Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3355 commits 1 branch 0 tags 494 MiB
Commit graph

182 commits

Author SHA1 Message Date
Treehugger Robot
dfd9324aca Merge "Remove bug_map entry for incident" am: bc70a9f3df 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2436853

Change-Id: I435bdfe151ffbb88e2b3e2f8360acfaf42093ee4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-02-15 01:36:50 +00:00
Thiébaud Weksteen
10d08a16e1 Remove bug_map entry for incident 
Bug: 238570971
Bug: 238571324
Bug: 238571420
Test: presubmit
Change-Id: Ib24d85aaed87e6e5dc0b0281d65407e8c45e017c
 2023-02-15 10:19:58 +11:00
Adam Shih
d246880b0d update error on ROM am: 776148c936 am: 6dcabc08bf 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2376986

Change-Id: I546135adca5de40c7792405ba32d4f4cc8328424
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-01-06 05:05:08 +00:00
Adam Shih
776148c936 update error on ROM 
Bug: 242203678
Test: pass boot test
Change-Id: Ib50c5aed2787d068e589491373a75de47cbe48ee
Merged-In: Ifa7de8df3b09eabee7df8008dbb381854e18f48f
 2023-01-06 02:42:14 +00:00
Lucas Wei
5851e17605 votable: update SEpolicy error 
Bug: 247905787
Signed-off-by: Lucas Wei <lucaswei@google.com>
Change-Id: Ia6dfb7796ab46b0ac339b98465ccd91624b655ed
 2022-10-23 23:23:41 +08:00
Adam Shih
5bf5ffc8d3 mute update_engine probing mnt_vendor_file am: 5889704eff am: 203f473af5 am: c68fe289e3 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2124912

Change-Id: I2afec41baa838d8db9ab23d9d01def68249d99c5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-14 05:44:54 +00:00
Adam Shih
c68fe289e3 mute update_engine probing mnt_vendor_file am: 5889704eff am: 203f473af5 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2124912

Change-Id: I15a18379ff4969dcb043e2fae94cf6c9f13ac834
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-14 05:18:34 +00:00
Adam Shih
5889704eff mute update_engine probing mnt_vendor_file 
Bug: 187016910
Test: boot to home
Change-Id: I5f7141f817b543a1499ef5826177f3ac4945e857
 2022-06-14 02:58:58 +00:00
Krzysztof Kosiński
bdd4ecc51c gs101: Add dontaudit statements to camera HAL policy. am: fbcf66a04a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18817845

Change-Id: I6138022efbcdc8ce149123399d3a8277e69c64b7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-10 21:04:38 +00:00
Krzysztof Kosiński
fbcf66a04a gs101: Add dontaudit statements to camera HAL policy. 
The autogenerated dontaudit statements in tracking_denials are
actually the correct policy. Move them to the correct file and
add comments.

Fix: 178980085
Fix: 180567725
Fix: 218585004
Test: build & camera check on raven
Change-Id: I3f3a1f64d403182d4f592f1cacc6ef8d1418062d
(cherry picked from commit b71d24d62c)
 2022-06-09 20:53:05 +00:00
Adam Shih
d7f53f6018 remove obsolete entries 
Bug: 190337296
Bug: 228181404
Test: adb bugreport
Change-Id: Ibd5ea9d9d56b7da9b17f78f22aef985d5f33df94
Merged-In: Ibd5ea9d9d56b7da9b17f78f22aef985d5f33df94
 2022-06-09 12:06:04 +08:00
Adam Shih
2bb24e91b3 remove obsolete entries 
Bug: 190337296
Bug: 228181404
Test: adb bugreport
Change-Id: Ibd5ea9d9d56b7da9b17f78f22aef985d5f33df94
 2022-06-09 11:59:45 +08:00
Adam Shih
acf18a6f23 remove obsolete sepolicy 
Bug: 193474772
Bug: 193726003
Bug: 193009345
Bug: 190337283
Bug: 226717475
Test: boot with no relevant avc error shows up
Change-Id: I8af2693fb7726e49d9b6d1c13010840a0b581326
 2022-06-09 11:29:43 +08:00
Adam Shih
518c7910be remove obsolete sepolicy 
Bug: 193474772
Bug: 193726003
Bug: 193009345
Bug: 190337283
Bug: 226717475
Test: boot with no relevant avc error shows up

Change-Id: I8af2693fb7726e49d9b6d1c13010840a0b581326
Merged-In: I8af2693fb7726e49d9b6d1c13010840a0b581326
 2022-06-09 11:05:03 +08:00
Orion Hodson
71f450f955 Remove incidentd denial for apex_info_file am: 400d4fb7f4 am: 4fa31df30e 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2098049

Change-Id: I7dc2d9dc20e060c9c2db2b9f98bd1292e0677033
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-16 16:59:14 +00:00
Orion Hodson
400d4fb7f4 Remove incidentd denial for apex_info_file 
Underlying issue addressed by https://r.android.com/1849822 which
gives incidentd r_file_perms for apex_info_file:file.

Fix: 187015816
Test: atest incidentd_test; adb logcat | grep denied
Change-Id: I90b57a5f01c97c8488c10692208080557a863051
 2022-05-16 14:45:53 +01:00
chungkai
384218408f sepolicy: ignore avc denial 
dont audit since it's debugfs

Bug: 228181404
Test: forrest with boot test
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: I7f2a85e2a405c78c9d8d11e9c2fdfdc5e87f7931
 2022-04-06 09:21:24 +00:00
sukiliu
ed3ac0623b Update avc error on ROM 8386107 
Bug: 226717475
Test: PtsSELinuxTestCases
Change-Id: Ia366a4ad0f193858960b7c5df34096bd2d4eada5
 2022-03-31 15:48:04 +08:00
sukiliu
037f9cda4e Update avc error on ROM 8276520 
Bug: 223502652
Bug: 223330933
Test: PtsSELinuxTestCases
Change-Id: Ib8c14c4928410ee5ed4626e95e2882b89341ee9a
 2022-03-09 14:16:33 +08:00
Kris Chen
e0c6120237 Add sepolicy rules for fingerprint hal 
Fix the following avc denial:
avc: denied { set } for property=vendor.gf.cali.state pid=1152 uid=1000 gid=1000 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:vendor_default_prop:s0 tclass=property_service permissive=0'

Bug: 219372997
Bug: 220263520
Test: No above avc denial in logcat.
Change-Id: I93ace30c67e04bc836bfba050028a1f25af641d5
 2022-03-01 15:05:42 +08:00
Shubham Dubey
5e2e261148 Temporarily don't audit hal_fingerprint to fix avc denial 
Fix: 220263520

Change-Id: Ic06981fdc071c5027e6ccd137c1a2d19b9366c98
 2022-02-21 13:07:23 +00:00
Philip Quinn
b834b1d008 Move twoshay definitions to hardware/google/pixel-sepolicy/input. 
Bug: 187654303
Test: twoshay works on R4, B3, P7
Change-Id: I2cada463fcbfd3b52230430b12b091a655e2abbb
Merged-In: I2cada463fcbfd3b52230430b12b091a655e2abbb
 2021-10-26 02:06:20 +00:00
Philip Quinn
d5ac0ac3ce Move twoshay definitions to hardware/google/pixel-sepolicy/input. 
Bug: 187654303
Test: twoshay works on R4, B3, P7
Change-Id: I2cada463fcbfd3b52230430b12b091a655e2abbb
 2021-09-28 20:11:33 +00:00
Adam Shih
22ed933f97 label extcon files 
Bug: 199987074
Test: boot with no relevant errors
Change-Id: Idd26d8675c332043b1066e3eba1706527254eb03
 2021-09-16 10:02:11 +08:00
sukiliu
2d2d6999d2 Update avc error on ROM 7733084 
avc: denied { read } for comm="android.ui" name="extcon0" dev="sysfs" ino=72527 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=0

Bug: 199987074
Test: PtsSELinuxTestCases
Change-Id: I1d160b06b4b0bba9402ae3de5f564d6f893505c1
 2021-09-15 14:41:46 +08:00
qinyiyan
ee4e7f45ce Revert the unnecessary sepolicy rules for hal_neuralnetworks_darwinn. 
Bug: 194241380
Test: flashed forrest build and ran PtsSELinuxTestCases
Change-Id: Ie2f0572a368f09e522bc2cdfdf9da1859c1c44e7
 2021-07-30 23:36:06 +00:00
Michael Eastwood
30bd5e8ed6 Allow hal_dumpstate_default to access vendor_camera_debug_prop 
Bug: 193365129
Test: atest com.google.android.selinux.pts.SELinuxTest#scanBugreport
Change-Id: I43e389d46e8116844bb9ca4259e5ea28e86c50f4
 2021-07-27 17:22:47 -07:00
sukiliu
411aa59779 Update avc error on ROM 7566803 
avc: denied { read } for name="platform:1cc40000.sysmmu--platform:1ce00000.abrolhos" dev="sysfs" ino=21006 scontext=u:r:hal_neuralnetworks_darwinn:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

Bug: 194241380
Test: PtsSELinuxTestCases
Change-Id: If7ee99a36bca88fffc37c12dc306e0453afb1395
 2021-07-21 09:36:05 +08:00
sukiliu
06ea8d9432 Update avc error on ROM 7550575 
Bug: 193726003
Bug: 193633303
Bug: 193548421
Test: PtsSELinuxTestCases
Change-Id: Id6cb13602eb9a69f7815a0301a5708577c663bd2
 2021-07-15 09:33:58 +08:00
TreeHugger Robot
0afce44985 Merge "Revert "Update avc error on ROM 7526917"" into sc-dev 2021-07-13 17:03:43 +00:00
Michael Ayoubi
04d9f1ac13 Revert "Update avc error on ROM 7526917" 
This reverts commit 81a8e5b4ce.

Reason for revert: <Qorvo Version P2-S4(ag/15139489) which caused these errors got reverted from sc-dev in ag/15224151. It will now go into master>

Bug: 192924316
Change-Id: I772053cf512ba555a5fa657d39f957ac51f013c1
 2021-07-13 17:03:26 +00:00
Adam Shih
9d7e88c27e suppress error for ag/15263334 
Bug: 193474772
Test: boot with no relevant error found
Change-Id: Ia3f49fbf9e623c6b81d6c595e19e275f64521dfe
 2021-07-13 09:57:18 +08:00
sukiliu
a06677ce7a Update avc error on ROM 7539530 
avc: denied { read } for name="u:object_r:vendor_camera_debug_prop:s0" dev="tmpfs" ino=300 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:vendor_camera_debug_prop:s0 tclass=file permissive=0
avc: denied { read } for comm="dumpstate@1.1-s" name="u:object_r:vendor_camera_debug_prop:s0" dev="tmpfs" ino=300 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:vendor_camera_debug_prop:s0 tclass=file permissive=0

Bug: 193365129
Test: PtsSELinuxTestCases
Change-Id: I1d0258ec4ce2abbf8f899add86be2076c0c72be0
 2021-07-12 09:49:17 +08:00
SHUCHI LILU
54780f7ae3 Merge "Update avc error on ROM 7527858" into sc-dev 2021-07-08 02:53:28 +00:00
KRIS CHEN
ba9051de47 Merge "Add sepolicy rules for fingerprint hal" into sc-dev 2021-07-08 02:05:03 +00:00
Kris Chen
a5c9028ced Add sepolicy rules for fingerprint hal 
Fix following avc denial:
servicemanager: type=1400 audit(0.0:8): avc: denied { call } for scontext=u:r:servicemanager:s0 tcontext=u:r:hal_fingerprint_default:s0 tclass=binder permissive=0

Bug: 192040144
Test: No above avc denial in logcat.
Change-Id: I1b93474cac4ccb24736bc97665a7ca533ef0a7d3
 2021-07-08 00:59:49 +08:00
sukiliu
a2d9731099 Update avc error on ROM 7527858 
avc:  denied  { find } for pid=2874 uid=1083 name=isub scontext=u:r:uwb_vendor_app:s0:c59,c260,c512,c768 tcontext=u:object_r:radio_service:s0 tclass=service_manager permissive=0

Bug: 193009345
Bug: 192924316
Test: PtsSELinuxTestCases
Change-Id: I694c1a98ab57123c44717d2af5e57cfc486f76a1
 2021-07-07 20:01:18 +08:00
SHUCHI LILU
72bc4971df Merge "Update avc error on ROM 7526917" into sc-dev 2021-07-07 07:33:25 +00:00
sukiliu
81a8e5b4ce Update avc error on ROM 7526917 
Bug: 192980495
Bug: 192980564
Bug: 192924316
Test: PtsSELinuxTestCases
Change-Id: If1042973df8d8eac24065e50e64d5a60c5a4dc49
 2021-07-07 10:57:30 +08:00
Randall Huang
d328008234 Fix overlayfs avc denied 
avc: denied { rename } for comm="init" name="#b" dev="dm-6" ino=52
scontext=u:r:init:s0 tcontext=u:object_r:overlayfs_file:s0
tclass=file permissive=1

avc: denied { unlink } for comm="init" name="#b" dev="dm-6" ino=53
scontext=u:r:init:s0 tcontext=u:object_r:overlayfs_file:s0
tclass=chr_file permissive=1

Bug: 192617244
Test: boot & adb remount
Signed-off-by: Randall Huang <huangrandall@google.com>
Change-Id: I740ff317520439034d2bf6e0659b1418bf6dac5c
 2021-07-06 18:19:04 +08:00
sukiliu
755c601dd8 Update avc error on ROM 7515047 
Bug: 192617242
Bug: 192617244
Test: PtsSELinuxTestCases
Change-Id: I94f7fa36632147676adc46f520e9a2a4f9b413cd
 2021-07-02 10:34:49 +08:00
TreeHugger Robot
846cba7286 Merge "Fix hal_uwb_default dumpstate SELinux errors" into sc-dev 2021-07-01 08:07:05 +00:00
Michael Ayoubi
56beb62f69 Fix hal_uwb_default dumpstate SELinux errors 
Fixes: b/192026913
Test: Run dumpstate and confirm no avc denials

Signed-off-by: Michael Ayoubi <mayoubi@google.com>
Change-Id: I3d818fb066a834663dc63b8757bd16c08a1a0e9e
 2021-07-01 06:55:42 +00:00
TreeHugger Robot
5b4e06670f Merge "remove obsolete errors" into sc-dev 2021-07-01 04:01:19 +00:00
Adam Shih
1a2d199a28 remove obsolete errors 
Bug: 183338543
Bug: 187015705
Bug: 191133059
Bug: 180963348
Bug: 187016930
Bug: 190563838
Test: boot with no relevant error
Change-Id: I8d194415dc823da9dec5c315a6068d0d2c2d4a6c
 2021-07-01 10:49:59 +08:00
Ted Lin
cb3ca1e87b Remove dontaudit form tracking_denials for maxfg and regmap 
Bug:190337297
Test: Check the bugreport
Change-Id: I0887e6256b4f158bd525ed66475cd1ef5672c9df
Signed-off-by: Ted Lin <tedlin@google.com>
 2021-06-30 11:11:22 +08:00
TreeHugger Robot
15f7a61603 Merge "Sepolicy: Remove permission for fuel gauge" into sc-dev 2021-06-29 01:48:34 +00:00
TreeHugger Robot
a63fbd68d4 Merge "Hardwareinfo: battery info porting" into sc-dev 2021-06-28 16:20:12 +00:00
sukiliu
7ea816284d Update avc error on ROM 7492139 
avc: denied { call } for comm="servicemanager" scontext=u:r:servicemanager:s0 tcontext=u:r:hal_fingerprint_default:s0 tclass=binder permissive=0

Bug: 192040144
Test: PtsSELinuxTestCases
Change-Id: I2de11d2706222a88c4234d99399b7b2437f36e31
 2021-06-25 14:40:17 +08:00
sukiliu
e31c8840de Update avc error on ROM 7490489 
avc: denied { call } for scontext=u:r:dumpstate:s0 tcontext=u:r:hal_uwb_default:s0 tclass=binder permissive=0
avc: denied { call } for comm="dumpstate" scontext=u:r:dumpstate:s0 tcontext=u:r:hal_uwb_default:s0 tclass=binder permissive=0

Bug: 192026913
Test: PtsSELinuxTestCases
Change-Id: Ieca08e87db1b46f3b7fc7de1492e45d4a5bec868
 2021-06-25 09:42:51 +08:00