-dev 2022-04-06 02:09:38 +00:00
Xin Li
f43a918617 [automerger skipped] Merge Android 12 QPR3 ab/8391262 am: 815b133c28 -s ours am: 4295b8c5bb -s ours am: 6c7329e78a -s ours 
am skip reason: Merged-In I1ae4b99a9fa4fc95f96ee1f36dc500f453653ca7 with SHA-1 24b4d1b601 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17543362

Change-Id: I2b05cb9279ab108de85891cbe7136c228ac04203
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-03 08:31:00 +00:00
Xin Li
6c7329e78a [automerger skipped] Merge Android 12 QPR3 ab/8391262 am: 815b133c28 -s ours am: 4295b8c5bb -s ours 
am skip reason: Merged-In I1ae4b99a9fa4fc95f96ee1f36dc500f453653ca7 with SHA-1 24b4d1b601 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17543362

Change-Id: Iccd31c0bb403d722d24d093730327b024e4342ec
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-03 07:43:50 +00:00
Xin Li
4295b8c5bb [automerger skipped] Merge Android 12 QPR3 ab/8391262 am: 815b133c28 -s ours 
am skip reason: Merged-In I1ae4b99a9fa4fc95f96ee1f36dc500f453653ca7 with SHA-1 24b4d1b601 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17543362

Change-Id: I3183293f6ba3e1858233ce35170f935f3b03c1ff
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-03 07:11:50 +00:00
Xin Li
815b133c28 Merge Android 12 QPR3 ab/8391262 
Bug: 226662282
Merged-In: I1ae4b99a9fa4fc95f96ee1f36dc500f453653ca7
Change-Id: Iccdf8b6a16f1d7a9ae0c9fd8cab14c5c55c6e64a
 2022-04-01 20:32:12 +00:00
Albert Wang
e60773b926 Add more xHCI wakeup path for suspend_control 
To addressdd the xHCI wakeup nodes permission problem, add new nodes:
/devices/platform/11110000.usb/11110000.dwc3/xhci-hcd-exynos.5.auto/usb2/wakeup
/devices/platform/11110000.usb/11110000.dwc3/xhci-hcd-exynos.5.auto/usb3/wakeup

avc: denied { read } for name="wakeup175" dev="sysfs" ino=162091
scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0
android.system.suspend@1.0-service: Error opening kernel wakelock stats for: wakeup175
(../../devices/platform/11110000.usb/11110000.dwc3/xhci-hcd-exynos.5.auto/usb2/wakeup/
wakeup175): Permission denied
avc: denied { read } for name="wakeup176" dev="sysfs" ino=162107
scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0
android.system.suspend@1.0-service: Error opening kernel wakelock stats for: wakeup176
(../../devices/platform/11110000.usb/11110000.dwc3/xhci-hcd-exynos.5.auto/usb3/wakeup/
wakeup176): Permission denied

Bug: 226056256
Test: test build to verify sepolicy log
Signed-off-by: Albert Wang <albertccwang@google.com>
Change-Id: I7f65597f91db5a16d4f9de4f6bb018bd5b50a965
 2022-04-01 09:43:40 +08:00
sukiliu
d7abffceca Update avc error on ROM 8386107 am: ed3ac0623b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17517644

Change-Id: Ic4e6b3a1a98a25ade5cc21f8d47cde370037ef95
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-01 01:34:47 +00:00
sukiliu
ed3ac0623b Update avc error on ROM 8386107 
Bug: 226717475
Test: PtsSELinuxTestCases
Change-Id: Ia366a4ad0f193858960b7c5df34096bd2d4eada5
 2022-03-31 15:48:04 +08:00
chungkai
de44d766e4 sched: move sysfs to procfs 
Modify name from sysfs_vendor_sched to proc_vendor_sched

Test: without avc denial
Bug: 216207007
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: Ic113b2d8ee1d3ae1ced9985636b17ef1e7657a84
 2022-03-29 09:43:32 +00:00
KRIS CHEN
572a8a3372 Merge "Allow hal_fingerprint_default to access sysfs_display" into tm-dev 2022-03-29 01:39:34 +00:00
Badhri Jagan Sridharan
a4b9ad439b android.hardware.usb.IUsb AIDL migration 
android.hardware.usb.IUsb is migrated to AIDL and runs in
its own process. android.hardware.usb.gadget.IUsbGadget
is now published in its own exclusive process
(android.hardware.usb.gadget-service). Creating
file_context and moving the selinux linux rules
for IUsbGadget implementation.

Bug: 200993386
Change-Id: Ia8c24610244856490c8271433710afb57d3da157
Merged-In: Ia8c24610244856490c8271433710afb57d3da157
(cherry picked from commit 51735ba3ab)
 2022-03-28 17:01:45 +08:00
Darren Hsu
2650d53059 Allow hal_power_stats to read sysfs_aoc_dumpstate am: f11f53a3ae am: a0592e36d2 am: 24b4d1b601 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2044864

Change-Id: Iacfa20c771905827c1299527dc2c66646ae18506
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-03-28 08:41:17 +00:00
Darren Hsu
24b4d1b601 Allow hal_power_stats to read sysfs_aoc_dumpstate am: f11f53a3ae am: a0592e36d2 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2044864

Change-Id: I1ae4b99a9fa4fc95f96ee1f36dc500f453653ca7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-03-28 08:17:33 +00:00