Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3866 commits 1 branch 0 tags 494 MiB
Commit graph

3866 commits

This branch
This branch
All branches
Author SHA1 Message Date
martinwu
5adb10e834 Remove tcpdump sepolicy from gs101 and move sepolicy to gs-common am: 6be45972bb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22814097

Change-Id: I01ec7315f92de0f793eb02dd93f884bf8094ebd7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 02:17:57 +00:00
martinwu
6be45972bb Remove tcpdump sepolicy from gs101 and move sepolicy to gs-common 
Bug: 264490014
Test: 1. Enable tcpdump_logger always-on function
      2. Dump bugreport
      3. Pull dumpstate_board.bin and chagne it to zip
      4. Unzip dumpstate_board.zip and check if tcpdump files
         are there.
Change-Id: I3d0cb388cf9b7c96d2856f46c0440b4017477480
 2023-04-27 01:38:04 +00:00
Joseph Jang
9a1381585b Merge "Move recovery.te to device/google/gs-common/dauntless/sepolicy" into udc-dev am: 37e90d3f3a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22808538

Change-Id: I21399d89048707e65eb95ba5f13c84e7d9d8ede8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 04:11:52 +00:00
Joseph Jang
37e90d3f3a Merge "Move recovery.te to device/google/gs-common/dauntless/sepolicy" into udc-dev 2023-04-26 03:24:40 +00:00
Joseph Jang
ac6f4e0d00 Move recovery.te to device/google/gs-common/dauntless/sepolicy 
Bug: 279381809
Change-Id: If41449f97e729053caa98930cc7f2ef9fd6d844e
 2023-04-24 08:09:23 +00:00
Adam Shih
978f3f8dd8 Update error on ROM 9930000 am: 843b0ad6b4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22802738

Change-Id: I54760d250e690390b9c0b1f8c58e63746eb661b2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-24 03:45:31 +00:00
Adam Shih
843b0ad6b4 Update error on ROM 9930000 
Bug: 277989397
Bug: 277155042
Bug: 277989067
Test: scanBugreport
Change-Id: I38a3f852e2f5f0f6895db15141825909361a267d
Merged-In: I38a3f852e2f5f0f6895db15141825909361a267d
 2023-04-24 09:58:14 +08:00
jimsun
66b15bfc3d rild: allow rild to ptrace am: 26e3d2abd0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22122889

Change-Id: I267cad762d71cdcd7e8f7038fbcf37bc0951ffe1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-20 07:01:14 +00:00
jimsun
26e3d2abd0 rild: allow rild to ptrace 
06-20 18:47:41.940000  8708  8708 I auditd  : type=1400 audit(0.0:7): avc: denied { ptrace } for comm="libmemunreachab" scontext=u:r:rild:s0 tcontext=u:r:rild:s0 tclass=process permissive=0
06-20 18:47:41.940000  8708  8708 W libmemunreachab: type=1400 audit(0.0:7): avc: denied { ptrace } for scontext=u:r:rild:s0 tcontext=u:r:rild:s0 tclass=process permissive=0

Bug: 263757077
Test: manual
Change-Id: I35ad31e6cc4e2942c671e51720f28a9abce3dcca
 2023-04-18 07:48:32 +00:00
Bruno BELANYI
cb752d4cf4 Merge "Use restricted vendor property for ARM runtime options" into udc-dev am: bf8675143b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22381263

Change-Id: I28dbee80bce314d62708983c9f848bb61a47b1f9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-17 11:29:24 +00:00
Bruno BELANYI
bf8675143b Merge "Use restricted vendor property for ARM runtime options" into udc-dev 2023-04-17 10:59:23 +00:00
Xin Li
445c9786c6 [automerger skipped] Merge TQ2A.230405.003 am: 82232b6423 am: 26cfa34cb7 -s ours am: 9505121ada -s ours am: ab4e3e986a -s ours 
am skip reason: Merged-In I8c265919f7ae4b18aa304b0a584536d2a0f4b27a with SHA-1 9828cc747a is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: I05d9347c773c51b55bbc622ac0f3f8d9652d5782
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 21:13:18 +00:00
Xin Li
ab4e3e986a [automerger skipped] Merge TQ2A.230405.003 am: 82232b6423 am: 26cfa34cb7 -s ours am: 9505121ada -s ours 
am skip reason: Merged-In I8c265919f7ae4b18aa304b0a584536d2a0f4b27a with SHA-1 9828cc747a is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: I07cabb680ee2172a60bdc37f9a61a2af528844d1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 20:57:06 +00:00
Xin Li
9505121ada [automerger skipped] Merge TQ2A.230405.003 am: 82232b6423 am: 26cfa34cb7 -s ours 
am skip reason: Merged-In I8c265919f7ae4b18aa304b0a584536d2a0f4b27a with SHA-1 9828cc747a is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: Ie91202c445df25847c5bcd37cf8224e7bae6536e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 20:22:54 +00:00
Xin Li
26cfa34cb7 Merge TQ2A.230405.003 am: 82232b6423 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: I92a1d4dff4571e4aa8f11ca6f71978d549bfc812
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 19:00:54 +00:00
Mike McTernan
b7ac171c15 confirmationui: Allow securedpud to access the systemsuspend HAL. am: b46b936df8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22574497

Change-Id: Ied0ab0e2298a566992de13311b3c594f918806ce
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 10:21:17 +00:00
Mike McTernan
b46b936df8 confirmationui: Allow securedpud to access the systemsuspend HAL. 
In order to use a wakelock, securedpud needs access to binder and the
system_suspend_service HAL.

Bug: 274851247
Test: manual, trigger TUI and check for AVC denials
Change-Id: Ibd27d32e092269f91d6557ebddcd27d4ccf1355a
 2023-04-11 13:04:53 +00:00
Xin Li
82232b6423 Merge TQ2A.230405.003 
Bug: 271343657
Merged-In: I8c265919f7ae4b18aa304b0a584536d2a0f4b27a
Change-Id: I61dd94e23d10e5405135626487ddadddb1f89f9f
 2023-04-10 23:55:29 -07:00
Wilson Sung
1b77af6fdf Update SELinux error am: c41cb55d4f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22530832

Change-Id: Icfd77d41de22485bb17104441431d33aaacfddef
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-10 05:24:45 +00:00
Wilson Sung
c41cb55d4f Update SELinux error 
Test: scanBugreport
Bug: 277528855
Change-Id: Ia59cd4045433f2e82a602672fe533e27e87b0275
 2023-04-10 11:02:52 +08:00
Adam Shih
b68badeec9 Merge "use dumpsate from gs-common" into udc-dev am: d186da49ea 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22328249

Change-Id: Ie64d5f5b5d11b309046e0fd1ee33ee5e5fb566f9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-10 01:46:22 +00:00
Adam Shih
d186da49ea Merge "use dumpsate from gs-common" into udc-dev 2023-04-10 01:11:17 +00:00
Wilson Sung
7c548f2ecb Update error on ROM 9891405 am: 816622f352 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22525943

Change-Id: I7f45cc589e053bd6a8c782636f92bc109ab05d56
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-07 08:44:02 +00:00
Wilson Sung
816622f352 Update error on ROM 9891405 
Bug: 277155042
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: Ic2129188db52ec85a8afaf92c507a42695e82804
 2023-04-07 14:56:21 +08:00
Adam Shih
240c435174 use dumpsate from gs-common 
Bug: 273380985
Test: adb bugreport
Change-Id: I9092e2e004e3ad0b3667b948ed4d633cd50d088c
 2023-04-07 13:02:21 +08:00
Victor Liu
86f1c65d6c Merge "uwb: add permission for ccc ranging" into udc-dev am: d87df92740 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/21965690

Change-Id: I12df4bbb294464a745560fb74fc09b3919c97967
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-06 21:29:18 +00:00
Victor Liu
d87df92740 Merge "uwb: add permission for ccc ranging" into udc-dev 2023-04-06 20:57:49 +00:00
feiyuchen
6f71f3f9b9 Allow camera HAL to access edgetpu_app_service in gs101 am: 391f954d5d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22463634

Change-Id: I9e8bb20c6a6ec8b0f4aa1c9bcaa60b78c9944dba
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-05 23:25:28 +00:00
feiyuchen
391f954d5d Allow camera HAL to access edgetpu_app_service in gs101 
We are seeing SELinux error b/276911450. It turns out that I only added the SE policy for 2023 device ag/22248613, but I forgot to add it for gs101 and gs201. So I created this CL.

See more background in ag/22248613.

Test: For gs201, I tested on my Pixel7 and I saw no more error. For gs101, I just did mm.
Bug: 275016466
Bug: 276911450
Change-Id: I3d691128daa2d7115f80c378f7b42de334cd8ed5
 2023-04-04 21:32:36 +00:00
Bruno BELANYI
7838603828 Use restricted vendor property for ARM runtime options 
They need to be read by everything that links with libmali, but we don't
expect anybody to actually write to them.

Bug: b/272740524
Test: CtsDeqpTestCases (dEQP-VK.protected_memory.stack.stacksize_*)
Change-Id: I963fb55fb92ef5f91426dbec913c901e58cacf64
 2023-04-04 13:04:00 +00:00
Victor Liu
a55bb8682c uwb: add permission for ccc ranging 
Bug: 255649425
Change-Id: I05aac586146bf25569b5f6251d2fd62b921631be
 2023-03-31 14:04:13 -07:00
Wilson Sung
5ac120e63d Merge "Update SELinux error" into udc-dev am: 083b5fe640 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22371623

Change-Id: I329d469450097e7b45b43b01e43b127926f110d5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-31 10:50:50 +00:00
Wilson Sung
d4be8c564d Update SELinux error am: 28afe7393f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22241484

Change-Id: I85053fd76ea7fc78eafb90dab68ec2ff2bd2001d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-31 10:50:25 +00:00
Wilson Sung
083b5fe640 Merge "Update SELinux error" into udc-dev 2023-03-31 10:18:47 +00:00
Wilson Sung
accb299d5d Update SELinux error 
Test: scanBugreport
Bug: 276385941
Change-Id: I54627db892f95ac7ee6e9b08762b7a72793d4a00
 2023-03-31 10:55:58 +08:00
Wilson Sung
28afe7393f Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 275002227
Change-Id: If2133d83efbfa00ee9643a25047f465c60d2d3c4
 2023-03-29 06:34:07 +00:00
Adam Shih
382aaae47b Move power dump text section out of hal_dumpstate_default am: 7cc3817f71 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22305190

Change-Id: Ie504dd1b31801dcb2f65152eba7992d2679a5405
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-29 03:26:41 +00:00
Adam Shih
7cc3817f71 Move power dump text section out of hal_dumpstate_default 
Bug: 273380985
Test: adb bugreport
Change-Id: I77b59ea719055972429b2b8a1349e52e0e1fe395
 2023-03-28 15:03:22 +08:00
Adam Shih
4511d9e0b5 Move camera text dump to dump_gs101 am: 5bfe1bdd6d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22241495

Change-Id: I973d1a9adbfa31a84c079fc847904ec9baa1909c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-28 02:47:17 +00:00
Adam Shih
5bfe1bdd6d Move camera text dump to dump_gs101 
Bug: 273380985
Test: adb bugreport
Change-Id: Iba138e608885a1215515ec8cc5f5e997dfcfcf3f
 2023-03-27 10:37:02 +08:00
TreeHugger Robot
423272104f Merge "Remove tracking_denials/hal_fingerprint_default.te" into udc-dev am: feef477d2f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22241485

Change-Id: I236824a18ff19e0825331bfbcef7c4e33e370501
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-27 01:52:53 +00:00
Adam Shih
7a9d142fa9 Move cma dump to itself am: e7ea94d8e1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22241488

Change-Id: I88b531cfac4a0bd0d6e3d84e6306a33abf3a6273
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-27 01:52:13 +00:00
TreeHugger Robot
feef477d2f Merge "Remove tracking_denials/hal_fingerprint_default.te" into udc-dev 2023-03-27 01:37:37 +00:00
chenkris
2bd6ae14f3 Remove tracking_denials/hal_fingerprint_default.te 
Bug: 187015705
Bug: 183338543
Test: build and test fingerprint on device.
Test: no fingerprint avc denials in logcat.
Change-Id: I1dde2c0d8c8ab2610c2b8147c15ac5c9f813345a
 2023-03-24 07:40:05 +00:00
Adam Shih
e7ea94d8e1 Move cma dump to itself 
Bug: 273380985
Test: adb bugreport
Change-Id: I40ecb631c7fbbea216f5c56857b92152c997e466
 2023-03-24 13:56:31 +08:00
KRIS CHEN
cb8f52b514 Merge "Allow fingerprint hal to read sysfs_leds" into udc-dev am: 2f8f23232a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22178646

Change-Id: Id29c4d1281e5aca629f1a76a3c2e7c65a63c414a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-24 02:41:38 +00:00
KRIS CHEN
2f8f23232a Merge "Allow fingerprint hal to read sysfs_leds" into udc-dev 2023-03-24 02:06:37 +00:00
Jörg Wagner
0c0b6423c1 Update Mali DDK to r40 : Additional SELinux settings am: cb6bad65e7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/22170060

Change-Id: I72b2d775be4c234a14be59460d6dd28d18877ae8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 15:14:19 +00:00
Kris Chen
d678ee3226 Allow fingerprint hal to read sysfs_leds 
Fix the following avc denials:
avc: denied { search } for name="backlight" dev="sysfs" ino=79316
scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_leds:s0
tclass=dir permissive=1

avc: denied { read } for name="state" dev="sysfs" ino=79365
scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_leds:s0
tclass=file permissive=1

Bug: 271072126
Test: Authenticate fingerprint.
Change-Id: I67f5502bc7b4b1d6e14cf493f1bc6575980bcd0d
 2023-03-21 12:19:07 +00:00
Jörg Wagner
cb6bad65e7 Update Mali DDK to r40 : Additional SELinux settings 
Expose DDK's dynamic configuration options through the Android Sysprop
interface, following recommendations from Arm's Android Integration
Manual.

Bug: 261718474

(cherry picked from commit 74d31a1568)
Merged-In: I5c69a8bafe3a4c738c124facb1f437ec721cc3ea
Change-Id: I7e6734cb79b38898eb65a0194b37381a1367fc36
 2023-03-21 10:31:51 +00:00