Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4583 commits 1 branch 0 tags 494 MiB
Commit graph

4583 commits

This branch
This branch
All branches
Author SHA1 Message Date
Adam Shih
f05cdba220 allow bootctl to read devinfo 
Bug: 182705986
Test: boot with no relevant log found
Change-Id: I6d4c699fe1492f8fbcd5b8a9ba98da2fade57bd7
 2021-03-22 16:10:22 +08:00
TreeHugger Robot
df64c08266 Merge "update error on ROM 7225160" into sc-dev 2021-03-22 02:52:56 +00:00
David Li
6dce033807 Merge "audio: add /dev/acd-audio_dcdoff_ref for audio effect visualizer" into sc-dev 2021-03-22 02:07:33 +00:00
Adam Shih
38e55f2331 update error on ROM 7225160 
Bug: 183338483
Bug: 183338543
Bug: 183338421
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I16548c00f2a2c38b190664a5cc20ae67d04a8454
 2021-03-22 09:52:45 +08:00
Christine Franks
a334f079cc Add uhid access for exo 
This is required to write input events to /dev/uinput.

Bug: 182854143
Test: n/a
Change-Id: Icd9714a61be62d40d1b3e5e9d7dcb33ce5f0bf6b
 2021-03-19 23:31:08 +00:00
Alex Hong
b640326154 Add the sepolicy for UWB hal 
Bug: 182727934
Test: $ make selinux_policy
      Push SELinux modules and check the denials during boot
Change-Id: I630e6e353897a85d1b90c7d8a4250703a4c3a245
 2021-03-19 21:42:07 +08:00
TreeHugger Robot
8d7d184bcf Merge "remove workaround as vendor_init is ready" into sc-dev am: 9225f4e5d0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13921069

Change-Id: Ia0d7bf18a52ff1069fc692e270eb79837290af2e
 2021-03-19 07:24:08 +00:00
TreeHugger Robot
9225f4e5d0 Merge "remove workaround as vendor_init is ready" into sc-dev 2021-03-19 06:43:54 +00:00
Adam Shih
42bd5867e8 Merge "label missing vibrator sys nodes" into sc-dev am: 3f6e2bba41 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13908553

Change-Id: I7f44920dd91712c201a8fc55d15ee89ab405dcbb
 2021-03-19 06:05:41 +00:00
Adam Shih
3f6e2bba41 Merge "label missing vibrator sys nodes" into sc-dev 2021-03-19 05:32:27 +00:00
TreeHugger Robot
78976ea7e1 Merge "Add sepolicy rules for fingerprint hal" into sc-dev am: fc6b81d188 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13918107

Change-Id: Ib09464497cc1b3c366ff2939b5885d565069d15d
 2021-03-19 05:01:34 +00:00
TreeHugger Robot
fc6b81d188 Merge "Add sepolicy rules for fingerprint hal" into sc-dev 2021-03-19 04:37:58 +00:00
TreeHugger Robot
c197961ab5 Merge "update error on ROM 7219510" into sc-dev am: 4eba688673 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13921068

Change-Id: Ia35cde269940c847ec6e064c845bad98c5c4d595
 2021-03-19 04:23:51 +00:00
TreeHugger Robot
a5cfd7aaab Merge "power: Add policy to access sysfs_bcl" into sc-dev am: 46b51cd204 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13876026

Change-Id: I829fe7b028908f791e72fd551b1d24bd92c880c3
 2021-03-19 04:23:17 +00:00
Adam Shih
ac6b1273e4 remove workaround as vendor_init is ready 
Bug: 171942789
Test: boot under enforcing ROM
Change-Id: If4bb070ecf2272dd927ceaeda1882d2fad62b4c3
 2021-03-19 11:58:39 +08:00
TreeHugger Robot
4eba688673 Merge "update error on ROM 7219510" into sc-dev 2021-03-19 03:51:31 +00:00
Kris Chen
09996bc810 Add sepolicy rules for fingerprint hal 
Fixes the following avc denials:
03-18 11:23:15.692   956   956 I android.hardwar: type=1400 audit(0.0:7): avc: denied { read write } for name="trusty-ipc-dev0" dev="tmpfs" ino=691 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:tee_device:s0 tclass=chr_file permissive=1
03-18 11:23:15.692   956   956 I android.hardwar: type=1400 audit(0.0:8): avc: denied { open } for path="/dev/trusty-ipc-dev0" dev="tmpfs" ino=691 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:tee_device:s0 tclass=chr_file permissive=1
03-18 11:23:15.692   956   956 I android.hardwar: type=1400 audit(0.0:9): avc: denied { ioctl } for path="/dev/trusty-ipc-dev0" dev="tmpfs" ino=691 ioctlcmd=0x7280 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:tee_device:s0 tclass=chr_file permissive=1
03-18 11:40:56.072   973   973 I fingerprint@2.1: type=1400 audit(0.0:39): avc: denied { search } for name="battery" dev="sysfs" ino=66502 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=1
03-18 11:40:56.072   973   973 I fingerprint@2.1: type=1400 audit(0.0:40): avc: denied { read } for name="temp" dev="sysfs" ino=66520 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
03-18 11:40:56.072   973   973 I fingerprint@2.1: type=1400 audit(0.0:41): avc: denied { open } for path="/sys/devices/platform/google,battery/power_supply/battery/temp" dev="sysfs" ino=66520 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
03-18 14:11:23.476   979   979 I fingerprint@2.1: type=1400 audit(0.0:13): avc: denied { search } for name="battery" dev="sysfs" ino=66502 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=1
03-18 12:03:08.248   978   978 I android.hardwar: type=1400 audit(0.0:9): avc: denied { create } for scontext=u:r:hal_fingerprint_default:s0 tcontext=u:r:hal_fingerprint_default:s0 tclass=netlink_socket permissive=1
03-18 12:03:08.248   978   978 I android.hardwar: type=1400 audit(0.0:10): avc: denied { bind } for scontext=u:r:hal_fingerprint_default:s0 tcontext=u:r:hal_fingerprint_default:s0 tclass=netlink_socket permissive=1
03-18 12:03:08.248   978   978 I android.hardwar: type=1400 audit(0.0:11): avc: denied { write } for scontext=u:r:hal_fingerprint_default:s0 tcontext=u:r:hal_fingerprint_default:s0 tclass=netlink_socket permissive=1
03-18 12:03:08.248   978   978 I android.hardwar: type=1400 audit(0.0:12): avc: denied { read } for scontext=u:r:hal_fingerprint_default:s0 tcontext=u:r:hal_fingerprint_default:s0 tclass=netlink_socket permissive=1
03-18 12:56:30.446   404   404 E SELinux : avc:  denied  { add } for interface=vendor.goodix.hardware.biometrics.fingerprint::IGoodixFingerprintDaemon sid=u:r:hal_fingerprint_default:s0 pid=967 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:default_android_hwservice:s0 tclass=hwservice_manager permissive=1

Bug: 171943101
Test: No above avc denials in logcat.
Change-Id: I67b397f86c39625b77ebe6d32d37e42cd87b3f93
 2021-03-19 03:41:18 +00:00
TreeHugger Robot
46b51cd204 Merge "power: Add policy to access sysfs_bcl" into sc-dev 2021-03-19 03:39:32 +00:00
Adam Shih
8d2feed7ed label missing vibrator sys nodes 
Bug: 182954060
Test: boot with no avc error found
Change-Id: I1ffd97c6646d106c88efe36bfb4483ae44415eaa
 2021-03-19 11:14:36 +08:00
TreeHugger Robot
71f0fd6e55 Merge "Allow fingerprint hal to access fingerprint device" into sc-dev am: 9a865e84c7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13918106

Change-Id: I7f56e90224fe24568d84bcdd4a6a91deed3194bb
 2021-03-19 03:08:00 +00:00
George Lee
9c3d77d088 power: Add policy to access sysfs_bcl 
Bug: 180620276
Test: adb bugreport
dumpstate_board.txt shows:
------ BCL (/sys/devices/virtual/pmic/mitigation/triggered_stats) ------
Source    	Count	Last Triggered	Last SOC	Last Voltage
smpl_warn      	0	0		0		0
ocp_cpu1       	0	0		0		0
ocp_cpu2       	0	0		0		0
soft_ocp_cpu1  	0	0		0		0
soft_ocp_cpu2  	0	0		0		0
ocp_tpu        	0	0		0		0
soft_ocp_tpu   	0	0		0		0
pmic_120c      	0	0		0		0
pmic_140c      	0	0		0		0
pmic_overheat  	0	0		0		0
ocp_gpu        	0	0		0		0
soft_ocp_gpu   	0	0		0		0

------ IF PMIC (/sys/devices/virtual/pmic/max77759-mitigation/triggered_stats) ------
Source    	Count	Last Triggered	Last SOC	Last Voltage
VDROOP1        	0	0		0		0
VDROOP2        	0	0		0		0
BATOILO        	0	0		0		0

Signed-off-by: George Lee <geolee@google.com>
Change-Id: If7874e19b8202175071d474502e77748168565ce
 2021-03-19 02:56:32 +00:00
Adam Shih
857ea2e064 update error on ROM 7219510 
Bug: 183161715
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: Id5c7856e7b77600f47df652a95ac342f11c924f5
 2021-03-19 10:52:09 +08:00
TreeHugger Robot
9a865e84c7 Merge "Allow fingerprint hal to access fingerprint device" into sc-dev 2021-03-19 02:19:59 +00:00
David Li
fa11af6a07 audio: add /dev/acd-audio_dcdoff_ref for audio effect visualizer 
Set /dev/acd-audio_dcdoff_ref as u:object_r:aoc_device:s0
crw-rw---- 1 system audio u:object_r:aoc_device:s0  500,  29 2021-03-18 22:19 /dev/acd-audio_dcdoff_ref

Bug: 180984363
Bug: 165719427
Test: make -j128
Test: ls -alZ /dev/acd-audio_dcdoff_ref
Change-Id: If7cd3ef99885730287648afebb222d4f925d325e
 2021-03-19 10:10:49 +08:00
Kris Chen
10fda56cd1 Allow fingerprint hal to access fingerprint device 
Fixes the following avc denials:
03-18 10:57:10.612   947   947 I android.hardwar: type=1400 audit(0.0:8): avc: denied { open } for path="/dev/goodix_fp" dev="tmpfs" ino=482 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=1
03-18 10:57:10.632   947   947 I android.hardwar: type=1400 audit(0.0:9): avc: denied { ioctl } for path="/dev/goodix_fp" dev="tmpfs" ino=482 ioctlcmd=0x6707 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=1
03-18 10:57:13.672   947   947 I android.hardwar: type=1400 audit(0.0:14): avc: denied { ioctl } for path="/dev/goodix_fp" dev="tmpfs" ino=482 ioctlcmd=0x6706 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=1
03-18 10:57:32.704   947   947 I HwBinder:947_1: type=1400 audit(0.0:26): avc: denied { ioctl } for path="/dev/goodix_fp" dev="tmpfs" ino=482 ioctlcmd=0x6705 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=1

Bug: 171943101
Test: No above avc denials in logcat.
Change-Id: I254a01a2c11fcaba9ad3f387862a8d0ddafffd38
 2021-03-18 19:23:54 +08:00
TreeHugger Robot
005b56dc05 Merge "sepolicy: fix usb hal selinux permission" into sc-dev am: 2433a82427 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13899365

Change-Id: Iec98ad83437265a5b557eaaddc22d52dd7fe0269
 2021-03-18 06:20:40 +00:00
TreeHugger Robot
2433a82427 Merge "sepolicy: fix usb hal selinux permission" into sc-dev 2021-03-18 05:47:52 +00:00
SalmaxChang
4393badd84 Update vendor_modem_prop and add rules for mds am: 2797490192 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13895427

Change-Id: Id23adbbf9cbf6cb7dcb76632cca5adfba44e369b
 2021-03-18 05:27:50 +00:00
SalmaxChang
2797490192 Update vendor_modem_prop and add rules for mds 
Bug: 181185131
Change-Id: Ie709e08152d23428a687c949359316206843b9fa
 2021-03-18 04:48:19 +00:00
TreeHugger Robot
ddd3cf4514 Merge changes I15473321,Id60bb2e8 into sc-dev am: 8a191daf92 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13908551

Change-Id: I59cf2780c00e6b9b524edf0bdd7ef20c7ecc796b
 2021-03-18 04:28:48 +00:00
TreeHugger Robot
8a191daf92 Merge changes I15473321,Id60bb2e8 into sc-dev 
* changes:
  remove obsolete entries
  update error on ROM 7216638
 2021-03-18 04:02:01 +00:00
Ines Ayara
7a8dcc0893 Merge "Add "libedgetpu_darwinn2.so" library duplicate to be used for external launch." into sc-dev am: 338d324e5a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13904945

Change-Id: I43397196ba9d57b84bde59d1f0034b8f68052810
 2021-03-18 03:41:15 +00:00
Ines Ayara
338d324e5a Merge "Add "libedgetpu_darwinn2.so" library duplicate to be used for external launch." into sc-dev 2021-03-18 02:54:19 +00:00
Adam Shih
c36661eb0b remove obsolete entries 
Bug: 177389198
Bug: 177860960
Bug: 178752576
Bug: 178753472
Bug: 179310892
Bug: 179437292
Bug: 179437988
Bug: 180656125
Bug: 180960879
Bug: 182705863
Test: boot and grab bugreport with no gmscore error found
Change-Id: I154733215aeca58a76add8d346cc0016a5f0dff7
 2021-03-18 10:15:43 +08:00
Adam Shih
15a0c61432 update error on ROM 7216638 
Bug: 183055762
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: Id60bb2e822734e23803b8f937b71dc59a325c27b
 2021-03-18 10:03:37 +08:00
Albert Wang
beb4f82d32 sepolicy: fix usb hal selinux permission 
avc: denied { read } for name="port0-partner" dev="sysfs" ino=98412 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=1
avc: denied { open } for path="/sys/devices/platform/10d50000.hsi2c/i2c-6/6-0025/typec/port0/port0-partner" dev="sysfs" ino=98412 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=1
avc: denied { getattr } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0025/typec/port0/power_role" dev="sysfs" ino=67861 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
avc: denied { open } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0025/typec/port0/power_role" dev="sysfs" ino=67861 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
avc: denied { write } for name="port_type" dev="sysfs" ino=71778 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1

Bug: 182122983
Test: atest VtsHalUsbV1_0TargetTest
      atest HalUsbGadgetV1_0HostTest
Signed-off-by: Albert Wang <albertccwang@google.com>
Change-Id: Ia2cf9061dd5eaa7af582331477afd34db56531e8
 2021-03-18 09:51:14 +08:00
TreeHugger Robot
2a61dddc6f Merge "Fix selinux error for vendor_init" into sc-dev am: 57ec723c5e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13880426

Change-Id: I66406cd526eaebca4ce94ab9dd3f9594e3e1c5ae
 2021-03-18 01:18:38 +00:00
TreeHugger Robot
57ec723c5e Merge "Fix selinux error for vendor_init" into sc-dev 2021-03-18 00:49:15 +00:00
iayara
adeaaead76 Add "libedgetpu_darwinn2.so" library duplicate to be used for external 
launch.

This change is intended to keep naming consistency with previous
Darwinn external launch. In the future, all "libedgetpu_darwinn2.so"
instances should be replaced by "libedgetpu_util.so".

Bug: 182303547
Change-Id: I99e83f5f2e317b195b2061c781cb23544e547c55
 2021-03-17 23:47:07 +00:00
Hridya Valsaraju
fed91e74ba Merge "Add a label for Pixel DMA-BUF heap tracepoints" into sc-dev am: 2f772dd166 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13896546

Change-Id: Idfe3aa3b34bb8b6b8eb8f348b940327656a96c2f
 2021-03-17 22:44:05 +00:00
Hridya Valsaraju
2f772dd166 Merge "Add a label for Pixel DMA-BUF heap tracepoints" into sc-dev 2021-03-17 21:58:55 +00:00
Yu-Chi Cheng
bcb92ac0c9 Merge "Allowed Camera hal to access EdgeTPU service for on-device compilation." into sc-dev am: a802ac3b05 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13889939

Change-Id: Iff962bcb9446a4a48123dc0ff435ffd56a115079
 2021-03-17 21:10:37 +00:00
Yu-Chi Cheng
a802ac3b05 Merge "Allowed Camera hal to access EdgeTPU service for on-device compilation." into sc-dev 2021-03-17 20:37:44 +00:00
Yu-Chi Cheng
86aa156202 Allowed Camera hal to access EdgeTPU service for on-device compilation. 
Camera hal DarwiNN pipelines are switching to use the on-device
compilation, which achieves by talking to the EdgeTPU service.
This change added the required selinux policies to allow accessing
the service, as well as allowing file descriptors to be shared
between them for passing the compilation info around.

Bug: 182423730
Bug: 182706078
Test: verified on Oriole running camera.
Change-Id: I5d3bc84fd54d4618f505f37d9773894261061d7f
 2021-03-17 08:18:55 -07:00
Aaron Tsai
185dbee4eb Fix selinux error for vendor_init 
03-12 18:15:16.240  root     1     1 I /system/bin/init: type=1107 audit(0.0:19): uid=0 auid=4294967295 ses=4294967295 subj=u:r:init:s0 msg='avc: denied { set } for property=vendor.sys.modem_reset pid=354 uid=0 gid=0 scontext=u:r:vendor_init:s0 tcontext=u:object_r:vendor_sys_default_prop:s0 tclass=property_service permissive=1'

Bug: 182715587
Test: verified with the forrest ROM and error log gone
Change-Id: Icfea06220c491d414f6bdbf04ceda4c46299fb29
 2021-03-17 10:14:31 +00:00
TreeHugger Robot
afdfc82734 Merge "label uwb service to prevent reset after unplugging USB" into sc-dev am: 64c726720b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13895430

Change-Id: I7d50b4777a52b307272c8b9ab68f2eeb279ebb4d
 2021-03-17 08:36:35 +00:00
Jenny Ho
673ba29390 Merge "genfs_contexts: add sepolicy for dumping eeprom data" into sc-dev am: 208d1aed01 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13895428

Change-Id: I39b601de53ad1b2ccfec2274194b9dfcb8f1dbf1
 2021-03-17 08:36:13 +00:00
TreeHugger Robot
64c726720b Merge "label uwb service to prevent reset after unplugging USB" into sc-dev 2021-03-17 08:35:08 +00:00
Jenny Ho
208d1aed01 Merge "genfs_contexts: add sepolicy for dumping eeprom data" into sc-dev 2021-03-17 08:07:45 +00:00
Adam Shih
ebeae6abc3 label uwb service to prevent reset after unplugging USB 
Bug: 182953824
Test: unplug USB under enforcing mode
Change-Id: Ib4bdf9b9339fc631d045bde57f78a46ce3ca8b6e
 2021-03-17 15:25:27 +08:00