Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
4606 commits 1 branch 0 tags 494 MiB
Commit graph

1553 commits

Author SHA1 Message Date
TreeHugger Robot
75f908a8ed Merge "aoc: add audio property for pixellogger update control" into tm-qpr-dev 2022-09-14 01:48:40 +00:00
Jinhee Kim
653e53d11d sepolicy: gs101: allowed permissions required for network access 
avc: denied { write } for comm="Thread-102" name="dnsproxyd" dev="tmpfs" ino=1022 scontext=u:r:vendor_ims_app:s0:c251,c256,c512,c768 tcontext=u:object_r:dnsproxyd_socket:s0 tclass=sock_file permissive=0 app=com.shannon.imsservice
avc: denied { node_bind } for comm="Thread-102" src=50174 scontext=u:r:vendor_ims_app:s0:c251,c256,c512,c768 tcontext=u:object_r:node:s0 tclass=udp_socket permissive=0 app=com.shannon.imsservice

Bug: 242231557
Test: Build
Change-Id: Icc3762cef7f9766d845f1e1a56af1315fc97163b
Signed-off-by: Jinhee Kim <jinhee.k@samsung.com>
Signed-off-by: Kukjin Kim <kgene.kim@samsung.com>
 2022-09-12 15:18:32 +08:00
Hana Kim
09e0e1b280 Sepolicy: add permission to allow create, connect udp socket 
Bug: 226412527
Test: Build
Signed-off-by: Hana Kim <hanaa.kim@samsung.com>
Change-Id: Id9ba79ba87010326c53b6aec408e5cdb291122a6
 2022-09-12 15:17:44 +08:00
Estefany Torres
7b5ed95fdd Add rules for letting logger app send the command to ril 
08-31 23:40:57.354   458   458 E SELinux : avc:  denied  { find } for interface=vendor.samsung_slsi.telephony.hardware.radioExternal::IOemSlsiRadioExternal sid=u:r:logger_app:s0:c252,c256,c512,c768 pid=2901 scontext=u:r:logger_app:s0:c252,c256,c512,c768 tcontext=u:object_r:hal_exynos_rild_hwservice:s0 tclass=hwservice_manager permissive=0
09-01 00:08:19.600  2881  2881 W oid.pixellogger: type=1400 audit(0.0:10): avc: denied { call } for scontext=u:r:logger_app:s0:c252,c256,c512,c768 tcontext=u:r:rild:s0 tclass=binder permissive=0 app=com.android.pixellogger

Bug: 241412942
Test: tested in C10 with pixel logger change
Change-Id: Idcd693790d654d0a9b7aba46a41764d65867a61c
 2022-09-09 17:35:19 +00:00
JJ Lee
8c36ac66d8 sepolicy: add nodes for aoc memory votes stats am: f07279785d am: 479f2286d7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19739216

Change-Id: Icdd11f323d212c2e10a42108afbd91674dce7a3c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-08 06:00:10 +00:00
JJ Lee
479f2286d7 sepolicy: add nodes for aoc memory votes stats am: f07279785d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19739216

Change-Id: I795b972da3d42e7394fbd954f041934370fbd77a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-08 05:16:23 +00:00
TreeHugger Robot
ae2feed036 Merge "Add SE policies for HWC logs" 2022-09-07 12:28:32 +00:00
JJ Lee
f07279785d sepolicy: add nodes for aoc memory votes stats 
Bug: 223674292
Test: build pass, not blocking bugreport
Change-Id: I4732c8b3271f553edc423ac115eb8a6afaebff37
Signed-off-by: JJ Lee <leejj@google.com>
 2022-09-07 11:45:18 +00:00
Adam Shih
c08f9cf882 move insert module script sepolicy to gs-common 
Bug: 243763292
Test: boot to home with no relevant SELinux error
Change-Id: I52fe6631b3ec806a5624375457874d9248927b00
 2022-09-06 10:40:01 +08:00
Adam Shih
5742be1014 move insmod script to gs-common 
Bug: 243763292
Test: boot to home
Change-Id: If676806d806adcd7f1fcecc1199255788e8858ef
 2022-09-05 12:21:43 +08:00
Timmy Li
e6e9e34d22 Merge "Change SElinux so Aswang can be accessed" 2022-09-01 20:37:25 +00:00
Adam Shih
f55fb71bf0 Merge "Move dauntless settings to gs-common" 2022-08-31 23:49:37 +00:00
Roger Fang
d5e2902e91 sepolicy: add permission for AMS rate of pixelstats-vend am: a8eab1aaaf am: 5321008d5c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19711052

Change-Id: If5dad118d1a1c845a84d3b53baff485c58cce03c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-30 05:45:30 +00:00
Roger Fang
5321008d5c sepolicy: add permission for AMS rate of pixelstats-vend am: a8eab1aaaf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19711052

Change-Id: I61f3cfbb14f0f34bf0af2eaba1922b9aed4b7948
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-30 05:15:55 +00:00
Roger Fang
a8eab1aaaf sepolicy: add permission for AMS rate of pixelstats-vend 
I pixelstats-vend: type=1400 audit(0.0:1025): avc: denied { read } for name="ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
I pixelstats-vend: type=1400 audit(0.0:1026): avc: denied { open } for path="/sys/devices/platform/audiometrics/ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
pixelstats-vend: type=1400 audit(0.0:1027): avc: denied { getattr } for path="/sys/devices/platform/audiometrics/ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1

Bug: 239508478
Test: Manually test passed

Signed-off-by: Roger Fang <rogerfang@google.com>
Change-Id: I5c47003bed664f2cd9b6fe3630a6445aca27d10d
 2022-08-30 04:36:41 +00:00
Adam Shih
a5cbf912ce Move dauntless settings to gs-common 
Bug: 242479757
Test: build pass on all Gchip devices
Change-Id: I9751e59b751f867d4cf734ffe7497a2e22c0c6f9
 2022-08-30 12:29:54 +08:00
Robb Glasser
94f9358eed Give permissions to save usf stats and dump them in bugreports. am: 4b4afb2eea am: 6ce1ff96e4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19672464

Change-Id: Idbd78e19d1b642d3cfc306ad69ded4515a14985d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-25 04:06:32 +00:00
Robb Glasser
6ce1ff96e4 Give permissions to save usf stats and dump them in bugreports. am: 4b4afb2eea 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19672464

Change-Id: Iacf95664f2ba6bf126b82e2e2d73bddcddb70422
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-25 03:38:27 +00:00
Robb Glasser
4b4afb2eea Give permissions to save usf stats and dump them in bugreports. 
Creating a mechanism to save some USF stat history to device and pipe it
to bugreports. Granting permissions so that this can work.

Bug: 242320914
Test: Stats save and are visible in a bugreport.
Change-Id: Ia1973800ed053f54da043d306e11c0a7b10132a7
 2022-08-24 22:39:16 +00:00
Treehugger Robot
4c9a910a60 Merge "Add security context for com.google.usf.non_wake_up/wakeup." am: d6ff29d1ca am: a4d246abac am: 6481874c77 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2183507

Change-Id: Ica06811653100886c99ea2d01ab09edfdd83585f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-22 07:46:49 +00:00
Treehugger Robot
d6ff29d1ca Merge "Add security context for com.google.usf.non_wake_up/wakeup." 2022-08-22 06:38:52 +00:00
Treehugger Robot
b551e0475f Merge "Add acd-com.google.usf.non_wake_up file to AoC file context." am: 3cb1ea79c9 am: c56dc643a4 am: b2e001581b 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2183506

Change-Id: I46122f6a44cb7bc4ea9fb1f63c4e57e8f92709f3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-22 05:12:24 +00:00
Treehugger Robot
3cb1ea79c9 Merge "Add acd-com.google.usf.non_wake_up file to AoC file context." 2022-08-22 04:10:13 +00:00
Wiwit Rifa'i
443da0523a Add SE policies for HWC logs 
Bug: 230361290
Test: adb bugreport
Test: adb shell vndservice call Exynos.HWCService 11 i32 0 i32 308 i32 1
Change-Id: I20ec7ee1856a45d271e0e6ebfd7eb74525b96f77
 2022-08-16 13:22:33 +08:00
matthuang
62ba653669 Add security context for com.google.usf.non_wake_up/wakeup. 
Bug: 195077076
Test: Confirm there is no avc denied log.
Change-Id: I8600283d9ff2ebcb45df95e5259484a60921fb1a
Merged-In: I8600283d9ff2ebcb45df95e5259484a60921fb1a
 2022-08-15 18:52:58 +08:00
matthuang
7e89415aaf Add acd-com.google.usf.non_wake_up file to AoC file context. 
Bug: 195077076
Test: ls -lZ dev/acd-com.google.usf.non_wake_up
Change-Id: If9add3528bde47a618bd884ce28121b6fa32754c
Merged-In: If9add3528bde47a618bd884ce28121b6fa32754c
 2022-08-15 18:46:52 +08:00
yixuanjiang
0bbfb98cac aoc: add audio property for pixellogger update control 
Bug: 241059471
Test: local verify
Signed-off-by: yixuanjiang <yixuanjiang@google.com>
Change-Id: I13df2ea88b884756d3a872da545e877ed6b1e033
 2022-08-08 03:48:21 +00:00
TreeHugger Robot
a3fc2a745c Merge "HwInfo: Move hardware info sepolicy to pixel common" 2022-08-03 02:57:30 +00:00
Bruce Po
60920d10a6 Allow aocd to access acd-offload nodes am: 1673f21545 am: 62c16fd040 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19472656

Change-Id: Ic19b92da27365a03cc5f99523fd84a08fa0aa473
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-02 19:33:02 +00:00
Bruce Po
62c16fd040 Allow aocd to access acd-offload nodes am: 1673f21545 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19472656

Change-Id: I524c210830ba139cb36ee5c8a664d87cc5c497ec
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-02 19:05:57 +00:00
Denny cy Lee
ea1580002f HwInfo: Move hardware info sepolicy to pixel common 
Bug: 215271971
Test: no sepolicy for hardware info

Signed-off-by: Denny cy Lee <dennycylee@google.com>
Change-Id: Ia7bfd171fe724848e9a6f0c1adab59402d2788a9
 2022-08-02 07:43:56 +00:00
Bruce Po
1673f21545 Allow aocd to access acd-offload nodes 
For 3-ch hotword feature, aocd daemon will access two new file nodes
(b/235648212), which will be used for transmitting audio to/from AOC.

BUG: 240744178
Change-Id: Ie0a9403d0dca06befdb807067adb9babc4f28bfc
 2022-08-02 06:29:42 +00:00
Lei Ju
1c69e17927 Merge "Allow chre to use WakeLock on whitechapel." 2022-08-01 18:49:57 +00:00
Steven Moreland
b577060b2d Restore HAL type names. 
Sed'd. TH not configured on AOSP. This is the change that is applied already internally.

Change-Id: I03be37c9e50280d6fa2cfdd69dca83c0535b2e35
 2022-08-01 18:41:26 +00:00
Steven Moreland
c6545d33ff Merge "Remove vendor_service." 2022-08-01 17:07:40 +00:00
Steven Moreland
b20e917ebf Remove vendor_service. 
We want to avoid associating types with where they can be used.

Bug: 237115222
Test: build
Change-Id: I4766227e2261d0d57be090933926ff3b439694f6
Merged-In: I4766227e2261d0d57be090933926ff3b439694f6
(cherry picked from commit 81ccf8d719)
 2022-07-29 18:34:05 +00:00
Roger Liao
75ba5fc5cc Fix build break if BOARD_WITHOUT_RADIO am: 5ea60d6348 am: 68ddcb629a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19447103

Change-Id: Idbe29367df44ffa49c6de9125f07f5837e0a2cae
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-29 07:22:32 +00:00
Roger Liao
68ddcb629a Fix build break if BOARD_WITHOUT_RADIO am: 5ea60d6348 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19447103

Change-Id: I5659941108a8504cd4ea13e22f075a8cdcf60749
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-29 06:57:24 +00:00
Roger Liao
5ea60d6348 Fix build break if BOARD_WITHOUT_RADIO 
Fix ERROR 'unknown type radio_vendor_data_file'

Bug: 235907512
Change-Id: I55e88c9364b42db262c057a2aa85816944c1c761
 2022-07-28 17:59:28 +08:00
Steven Moreland
5e9bc45aee Merge "Remove vendor_service." into tm-dev-plus-aosp am: be1bd1eebb am: 6a8d151ba8 am: 829119e383 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19441276

Change-Id: Ideecc231104d31b1cd69714fb0ddb71992645dad
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-28 02:26:31 +00:00
Steven Moreland
829119e383 Merge "Remove vendor_service." into tm-dev-plus-aosp am: be1bd1eebb am: 6a8d151ba8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19441276

Change-Id: Ibef456a15a20694227afe25289387c1caa2bcd0b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-28 01:57:45 +00:00
Steven Moreland
6a8d151ba8 Merge "Remove vendor_service." into tm-dev-plus-aosp am: be1bd1eebb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19441276

Change-Id: Ia9526d71defecd28580dfd6f4619a88dc87ea58f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-28 01:08:22 +00:00
Steven Moreland
be1bd1eebb Merge "Remove vendor_service." into tm-dev-plus-aosp 2022-07-28 00:46:47 +00:00
Tri Vo
5d0e11a0aa storageproxyd: Remove setuid/setgid SELinux permissions am: 78011e9f3a am: a68844f3e1 am: e4f4a40a0c am: 121cb7702d am: cd428bcab4 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2154700

Change-Id: Ic063de9feb084f0a5985093e27142b098612a34b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-27 21:53:47 +00:00
Tri Vo
cd428bcab4 storageproxyd: Remove setuid/setgid SELinux permissions am: 78011e9f3a am: a68844f3e1 am: e4f4a40a0c am: 121cb7702d 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2154700

Change-Id: I7bba70c4cc7cbd1d6298310b60659c6272b5ff3a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-27 21:27:22 +00:00
Tri Vo
121cb7702d storageproxyd: Remove setuid/setgid SELinux permissions am: 78011e9f3a am: a68844f3e1 am: e4f4a40a0c 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2154700

Change-Id: Id91151413c15852b94afcda312c7890fb78c096c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-27 20:33:41 +00:00
Tri Vo
a68844f3e1 storageproxyd: Remove setuid/setgid SELinux permissions am: 78011e9f3a 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2154700

Change-Id: I611a9f1ecd6157c3d1f65c250c698a9ee00a0915
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-27 19:43:32 +00:00
Steven Moreland
81ccf8d719 Remove vendor_service. 
We want to avoid associating types with where they can be used.

Bug: 237115222
Test: build
Change-Id: I4766227e2261d0d57be090933926ff3b439694f6
 2022-07-27 16:50:03 +00:00
Lei Ju
d1ddd0917e Allow chre to use WakeLock on whitechapel. 
Test: Manual test to confirm wakelock is acquired.
Bug: 202447392
Change-Id: I40b83fc22fea79613c060d03beb60857b1b6e0de
 2022-07-26 20:06:05 -07:00
Steven Moreland
2808c8b289 Remove vendor_service. 
We want to avoid associating types with where they can be used.

Bug: 237115222
Test: build
Merged-In: I4766227e2261d0d57be090933926ff3b439694f6
Change-Id: I4766227e2261d0d57be090933926ff3b439694f6
 2022-07-27 00:28:49 +00:00