Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2415 commits 1 branch 0 tags 494 MiB
Commit graph

2415 commits

This branch
This branch
All branches
Author SHA1 Message Date
Jayachandran Chinnakkannu
c6218c4afe Merge "Allow telephony to access the file descriptor of the priv_apps tcp_socket" into sc-dev am: 1c130a7e1d am: 26bcc88a9b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14950196

Change-Id: I05a6717e8e1368e248cec936ebaa0a8edf7dd1b3
 2021-06-12 17:45:19 +00:00
Jayachandran Chinnakkannu
8d0bcc93e1 Merge "Allow telephony to access the file descriptor of the priv_apps tcp_socket" into sc-dev am: 1c130a7e1d am: 40c2dd6b2e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14950196

Change-Id: Ibdde5f144fff98c1bd52b08e57f2bb0909b45550
 2021-06-12 17:44:58 +00:00
Jayachandran Chinnakkannu
40c2dd6b2e Merge "Allow telephony to access the file descriptor of the priv_apps tcp_socket" into sc-dev am: 1c130a7e1d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14950196

Change-Id: Ic723bb2542a94bb3c86d315a89f415eb962f6c39
 2021-06-12 17:31:26 +00:00
Jayachandran Chinnakkannu
26bcc88a9b Merge "Allow telephony to access the file descriptor of the priv_apps tcp_socket" into sc-dev am: 1c130a7e1d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14950196

Change-Id: Id9b9f74bf5caf34af4aad329e0ea3b4ee544146f
 2021-06-12 17:30:37 +00:00
Jayachandran Chinnakkannu
1c130a7e1d Merge "Allow telephony to access the file descriptor of the priv_apps tcp_socket" into sc-dev 2021-06-12 17:19:33 +00:00
TreeHugger Robot
6d84ffcd26 Merge "qllow priv-app to access Pixel power HAL extension." into sc-dev am: 694694857a am: c5d2eaeccb am: 7bddc387cb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14692156

Change-Id: I4ac581e076d29dc6107c76969b8d155942450f54
 2021-06-12 11:01:11 +00:00
Kris Chen
4e3de80e9e Add sepolicy to let fingerprint access power service am: 7db400b679 am: 5991ab5ba7 am: 293194f612 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14665430

Change-Id: Ib0068381e4d66ed92bea00999b71d5aed19807c9
 2021-06-12 10:57:13 +00:00
TreeHugger Robot
922f9fe9f4 Merge "qllow priv-app to access Pixel power HAL extension." into sc-dev am: 694694857a am: a45a1ffc4d am: 35d0c523a6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14692156

Change-Id: I7ec41dd15653e1692873ffa81b9a1559365077ce
 2021-06-12 10:52:58 +00:00
Kris Chen
65d63122cd Add sepolicy to let fingerprint access power service am: 7db400b679 am: 89a68b0fac am: 1c6b824cd7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14665430

Change-Id: Ib89db503fb1b0939c8bd937c9656a9f283efba16
 2021-06-12 10:52:48 +00:00
TreeHugger Robot
7bddc387cb Merge "qllow priv-app to access Pixel power HAL extension." into sc-dev am: 694694857a am: c5d2eaeccb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14692156

Change-Id: I538a39764babaedab979782ca23cf8ad7531004b
 2021-06-12 10:41:47 +00:00
Kris Chen
293194f612 Add sepolicy to let fingerprint access power service am: 7db400b679 am: 5991ab5ba7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14665430

Change-Id: I24c9c4dbc29c21e382f76e47c28c57715b1e309f
 2021-06-12 10:41:38 +00:00
TreeHugger Robot
35d0c523a6 Merge "qllow priv-app to access Pixel power HAL extension." into sc-dev am: 694694857a am: a45a1ffc4d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14692156

Change-Id: I034ae5e1c48a494405aaf915419af0c16cb628c2
 2021-06-12 10:41:11 +00:00
Kris Chen
1c6b824cd7 Add sepolicy to let fingerprint access power service am: 7db400b679 am: 89a68b0fac 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14665430

Change-Id: I78e827879c32515678288eee944b0b9f5e66c8ad
 2021-06-12 10:41:01 +00:00
TreeHugger Robot
a45a1ffc4d Merge "qllow priv-app to access Pixel power HAL extension." into sc-dev am: 694694857a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14692156

Change-Id: I2bc53103a317ac5e19642fb7bb8fe0586aab81dd
 2021-06-12 10:28:06 +00:00
Kris Chen
89a68b0fac Add sepolicy to let fingerprint access power service am: 7db400b679 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14665430

Change-Id: Ieb52fb6f5ee68d0155f9acacda9853757fed4200
 2021-06-12 10:27:55 +00:00
TreeHugger Robot
c5d2eaeccb Merge "qllow priv-app to access Pixel power HAL extension." into sc-dev am: 694694857a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14692156

Change-Id: Idc40fc74a562912a8ee35b8db966c88421778949
 2021-06-12 10:27:15 +00:00
Kris Chen
5991ab5ba7 Add sepolicy to let fingerprint access power service am: 7db400b679 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14665430

Change-Id: Id2d4cb0874a39145561fc6deb825a25ec40162d8
 2021-06-12 10:27:04 +00:00
TreeHugger Robot
694694857a Merge "qllow priv-app to access Pixel power HAL extension." into sc-dev 2021-06-12 10:22:24 +00:00
Jayachandran C
5492a92a39 Allow telephony to access the file descriptor of the priv_apps tcp_socket 
The priv_apps could register for QOS notifications for its tcp_socket.
This change allows telephony to access the file descriptor for the
tcp_socket so it could double check the source and destination address
of the socket when the QOS indication is received from modem.

This addresses the following SE policy denial
auditd  : type=1400 audit(0.0:219): avc: denied { read write } for
comm="ConnectivitySer" path="socket:[98511]" dev="sockfs" ino=98511
scontext=u:r:radio:s0 tcontext=u:r:priv_app:s0:c512,c768 tclass=tcp_socket
permissive=0

Bug: 190580419
Test: Manual
Change-Id: I35d4e1fb06242eb5fcbcb36439a55c11166b149b
 2021-06-12 05:18:15 +00:00
Rick Yiu
ad47112c59 gs101-sepolicy: Fix avc denial for permissioncontroller_app 
Bug: 190671898
Test: build pass
Change-Id: I3ccfe958892cd27ebbcacc651847d4277d39855b
 2021-06-11 18:41:10 +08:00
Adam Shih
d0bb828434 remove vcd from user ROM 
Bug: 190331325
Test: build all ROM variants with only user ROM without vcd
Change-Id: If9dc555ee8582b605ccdf9d60c3a9c89cd6634d8
 2021-06-11 11:46:22 +08:00
Richard Hsu
8c979899cc [BugFix] SEPolicy for libedgetpu_darwinn2.so logging to stats service 
In order to access the darwinn metrics library from the google camera
app (product partition), we need to create an SELinux exception for
the related shared library (in vendor) it uses. This CL adds the same_process_hal_file tag to allow this exception.

Bug: 190661153, 151063663

Test: App can load the .so and not crash after this change.
Before: No permission to access namespace.
(https://paste.googleplex.com/6602755121610752)
After: GCA doesn't crash on load.

Change-Id: I8671732184bbbe283c94d1acd3bb1ff397fe651c
 2021-06-10 19:36:35 -07:00
Adam Shih
d00aafac75 remove obsolete entries 
Bug: 190672147
Bug: 173969091
Bug: 171760921
Bug: 178331773
Bug: 178752616
Bug: 188752940
Bug: 184005231
Bug: 182086688
Bug: 177176899
Bug: 182953825
Bug: 176528557
Bug: 183935382
Test: boot and do bugreport with no relevant error showed up
Change-Id: I869db698e96d2d6cfd533b7fd24c8c88d39fd0eb
 2021-06-11 10:35:59 +08:00
Denny cy Lee
25373353a7 Sepolicy: Remove permission for fuel gauge 
Bug: 189811224
Test: manually, read success in enforcing mode
Change-Id: Ie56179980a9946010fb25683e3819cddbfb93cfb
Signed-off-by: Denny cy Lee <dennycylee@google.com>
 2021-06-11 09:39:53 +08:00
Kris Chen
7db400b679 Add sepolicy to let fingerprint access power service 
Fix the following avc denial:
SELinux : avc:  denied  { find } for pid=1055 uid=1000 name=android.hardware.power.IPower/default scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:hal_power_service:s0 tclass=service_manager permissive=0

Bug: 185893477
Test: Observe from systrace that the CPU frequency is boosted when
      running fingerprint algorithm.
Change-Id: I245058b912ec2af3555154934dbe722b445181a9
 2021-06-10 21:31:06 +00:00
Sung-fang Tsai
985aa698c7 qllow priv-app to access Pixel power HAL extension. 
SELinux issues to solve:

native  : aion.cc:780 Error loading lib_aion_buffer.so dlopen failed: library "pixel-power-ext-V1-ndk_platform.so" not found: needed by /vendor/lib64/lib_aion_buffer.so in namespace sphal

05-23 10:11:32.055   420   420 E SELinux : avc:  denied  { find } for pid=6630 uid=10089 name=android.hardware.power.IPower/default scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:hal_power_service:s0 tclass=service_manager permissive=0

Bug: 187373665
Test: Passed, procedure listed in b/187373665#comment8 with forrest.
Change-Id: Ice7c69bca4a029a61ca1ccb7087ea01948ae5f24
 2021-06-10 17:56:17 +00:00
SHUCHI LILU
f9e7e10fec Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 am: 7d1fa8b9ce am: 4e81985347 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I4ef2e8abfbc7b3e0eb42b66599584249497fc6bf
 2021-06-10 11:50:27 +00:00
SHUCHI LILU
cdbd079b96 Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 am: f2bc0d7bd7 am: b7394346cd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: Iebe2bd2b8902ac035babe572b31c927477429ac5
 2021-06-10 11:50:20 +00:00
SHUCHI LILU
4e81985347 Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 am: 7d1fa8b9ce 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I2f7a9744c830156ce4b1ff8c9ad7c3c68e6d953e
 2021-06-10 11:34:14 +00:00
SHUCHI LILU
b7394346cd Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 am: f2bc0d7bd7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I7eca5fe2191e8b5b127d4efdc5594fb1eb53320a
 2021-06-10 11:33:23 +00:00
SHUCHI LILU
f2bc0d7bd7 Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I4ea6afe2de9a03eca793775f14ea24b8678931cf
 2021-06-10 11:22:24 +00:00
SHUCHI LILU
7d1fa8b9ce Merge "Update avc error on ROM 7444346" into sc-dev am: 61843906c0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928573

Change-Id: I4cfc4f0fb97b796a3a118859ac30399ab15a2446
 2021-06-10 11:21:07 +00:00
SHUCHI LILU
61843906c0 Merge "Update avc error on ROM 7444346" into sc-dev 2021-06-10 11:06:35 +00:00
TreeHugger Robot
0a3828333f Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd am: fadd9f9dd2 am: 891656c7a7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: Ic61dc65ea25f13648edfa9e6d8e0b3d638ef3f6e
 2021-06-10 08:12:21 +00:00
TreeHugger Robot
1afe6a4ec1 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd am: e7d53d61b0 am: a086a78e86 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: I4159a90f2ca49abe353ab3daf7628cb386642aa0
 2021-06-10 08:12:07 +00:00
TreeHugger Robot
891656c7a7 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd am: fadd9f9dd2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: If051249b25d3fd5dc96492a66dd274dc7c0e8446
 2021-06-10 07:57:13 +00:00
TreeHugger Robot
a086a78e86 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd am: e7d53d61b0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: Ie9be7a6977b11a8f8e8330fe7f59404b01779e0f
 2021-06-10 07:56:32 +00:00
TreeHugger Robot
e7d53d61b0 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: I64965eae7d9d39ed1495bb87b51358a55c894301
 2021-06-10 07:39:05 +00:00
TreeHugger Robot
fadd9f9dd2 Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev am: a501b656dd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911637

Change-Id: I65292901788f5e98123e550dc676be9b66f958b3
 2021-06-10 07:37:41 +00:00
TreeHugger Robot
a501b656dd Merge "gs101-sepolicy: Fix avc denial for sysfs_vendor_sched" into sc-dev 2021-06-10 07:20:58 +00:00
sukiliu
d27e574f3e Update avc error on ROM 7444346 
Bug: 190672147
Bug: 190671898
Test: Test: PtsSELinuxTestCases
Change-Id: Ie9400df24f30474915d757b61ddb1c3fb77903c5
 2021-06-10 15:16:37 +08:00
Adam Shih
80c0cb9b27 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f am: 70121504b6 am: c36fe574f4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: I8fada5f930c907708fee2fc19435b832f8fd8d2c
 2021-06-10 06:41:04 +00:00
Adam Shih
c09a0da122 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f am: 922b7f6057 am: c7a6a9f592 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: Ic22fe011000dc4804b7764d22c0be3ed8810aede
 2021-06-10 06:40:51 +00:00
Adam Shih
c36fe574f4 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f am: 70121504b6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: I935fdf9107adb939dd61cc21bd1af4324fa3d907
 2021-06-10 06:25:10 +00:00
Adam Shih
c7a6a9f592 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f am: 922b7f6057 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: Idb0cabcf72b3ab36cd01debf573a7d580e130418
 2021-06-10 06:24:28 +00:00
Adam Shih
922b7f6057 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: I668f8e93d4edf03746aea4cf76155af17df5fb50
 2021-06-10 06:13:24 +00:00
Adam Shih
70121504b6 Merge "reorganize trusty_metricsd settings" into sc-dev am: a81732dd6f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911639

Change-Id: Idc5ee712a86aa778f62abb93d6b6ff4cdcefec4c
 2021-06-10 06:12:07 +00:00
Adam Shih
a81732dd6f Merge "reorganize trusty_metricsd settings" into sc-dev 2021-06-10 05:52:40 +00:00
TreeHugger Robot
28029ee0b7 Merge "update wakeup node" into sc-dev am: d3b0256025 am: a34e5d929b am: e967755371 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928571

Change-Id: Ia3c92dee2977db19fa560da278693faf9bc64d60
 2021-06-10 04:41:15 +00:00
TreeHugger Robot
138e2962c0 Merge "update wakeup node" into sc-dev am: d3b0256025 am: 15c7fdc5bb am: 55540c1dd5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928571

Change-Id: If97f519f75464aad0f18c97602dcef5424f96bc8
 2021-06-10 04:40:50 +00:00