Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4617 commits 1 branch 0 tags 494 MiB
Commit graph

4617 commits

This branch
This branch
All branches
Author SHA1 Message Date
Yi-Yo Chiang
70df5492b9 init-display-sh: Don't audit writing to kmsg am: 829c6fb863 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/3444579

Change-Id: I6b7f5d20252648e8e35b85d803ae834bc5a39f74
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2025-01-20 21:19:12 -08:00
Yi-Yo Chiang
829c6fb863 init-display-sh: Don't audit writing to kmsg 
modprobe would log errors to /dev/kmsg, need to explicit allow this.

```
avc:  denied  { write } for  comm="modprobe" name="kmsg" dev="tmpfs" ino=5 scontext=u:r:init-display-sh:s0 tcontext=u:object_r:kmsg_device:s0 tclass=chr_file permissive=0
```

Bug: 388717752
Test: DeviceBootTest#SELinuxUncheckedDenialBootTest
Change-Id: I62a43416291d4d79164765004f156f2bdb69b0b5
 2025-01-20 01:38:19 -08:00
Xin Li
c9dd8dcf36 [automerger skipped] Merge 24Q4 into AOSP main am: 4969643398 -s ours 
am skip reason: Merged-In I195f779cc6588c37ccdbe4bb8b29ee8f2edd861a with SHA-1 bc766489dc is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/3413479

Change-Id: I1a273dbcaf6e738d04009152926d8d296ec549d6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-12-13 19:55:50 -08:00
Xin Li
4969643398 Merge 24Q4 into AOSP main 
Bug: 370570306
Merged-In: I195f779cc6588c37ccdbe4bb8b29ee8f2edd861a
Change-Id: I589a40cba254050bc510e87cecc6eec908d2c862
 2024-12-13 11:15:09 -08:00
Xin Li
b55ad960ba Merge ab/AP4A.241205.013 into aosp-main-future 
Bug: 370570306
Merged-In: I195f779cc6588c37ccdbe4bb8b29ee8f2edd861a
Change-Id: I4ef5ab22379c7c42e0b3dfbf4862e118b2ce6300
 2024-11-27 12:53:10 -08:00
Xin Li
86288119b4 Merge 24Q4 (ab/12406339) into aosp-main-future 
Bug: 370570306
Merged-In: I8a46aae725a9e912681068df9c219e5a91784305
Change-Id: I9639177ef81917e51470e586aa4c3144fbb4f3be
 2024-11-06 10:31:19 -08:00
Android Build Coastguard Worker
a255f26ca3 Merge cherrypicks of ['googleplex-android-review.googlesource.com/29699292'] into 24Q4-release. 
Change-Id: If0bed40e379de3c888b5bf9c6c0e84547c25491f
 2024-10-15 23:38:17 +00:00
samou
bc766489dc sepolicy: allow dumpstate to execute dump_power 
10-04 19:36:47.308  7141  7141 I android.hardwar: type=1400 audit(0.0:6974): avc:  denied  { execute_no_trans } for  path="/vendor/bin/dump/dump_power" dev="overlay" ino=91 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:vendor_file:s0 tclass=file permissive=1
10-04 19:36:47.332  7141  7141 I dump_power: type=1400 audit(0.0:6975): avc:  denied  { read } for  name="acpm_stats" dev="sysfs" ino=29227 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=dir permissive=1
10-04 19:36:47.332  7141  7141 I dump_power: type=1400 audit(0.0:6976): avc:  denied  { open } for  path="/sys/devices/platform/acpm_stats" dev="sysfs" ino=29227 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=dir permissive=1
10-04 19:36:47.332  7141  7141 I dump_power: type=1400 audit(0.0:6977): avc:  denied  { search } for  name="acpm_stats" dev="sysfs" ino=29227 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=dir permissive=1
10-04 19:36:47.332  7141  7141 I dump_power: type=1400 audit(0.0:6978): avc:  denied  { read } for  name="core_stats" dev="sysfs" ino=57472 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=file permissive=1
10-04 19:36:47.332  7141  7141 I dump_power: type=1400 audit(0.0:6979): avc:  denied  { open } for  path="/sys/devices/platform/acpm_stats/core_stats" dev="sysfs" ino=57472 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=file permissive=1
10-04 19:36:47.332  7141  7141 I dump_power: type=1400 audit(0.0:6980): avc:  denied  { getattr } for  path="/sys/devices/platform/acpm_stats/core_stats" dev="sysfs" ino=57472 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=file permissive=1
10-04 19:36:47.336  7141  7141 I dump_power: type=1400 audit(0.0:6981): avc:  denied  { read } for  name="time_in_state" dev="sysfs" ino=50604 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs_cpu:s0 tclass=file permissive=1
10-04 21:24:19.640 15006 15006 W dump_power: type=1400 audit(0.0:25): avc:  denied  { read } for  name="version" dev="sysfs" ino=62887 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0
10-04 21:24:19.640 15006 15006 W dump_power: type=1400 audit(0.0:26): avc:  denied  { read } for  name="version" dev="sysfs" ino=62887 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0
10-04 21:24:19.640 15006 15006 W dump_power: type=1400 audit(0.0:27): avc:  denied  { read } for  name="status" dev="sysfs" ino=62888 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0
10-04 21:24:19.640 15006 15006 W dump_power: type=1400 audit(0.0:28): avc:  denied  { read } for  name="status" dev="sysfs" ino=62888 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0
10-04 21:24:19.640 15006 15006 W dump_power: type=1400 audit(0.0:29): avc:  denied  { read } for  name="fw_rev" dev="sysfs" ino=62915 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0
10-04 21:24:19.640 15006 15006 W dump_power: type=1400 audit(0.0:30): avc:  denied  { read } for  name="fw_rev" dev="sysfs" ino=62915 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0
10-04 21:46:57.664  7194  7194 W dump_power: type=1400 audit(0.0:29): avc:  denied  { search } for  name="battery" dev="sysfs" ino=63428 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=0
10-04 21:46:57.664  7194  7194 W dump_power: type=1400 audit(0.0:30): avc:  denied  { search } for  name="10d50000.hsi2c" dev="sysfs" ino=21301 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=0
10-04 21:46:57.664  7194  7194 W dump_power: type=1400 audit(0.0:31): avc:  denied  { search } for  name="power_supply" dev="sysfs" ino=79013 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=0
10-04 21:46:57.664  7194  7194 W dump_power: type=1400 audit(0.0:32): avc:  denied  { search } for  name="power_supply" dev="sysfs" ino=79013 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=0
10-04 21:46:57.664  7194  7194 W dump_power: type=1400 audit(0.0:33): avc:  denied  { search } for  name="10d50000.hsi2c" dev="sysfs" ino=21301 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=0
10-04 21:51:18.168 14936 14936 I dump_power: type=1400 audit(0.0:18792): avc:  denied  { search } for  name="battery" dev="sysfs" ino=63428 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=1
10-04 21:51:18.168 14936 14936 I dump_power: type=1400 audit(0.0:18793): avc:  denied  { read } for  name="uevent" dev="sysfs" ino=63429 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
10-04 21:51:18.168 14936 14936 I dump_power: type=1400 audit(0.0:18794): avc:  denied  { open } for  path="/sys/devices/platform/google,battery/power_supply/battery/uevent" dev="sysfs" ino=63429 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
10-04 21:51:18.168 14936 14936 I dump_power: type=1400 audit(0.0:18795): avc:  denied  { getattr } for  path="/sys/devices/platform/google,battery/power_supply/battery/uevent" dev="sysfs" ino=63429 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
10-04 21:51:18.184 14936 14936 I dump_power: type=1400 audit(0.0:18796): avc:  denied  { search } for  name="8-003c" dev="sysfs" ino=55942 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=dir permissive=1
10-04 21:51:18.184 14936 14936 I dump_power: type=1400 audit(0.0:18797): avc:  denied  { read } for  name="maxfg" dev="sysfs" ino=62568 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=1
10-04 21:51:18.184 14936 14936 I dump_power: type=1400 audit(0.0:18798): avc:  denied  { read } for  name="logbuffer_tcpm" dev="tmpfs" ino=1285 scontext=u:r:dump_power:s0 tcontext=u:object_r:logbuffer_device:s0 tclass=chr_file permissive=1
10-04 21:51:18.184 14936 14936 I dump_power: type=1400 audit(0.0:18799): avc:  denied  { open } for  path="/dev/logbuffer_tcpm" dev="tmpfs" ino=1285 scontext=u:r:dump_power:s0 tcontext=u:object_r:logbuffer_device:s0 tclass=chr_file permissive=1
10-04 22:01:08.400  7074  7074 I dump_power: type=1400 audit(0.0:6191): avc:  denied  { search } for  name="mitigation" dev="dm-50" ino=3758 scontext=u:r:dump_power:s0 tcontext=u:object_r:mitigation_vendor_data_file:s0 tclass=dir permissive=1
10-04 22:01:08.400  7074  7074 I dump_power: type=1400 audit(0.0:6192): avc:  denied  { read } for  name="thismeal.txt" dev="dm-50" ino=28765 scontext=u:r:dump_power:s0 tcontext=u:object_r:mitigation_vendor_data_file:s0 tclass=file permissive=1
10-04 22:01:08.400  7074  7074 I dump_power: type=1400 audit(0.0:6193): avc:  denied  { open } for  path="/data/vendor/mitigation/thismeal.txt" dev="dm-50" ino=28765 scontext=u:r:dump_power:s0 tcontext=u:object_r:mitigation_vendor_data_file:s0 tclass=file permissive=1
10-04 22:01:08.400  7074  7074 I dump_power: type=1400 audit(0.0:6194): avc:  denied  { getattr } for  path="/data/vendor/mitigation/thismeal.txt" dev="dm-50" ino=28765 scontext=u:r:dump_power:s0 tcontext=u:object_r:mitigation_vendor_data_file:s0 tclass=file permissive=1
10-04 22:01:08.400  7074  7074 I dump_power: type=1400 audit(0.0:6195): avc:  denied  { search } for  name="mitigation" dev="sysfs" ino=85222 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_bcl:s0 tclass=dir permissive=1
10-04 22:01:08.400  7074  7074 I dump_power: type=1400 audit(0.0:6196): avc:  denied  { read } for  name="last_triggered_count" dev="sysfs" ino=85275 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_bcl:s0 tclass=dir permissive=1
10-04 22:01:08.400  7074  7074 I dump_power: type=1400 audit(0.0:6197): avc:  denied  { open } for  path="/sys/devices/virtual/pmic/mitigation/last_triggered_count" dev="sysfs" ino=85275 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_bcl:s0 tclass=dir permissive=1
10-04 22:01:08.400  7074  7074 I dump_power: type=1400 audit(0.0:6198): avc:  denied  { read } for  name="batoilo_count" dev="sysfs" ino=85287 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_bcl:s0 tclass=file permissive=1
10-04 23:49:14.616  6976  6976 I dump_power: type=1400 audit(0.0:875): avc:  denied  { read } for  name="thismeal.txt" dev="dm-57" ino=15028 scontext=u:r:dump_power:s0 tcontext=u:object_r:mitigation_vendor_data_file:s0 tclass=file permissive=1
10-04 23:49:14.616  6976  6976 I dump_power: type=1400 audit(0.0:876): avc:  denied  { open } for  path="/data/vendor/mitigation/thismeal.txt" dev="dm-57" ino=15028 scontext=u:r:dump_power:s0 tcontext=u:object_r:mitigation_vendor_data_file:s0 tclass=file permissive=1
10-04 23:49:14.616  6976  6976 I dump_power: type=1400 audit(0.0:877): avc:  denied  { getattr } for  path="/data/vendor/mitigation/thismeal.txt" dev="dm-57" ino=15028 scontext=u:r:dump_power:s0 tcontext=u:object_r:mitigation_vendor_data_file:s0 tclass=file permissive=1
10-05 00:00:44.540  7085  7085 I dump_power: type=1400 audit(0.0:878): avc:  denied  { read } for  name="acpm_stats" dev="sysfs" ino=25439 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=dir permissive=1
10-05 00:00:44.540  7085  7085 I dump_power: type=1400 audit(0.0:879): avc:  denied  { open } for  path="/sys/devices/platform/acpm_stats" dev="sysfs" ino=25439 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=dir permissive=1
10-05 00:00:44.540  7085  7085 I dump_power: type=1400 audit(0.0:880): avc:  denied  { search } for  name="acpm_stats" dev="sysfs" ino=25439 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=dir permissive=1
10-05 00:00:44.544  7085  7085 I dump_power: type=1400 audit(0.0:881): avc:  denied  { read } for  name="core_stats" dev="sysfs" ino=53039 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=file permissive=1
10-05 00:00:44.544  7085  7085 I dump_power: type=1400 audit(0.0:882): avc:  denied  { open } for  path="/sys/devices/platform/acpm_stats/core_stats" dev="sysfs" ino=53039 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=file permissive=1
10-05 00:00:44.544  7085  7085 I dump_power: type=1400 audit(0.0:883): avc:  denied  { getattr } for  path="/sys/devices/platform/acpm_stats/core_stats" dev="sysfs" ino=53039 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_acpm_stats:s0 tclass=file permissive=1
10-05 00:00:44.544  7085  7085 I dump_power: type=1400 audit(0.0:884): avc:  denied  { read } for  name="time_in_state" dev="sysfs" ino=45585 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_cpu:s0 tclass=file permissive=1
10-05 00:00:44.544  7085  7085 I dump_power: type=1400 audit(0.0:885): avc:  denied  { open } for  path="/sys/devices/platform/cpupm/cpupm/time_in_state" dev="sysfs" ino=45585 scontext=u:r:dump_power:s0 tcontext=u:object_r:sysfs_cpu:s0 tclass=file permissive=1

Flag: EXEMPT refactor
Bug: 364989823
Signed-off-by: samou <samou@google.com>
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:e746382d7834745023401c638e5367ed2b48a163)
Merged-In: I195f779cc6588c37ccdbe4bb8b29ee8f2edd861a
Change-Id: I195f779cc6588c37ccdbe4bb8b29ee8f2edd861a
 2024-10-15 23:37:11 +00:00
Android Build Coastguard Worker
a35b6258cb Snap for 12404440 from 9e9fa88ba6 to 24Q4-release 
Change-Id: I2fc3a4953447bd3e2c785d6e88a399b0fdbcef4e
 2024-09-23 23:02:27 +00:00
Tej Singh
9e9fa88ba6 Make android.framework.stats-v2-ndk app reachable 
For libedgetpu

Test: TH
Bug: 354763040
Flag: EXEMPT bugfix
Change-Id: I8a46aae725a9e912681068df9c219e5a91784305
 2024-09-20 21:27:23 -07:00
Android Build Coastguard Worker
3d0462c700 Snap for 12385180 from cc79320f9a to 24Q4-release 
Change-Id: Ia59ec40562df17714d69a4db03ebbee4405c8e06
 2024-09-18 23:01:59 +00:00
Prochin Wang
cc79320f9a Change vendor_fingerprint_prop to vendor_restricted_prop 
This is to allow the fingerprint HAL to access the property.

Bug: 366105474
Flag: build.RELEASE_PIXEL_BOOST_DATALAYER_PSA_ENABLED
Test: mm
Change-Id: Id15a6014d553bf91fd9ffe34c7c1000973ad5860
 2024-09-16 01:46:00 +00:00
Android Build Coastguard Worker
4a373e8b3e Snap for 12368321 from 9a63842938 to 24Q4-release 
Change-Id: Ief755db28ac52797345b4f9725b6099ea48f0405
 2024-09-14 01:01:57 +00:00
Nina Chen
9a63842938 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 366116587
Test: scanBugreport
Bug: 366115873
Bug: 366116435
Bug: 366116214
Test: scanAvcDeniedLogRightAfterReboot
Bug: 366115457
Bug: 366115458
Flag: EXEMPT NDK
Change-Id: I5f9c4f722ebcfc8fe14c9324d37106d9431accc4
 2024-09-13 06:45:28 +00:00
Android Build Coastguard Worker
84e1977c12 Snap for 12337246 from 8211a60d80 to 24Q4-release 
Change-Id: If8c3adda5b561213d35d5fb5f56df3f13f2d9bc0
 2024-09-07 21:01:40 +00:00
Xin Li
8211a60d80 [automerger skipped] Merge 24Q3 to AOSP main am: 51f0b993b0 -s ours am: f74c765659 -s ours 
am skip reason: Merged-In I91df897d8ae7d8e4b1b49a7eb20f6bb5fe99755c with SHA-1 855cd95dce is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/3257961

Change-Id: I6a625d82b030104366c2380f2d8b3b2726976bb8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-09-07 04:03:15 +00:00
Xin Li
f74c765659 [automerger skipped] Merge 24Q3 to AOSP main am: 51f0b993b0 -s ours 
am skip reason: Merged-In I91df897d8ae7d8e4b1b49a7eb20f6bb5fe99755c with SHA-1 855cd95dce is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/3257961

Change-Id: I76119471c70db0083446d9a9b0d8bd59ff1a400d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-09-07 02:44:00 +00:00
Xin Li
51f0b993b0 Merge 24Q3 to AOSP main 
Bug: 357762254
Merged-In: I91df897d8ae7d8e4b1b49a7eb20f6bb5fe99755c
Change-Id: Ifc0e5917fd9599c10bce7c5b99031b845bc2f95b
 2024-09-05 17:02:37 -07:00
Android Build Coastguard Worker
c5c4ae9c96 Snap for 12319997 from a13c7187bb to 24Q4-release 
Change-Id: Ia3dca665aab4de486158f5f4d440b55ebc0a4b22
 2024-09-04 23:02:16 +00:00
Treehugger Robot
a13c7187bb Merge "Update SELinux error" into main 2024-09-04 09:50:15 +00:00
Wilson Sung
d3d5235b50 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 364446534
Flag: EXEMPT sepolicy bugFix
Change-Id: I694b656e436ef9365ee1bbbac81f155dbf70ce60
 2024-09-04 08:54:01 +00:00
Randall Huang
edf14e100e storage: move storage related device type to common folder 
Bug: 364225000
Test: forrest build
Change-Id: I779edca2e5cecfb34ede65dccf93f207a3dbcf2f
Signed-off-by: Randall Huang <huangrandall@google.com>
 2024-09-04 10:44:05 +08:00
Android Build Coastguard Worker
11dac2abd9 Snap for 12313714 from f323bc8dc7 to 24Q4-release 
Change-Id: If7a43d543a8c4ff41849e128c80a6e533a38b8b4
 2024-09-03 23:01:51 +00:00
Android Build Coastguard Worker
5c8fe35c22 Snap for 12309590 from afbc02068d to 24Q4-release 
Change-Id: Iac1765f605097138418786f1736da6887c5e1dae
 2024-09-02 23:01:45 +00:00
Randall Huang
f323bc8dc7 Storage: label ufs firmware upgrade script 
Bug: 361093041
Test: local build
Change-Id: I0f1c9222f16351bde2ef9dd478a5e0c143e49e5a
Signed-off-by: Randall Huang <huangrandall@google.com>
 2024-09-02 14:55:28 +08:00
Attis Chen
afbc02068d Merge "Label sysfs node power_mode as sysfs_display." into main 2024-09-02 04:54:18 +00:00
attis
e0d8d912ec Label sysfs node power_mode as sysfs_display. 
Label power_mode to sysfs_panel to let it be allowed in dumpstate.

avc log:
08-26 11:59:55.044 14700 14700 W dump_display: type=1400 audit(0.0:25): avc:  denied  { read } for  name="power_mode" dev="sysfs" ino=83218 scontext=u:r:dump_display:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 bug=b/340722772

Test: ls -Z, adb bugreport.
Flag: EXEMPT bugfix
Bug: 358505990
Change-Id: Ia31964903b62f72237ae18cf07a2cef0138adeea
Signed-off-by: attis <attis@google.com>
 2024-08-26 12:13:52 +00:00
Android Build Coastguard Worker
2f468c0902 Snap for 12272146 from cf99531470 to 24Q4-release 
Change-Id: I9763ec5a326dccbc50077e828724d77a70bd2e1a
 2024-08-24 01:01:46 +00:00
Sam Ou
cf99531470 Merge changes from topic "kernel5_revision" into main 
* changes:
  sepolicy: gs101: fix bm selinux
  sepolicy: remove dump_gs101.sh
  sepolicy: remove duplicate policy
 2024-08-23 10:58:35 +00:00
Android Build Coastguard Worker
c113225965 Snap for 12241618 from 181183a4f5 to 24Q4-release 
Change-Id: I848ea36999f87881627f0a1890e1bb634045235a
 2024-08-17 01:01:55 +00:00
Android Build Coastguard Worker
dc4bbc3517 Snap for 12235414 from 9c590907f6 to 24Q4-release 
Change-Id: I8c622a85c8a37652fc1b6d2e68cbaf351a49832b
 2024-08-15 23:01:59 +00:00
Xiaofan Jiang
181183a4f5 Merge "Revert "Revert "gs101: update shared_modem_platform sepolicy for..."" into main 2024-08-15 20:44:28 +00:00
Xiaofan Jiang
4b26ef2e43 Revert "Revert "gs101: update shared_modem_platform sepolicy for..." 
Revert submission 28822848-revert-28762313-SAYUORWKVG

Reason for revert: issue identify and fix is ready

Reverted changes: /q/submissionid:28822848-revert-28762313-SAYUORWKVG

Change-Id: I17fd2b246fc95eac9a5e953c7c7889ecb2c91d1d
 2024-08-15 19:25:33 +00:00
Priyanka Advani (xWF)
7a34ff247b Merge "Revert "gs101: update shared_modem_platform sepolicy for UMI"" into main 2024-08-15 18:30:35 +00:00
Priyanka Advani (xWF)
4c48ef2770 Revert "gs101: update shared_modem_platform sepolicy for UMI" 
Revert submission 28762313

Reason for revert: Droidmonitor created revert due to b/360059249.

Reverted changes: /q/submissionid:28762313

Change-Id: I4ffb476a64b32a4e725c894f8014070121848cc0
 2024-08-15 16:14:52 +00:00
Xiaofan Jiang
9c590907f6 Merge "gs101: update shared_modem_platform sepolicy for UMI" into main 2024-08-15 04:01:13 +00:00
samou
b8f3e01274 sepolicy: gs101: fix bm selinux 
- add odpm scale value path
- add gpu cur_freq

Flag: EXEMPT refactor
Bug: 349935208
Change-Id: Ib5f4baf57c181f3ca2470514d256f307b7761403
Signed-off-by: samou <samou@google.com>
 2024-08-14 12:32:56 +00:00
samou
a6390dc3ea sepolicy: remove dump_gs101.sh 
Flag: EXEMPT refactor
Bug: 349935208
Change-Id: I4f2d5ef40dc328237f62aac7e4116a1f1410516a
Signed-off-by: samou <samou@google.com>
 2024-08-14 12:32:30 +00:00
samou
50ee17cede sepolicy: remove duplicate policy 
Flag: EXEMPT refactor
Bug: 349935208
Change-Id: Ib20bc0cc9af38ed481697420bb92ea12a917d594
Signed-off-by: samou <samou@google.com>
 2024-08-14 12:32:05 +00:00
Xiaofan Jiang
bf7161db56 gs101: update shared_modem_platform sepolicy for UMI 
Bug: 357139752

Flag: EXEMPT sepolicy

[   68.189198] type=1400 audit(1722986580.568:59): avc:  denied  { unlink } for  comm="binder:892_2" name="modem_svc_socket" dev="dm-52" ino=20239 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=1
[   68.189448] type=1400 audit(1722986580.568:60): avc:  denied  { create } for  comm="binder:892_2" name="modem_svc_socket" scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=1

Change-Id: I7e28f5a8c7f8a6909fccdc813e7c94ce8c7f8831
 2024-08-14 01:42:37 +00:00
Android Build Coastguard Worker
56991a6f4f Snap for 12224018 from 774949828e to 24Q4-release 
Change-Id: I218cbc418ec58aa973b0dac7fdc4f82198670056
 2024-08-13 23:02:21 +00:00
Kevin Ying
774949828e Allow camera HAL to access power_state sysfs 
08-03 01:36:52.108   791   791 W TaskPool: type=1400 audit(0.0:125): avc:  denied  { read } for  name="power_state" dev="sysfs" ino=86770 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Bug: 339690296
Test: Open camera, no display avc error
Flag: EXEMPT resource update only
Change-Id: I407c31e0898b07bef0df1b090dbc570f61c49272
Signed-off-by: Kevin Ying <kevinying@google.com>
 2024-08-08 23:17:18 +00:00
Android Build Coastguard Worker
6c047ba80d Snap for 12140224 from 2327a5c0f5 to 24Q4-release 
Change-Id: If2404ef1487ad16649a41ae006e3e70150f081ad
 2024-07-25 23:01:59 +00:00
Android Build Coastguard Worker
c232e47d2c Merge cherrypicks of ['googleplex-android-review.googlesource.com/28469516'] into 24Q4-release. 
Change-Id: I51417d7b97a92a99f42b43b9ee3287d59acd2340
 2024-07-25 00:33:37 +00:00
Daniel Chapin
faa7886bec Revert "trusty: storageproxy: add fs_ready_rw property context" 
Revert submission 28318041-rw_storage

Reason for revert: Droidfood blocking bug b/355163562

Reverted changes: /q/submissionid:28318041-rw_storage
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:7bc5a6b183feca0de5970360a7c120e25fe11fa2)
Merged-In: I3846d284bb6810ed3adea0070ac663babf6bb966
Change-Id: I3846d284bb6810ed3adea0070ac663babf6bb966
 2024-07-25 00:32:06 +00:00
Android Build Coastguard Worker
87f7337bbc Snap for 12135134 from f9d21e23c3 to 24Q4-release 
Change-Id: I7f06f662413f88b2dccc78e7cffc64b5d88f27fb
 2024-07-24 23:02:05 +00:00
Daniel Chapin
2327a5c0f5 Merge "Revert "trusty: storageproxy: add fs_ready_rw property context"" into main 2024-07-24 21:48:57 +00:00
Android Build Coastguard Worker
a354bc4f4e Merge cherrypicks of ['googleplex-android-review.googlesource.com/28469516'] into 24Q4-release. 
Change-Id: Iee85dd20d2bc206dd3df8aa292763375a45e294a
 2024-07-24 21:02:17 +00:00
Daniel Chapin
4943a19244 Revert "trusty: storageproxy: add fs_ready_rw property context" 
Revert submission 28318041-rw_storage

Reason for revert: Droidfood blocking bug b/355163562

Reverted changes: /q/submissionid:28318041-rw_storage
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:7bc5a6b183feca0de5970360a7c120e25fe11fa2)
Merged-In: I3846d284bb6810ed3adea0070ac663babf6bb966
Change-Id: I3846d284bb6810ed3adea0070ac663babf6bb966
 2024-07-24 21:01:00 +00:00
Daniel Chapin
7bc5a6b183 Revert "trusty: storageproxy: add fs_ready_rw property context" 
Revert submission 28318041-rw_storage

Reason for revert: Droidfood blocking bug b/355163562

Reverted changes: /q/submissionid:28318041-rw_storage

Change-Id: I3846d284bb6810ed3adea0070ac663babf6bb966
 2024-07-24 20:17:27 +00:00