Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3835 commits 1 branch 0 tags 494 MiB
Commit graph

1416 commits

Author SHA1 Message Date
Hana Kim
060b562310 Sepolicy: add permission to allow create, connect udp socket 
Bug: 226412527
Test: The tester verified IMS didn't crash and no avc denied log
Signed-off-by: Hana Kim <hanaa.kim@samsung.com>
Change-Id: Id9ba79ba87010326c53b6aec408e5cdb291122a6
Merged-In: Id9ba79ba87010326c53b6aec408e5cdb291122a6
 2022-09-19 04:58:00 +00:00
Jinhee Kim
ea1f7edaae sepolicy: gs101: allowed permissions required for network access am: 653e53d11d am: 9ca55393c9 am: a62f7495fb am: 11149a00ca am: fd941e1c1a 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2214621

Change-Id: I32eb6c697ec317f6ca40a0b82544a7a9116ac154
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-16 12:46:04 +00:00
Hana Kim
89c07daec3 Sepolicy: add permission to allow create, connect udp socket am: 09e0e1b280 am: 6c17e1e6f5 am: 19e9846ba8 am: 6b1cbfe260 am: a29b3c8ca1 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2200444

Change-Id: I2544779da7c13c7b1a8383b8c786bb2c39716a98
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-16 12:46:02 +00:00
Jinhee Kim
fd941e1c1a sepolicy: gs101: allowed permissions required for network access am: 653e53d11d am: 9ca55393c9 am: a62f7495fb am: 11149a00ca 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2214621

Change-Id: Iee88f3f9d98f1b1f1568613b81542560e42ee25d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-16 12:18:57 +00:00
Hana Kim
a29b3c8ca1 Sepolicy: add permission to allow create, connect udp socket am: 09e0e1b280 am: 6c17e1e6f5 am: 19e9846ba8 am: 6b1cbfe260 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2200444

Change-Id: I50d573cc65874987be884d83b72f4aaaa71c8818
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-16 12:18:56 +00:00
Jinhee Kim
11149a00ca sepolicy: gs101: allowed permissions required for network access am: 653e53d11d am: 9ca55393c9 am: a62f7495fb 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2214621

Change-Id: I1da45f9173b7812ab45d8b503af446689a2e7fe4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-16 11:49:03 +00:00
Hana Kim
6b1cbfe260 Sepolicy: add permission to allow create, connect udp socket am: 09e0e1b280 am: 6c17e1e6f5 am: 19e9846ba8 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2200444

Change-Id: I9074a2aaab6ef1916fc3fa9a0c1f3e5e3fe610a2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-16 11:49:01 +00:00
Jinhee Kim
908a8fcf14 sepolicy: gs101: allowed permissions required for network access 
avc: denied { write } for comm="Thread-102" name="dnsproxyd" dev="tmpfs" ino=1022 scontext=u:r:vendor_ims_app:s0:c251,c256,c512,c768 tcontext=u:object_r:dnsproxyd_socket:s0 tclass=sock_file permissive=0 app=com.shannon.imsservice
avc: denied { node_bind } for comm="Thread-102" src=50174 scontext=u:r:vendor_ims_app:s0:c251,c256,c512,c768 tcontext=u:object_r:node:s0 tclass=udp_socket permissive=0 app=com.shannon.imsservice

Bug: 242231557
Test: The tester verified IMS didn't crash and no avc denied log
Change-Id: Icc3762cef7f9766d845f1e1a56af1315fc97163b
Signed-off-by: Jinhee Kim <jinhee.k@samsung.com>
Signed-off-by: Kukjin Kim <kgene.kim@samsung.com>
Merged-In: Icc3762cef7f9766d845f1e1a56af1315fc97163b
 2022-09-16 08:51:52 +00:00
Estefany Torres
0ea1dac214 Merge "Add rules for letting logger app send the command to ril" into tm-qpr-dev am: 0ec93ed8cd am: 899574b2d8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19912324

Change-Id: Idd3a937c7da2388a32f59f265705bcc84c54bf8b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-15 15:03:57 +00:00
Estefany Torres
899574b2d8 Merge "Add rules for letting logger app send the command to ril" into tm-qpr-dev am: 0ec93ed8cd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19912324

Change-Id: I14947b4a9dc41ffdb9afef580597ee0d4798443f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-15 14:35:07 +00:00
Estefany Torres
0ec93ed8cd Merge "Add rules for letting logger app send the command to ril" into tm-qpr-dev 2022-09-15 14:09:07 +00:00
TreeHugger Robot
3aaefbe1fc Merge "aoc: add audio property for pixellogger update control" into tm-qpr-dev am: 75f908a8ed am: a106f636f8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19533964

Change-Id: I86804c96c940ced146e25a411560fe7ac06e5e77
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-14 02:54:01 +00:00
TreeHugger Robot
a106f636f8 Merge "aoc: add audio property for pixellogger update control" into tm-qpr-dev am: 75f908a8ed 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19533964

Change-Id: I347bbb35b216896a87b3b2edc96af57d6dadfe80
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-14 02:23:57 +00:00
TreeHugger Robot
75f908a8ed Merge "aoc: add audio property for pixellogger update control" into tm-qpr-dev 2022-09-14 01:48:40 +00:00
Jinhee Kim
653e53d11d sepolicy: gs101: allowed permissions required for network access 
avc: denied { write } for comm="Thread-102" name="dnsproxyd" dev="tmpfs" ino=1022 scontext=u:r:vendor_ims_app:s0:c251,c256,c512,c768 tcontext=u:object_r:dnsproxyd_socket:s0 tclass=sock_file permissive=0 app=com.shannon.imsservice
avc: denied { node_bind } for comm="Thread-102" src=50174 scontext=u:r:vendor_ims_app:s0:c251,c256,c512,c768 tcontext=u:object_r:node:s0 tclass=udp_socket permissive=0 app=com.shannon.imsservice

Bug: 242231557
Test: Build
Change-Id: Icc3762cef7f9766d845f1e1a56af1315fc97163b
Signed-off-by: Jinhee Kim <jinhee.k@samsung.com>
Signed-off-by: Kukjin Kim <kgene.kim@samsung.com>
 2022-09-12 15:18:32 +08:00
Hana Kim
09e0e1b280 Sepolicy: add permission to allow create, connect udp socket 
Bug: 226412527
Test: Build
Signed-off-by: Hana Kim <hanaa.kim@samsung.com>
Change-Id: Id9ba79ba87010326c53b6aec408e5cdb291122a6
 2022-09-12 15:17:44 +08:00
Estefany Torres
7b5ed95fdd Add rules for letting logger app send the command to ril 
08-31 23:40:57.354   458   458 E SELinux : avc:  denied  { find } for interface=vendor.samsung_slsi.telephony.hardware.radioExternal::IOemSlsiRadioExternal sid=u:r:logger_app:s0:c252,c256,c512,c768 pid=2901 scontext=u:r:logger_app:s0:c252,c256,c512,c768 tcontext=u:object_r:hal_exynos_rild_hwservice:s0 tclass=hwservice_manager permissive=0
09-01 00:08:19.600  2881  2881 W oid.pixellogger: type=1400 audit(0.0:10): avc: denied { call } for scontext=u:r:logger_app:s0:c252,c256,c512,c768 tcontext=u:r:rild:s0 tclass=binder permissive=0 app=com.android.pixellogger

Bug: 241412942
Test: tested in C10 with pixel logger change
Change-Id: Idcd693790d654d0a9b7aba46a41764d65867a61c
 2022-09-09 17:35:19 +00:00
JJ Lee
8c36ac66d8 sepolicy: add nodes for aoc memory votes stats am: f07279785d am: 479f2286d7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19739216

Change-Id: Icdd11f323d212c2e10a42108afbd91674dce7a3c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-08 06:00:10 +00:00
JJ Lee
479f2286d7 sepolicy: add nodes for aoc memory votes stats am: f07279785d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19739216

Change-Id: I795b972da3d42e7394fbd954f041934370fbd77a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-08 05:16:23 +00:00
TreeHugger Robot
ae2feed036 Merge "Add SE policies for HWC logs" 2022-09-07 12:28:32 +00:00
JJ Lee
f07279785d sepolicy: add nodes for aoc memory votes stats 
Bug: 223674292
Test: build pass, not blocking bugreport
Change-Id: I4732c8b3271f553edc423ac115eb8a6afaebff37
Signed-off-by: JJ Lee <leejj@google.com>
 2022-09-07 11:45:18 +00:00
Adam Shih
c08f9cf882 move insert module script sepolicy to gs-common 
Bug: 243763292
Test: boot to home with no relevant SELinux error
Change-Id: I52fe6631b3ec806a5624375457874d9248927b00
 2022-09-06 10:40:01 +08:00
Adam Shih
5742be1014 move insmod script to gs-common 
Bug: 243763292
Test: boot to home
Change-Id: If676806d806adcd7f1fcecc1199255788e8858ef
 2022-09-05 12:21:43 +08:00
Timmy Li
e6e9e34d22 Merge "Change SElinux so Aswang can be accessed" 2022-09-01 20:37:25 +00:00
Adam Shih
f55fb71bf0 Merge "Move dauntless settings to gs-common" 2022-08-31 23:49:37 +00:00
Roger Fang
d5e2902e91 sepolicy: add permission for AMS rate of pixelstats-vend am: a8eab1aaaf am: 5321008d5c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19711052

Change-Id: If5dad118d1a1c845a84d3b53baff485c58cce03c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-30 05:45:30 +00:00
Roger Fang
5321008d5c sepolicy: add permission for AMS rate of pixelstats-vend am: a8eab1aaaf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19711052

Change-Id: I61f3cfbb14f0f34bf0af2eaba1922b9aed4b7948
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-30 05:15:55 +00:00
Roger Fang
a8eab1aaaf sepolicy: add permission for AMS rate of pixelstats-vend 
I pixelstats-vend: type=1400 audit(0.0:1025): avc: denied { read } for name="ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
I pixelstats-vend: type=1400 audit(0.0:1026): avc: denied { open } for path="/sys/devices/platform/audiometrics/ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
pixelstats-vend: type=1400 audit(0.0:1027): avc: denied { getattr } for path="/sys/devices/platform/audiometrics/ams_rate_read_once" dev="sysfs" ino=79714 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1

Bug: 239508478
Test: Manually test passed

Signed-off-by: Roger Fang <rogerfang@google.com>
Change-Id: I5c47003bed664f2cd9b6fe3630a6445aca27d10d
 2022-08-30 04:36:41 +00:00
Adam Shih
a5cbf912ce Move dauntless settings to gs-common 
Bug: 242479757
Test: build pass on all Gchip devices
Change-Id: I9751e59b751f867d4cf734ffe7497a2e22c0c6f9
 2022-08-30 12:29:54 +08:00
Robb Glasser
94f9358eed Give permissions to save usf stats and dump them in bugreports. am: 4b4afb2eea am: 6ce1ff96e4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19672464

Change-Id: Idbd78e19d1b642d3cfc306ad69ded4515a14985d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-25 04:06:32 +00:00
Robb Glasser
6ce1ff96e4 Give permissions to save usf stats and dump them in bugreports. am: 4b4afb2eea 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19672464

Change-Id: Iacf95664f2ba6bf126b82e2e2d73bddcddb70422
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-25 03:38:27 +00:00
Robb Glasser
4b4afb2eea Give permissions to save usf stats and dump them in bugreports. 
Creating a mechanism to save some USF stat history to device and pipe it
to bugreports. Granting permissions so that this can work.

Bug: 242320914
Test: Stats save and are visible in a bugreport.
Change-Id: Ia1973800ed053f54da043d306e11c0a7b10132a7
 2022-08-24 22:39:16 +00:00
Treehugger Robot
4c9a910a60 Merge "Add security context for com.google.usf.non_wake_up/wakeup." am: d6ff29d1ca am: a4d246abac am: 6481874c77 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2183507

Change-Id: Ica06811653100886c99ea2d01ab09edfdd83585f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-22 07:46:49 +00:00
Treehugger Robot
d6ff29d1ca Merge "Add security context for com.google.usf.non_wake_up/wakeup." 2022-08-22 06:38:52 +00:00
Treehugger Robot
b551e0475f Merge "Add acd-com.google.usf.non_wake_up file to AoC file context." am: 3cb1ea79c9 am: c56dc643a4 am: b2e001581b 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2183506

Change-Id: I46122f6a44cb7bc4ea9fb1f63c4e57e8f92709f3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-22 05:12:24 +00:00
Treehugger Robot
3cb1ea79c9 Merge "Add acd-com.google.usf.non_wake_up file to AoC file context." 2022-08-22 04:10:13 +00:00
Wiwit Rifa'i
443da0523a Add SE policies for HWC logs 
Bug: 230361290
Test: adb bugreport
Test: adb shell vndservice call Exynos.HWCService 11 i32 0 i32 308 i32 1
Change-Id: I20ec7ee1856a45d271e0e6ebfd7eb74525b96f77
 2022-08-16 13:22:33 +08:00
matthuang
62ba653669 Add security context for com.google.usf.non_wake_up/wakeup. 
Bug: 195077076
Test: Confirm there is no avc denied log.
Change-Id: I8600283d9ff2ebcb45df95e5259484a60921fb1a
Merged-In: I8600283d9ff2ebcb45df95e5259484a60921fb1a
 2022-08-15 18:52:58 +08:00
matthuang
7e89415aaf Add acd-com.google.usf.non_wake_up file to AoC file context. 
Bug: 195077076
Test: ls -lZ dev/acd-com.google.usf.non_wake_up
Change-Id: If9add3528bde47a618bd884ce28121b6fa32754c
Merged-In: If9add3528bde47a618bd884ce28121b6fa32754c
 2022-08-15 18:46:52 +08:00
yixuanjiang
0bbfb98cac aoc: add audio property for pixellogger update control 
Bug: 241059471
Test: local verify
Signed-off-by: yixuanjiang <yixuanjiang@google.com>
Change-Id: I13df2ea88b884756d3a872da545e877ed6b1e033
 2022-08-08 03:48:21 +00:00
TreeHugger Robot
a3fc2a745c Merge "HwInfo: Move hardware info sepolicy to pixel common" 2022-08-03 02:57:30 +00:00
Bruce Po
60920d10a6 Allow aocd to access acd-offload nodes am: 1673f21545 am: 62c16fd040 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19472656

Change-Id: Ic19b92da27365a03cc5f99523fd84a08fa0aa473
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-02 19:33:02 +00:00
Bruce Po
62c16fd040 Allow aocd to access acd-offload nodes am: 1673f21545 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19472656

Change-Id: I524c210830ba139cb36ee5c8a664d87cc5c497ec
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-02 19:05:57 +00:00
Denny cy Lee
ea1580002f HwInfo: Move hardware info sepolicy to pixel common 
Bug: 215271971
Test: no sepolicy for hardware info

Signed-off-by: Denny cy Lee <dennycylee@google.com>
Change-Id: Ia7bfd171fe724848e9a6f0c1adab59402d2788a9
 2022-08-02 07:43:56 +00:00
Bruce Po
1673f21545 Allow aocd to access acd-offload nodes 
For 3-ch hotword feature, aocd daemon will access two new file nodes
(b/235648212), which will be used for transmitting audio to/from AOC.

BUG: 240744178
Change-Id: Ie0a9403d0dca06befdb807067adb9babc4f28bfc
 2022-08-02 06:29:42 +00:00
Lei Ju
1c69e17927 Merge "Allow chre to use WakeLock on whitechapel." 2022-08-01 18:49:57 +00:00
Steven Moreland
b577060b2d Restore HAL type names. 
Sed'd. TH not configured on AOSP. This is the change that is applied already internally.

Change-Id: I03be37c9e50280d6fa2cfdd69dca83c0535b2e35
 2022-08-01 18:41:26 +00:00
Steven Moreland
c6545d33ff Merge "Remove vendor_service." 2022-08-01 17:07:40 +00:00
Steven Moreland
b20e917ebf Remove vendor_service. 
We want to avoid associating types with where they can be used.

Bug: 237115222
Test: build
Change-Id: I4766227e2261d0d57be090933926ff3b439694f6
Merged-In: I4766227e2261d0d57be090933926ff3b439694f6
(cherry picked from commit 81ccf8d719)
 2022-07-29 18:34:05 +00:00
Roger Liao
75ba5fc5cc Fix build break if BOARD_WITHOUT_RADIO am: 5ea60d6348 am: 68ddcb629a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/19447103

Change-Id: Idbe29367df44ffa49c6de9125f07f5837e0a2cae
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-29 07:22:32 +00:00