Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3835 commits 1 branch 0 tags 494 MiB
Commit graph

1416 commits

Author SHA1 Message Date
Will McVicker
f78f5ab19a genfs_contexts: fix more i2c raw paths am: 9cbc9eceec 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18192191

Change-Id: If52caa5df6e4008c9c038fe128f7e4f1e1f56c30
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-10 22:55:56 +00:00
Jerry Huang
a5e9b426eb Allow mediacodec to access vendor_data_file 
For dumping output buffer of HDR to SDR fliter.

This patch fixes the following denial:

05-06 15:26:54.248  1046   856   856 W HwBinder:856_4: type=1400 audit(0.0:174404): avc: denied { getattr } for name="/" dev="dmabuf" ino=1 scontext=u:r:mediacodec:s0 tcontext=u:object_r:unlabeled:s0 tclass=filesystem permissive=0

Bug: 229360116
Change-Id: I41acb29407a7ddb27279a834e27c5ee515efe666
 2022-05-10 09:22:12 +00:00
Lily Lin
59f29edf92 Add selinux permissions to r/w sysfs st33spi_state 
Bug: 228655141
Test: Confirm can read/write st33spi_state
Change-Id: I65299414d6268580dc532170759459147378418b
 2022-05-10 16:32:45 +08:00
Krzysztof Kosiński
b71d24d62c gs101: Add dontaudit statements to camera HAL policy. 
The autogenerated dontaudit statements in tracking_denials are
actually the correct policy. Move them to the correct file and
add comments.

Fix: 178980085
Fix: 180567725
Test: build & camera check on raven
Change-Id: I3f3a1f64d403182d4f592f1cacc6ef8d1418062d
 2022-05-10 05:34:51 +00:00
George Chang
650076c577 Merge "Update nfc from hidl to aidl service" 2022-05-06 07:07:19 +00:00
Will McVicker
9cbc9eceec genfs_contexts: fix more i2c raw paths 
These were added in commit 8a19d8be9c ("genfs_contexts: fix path for
i2c peripheral devices") to address missing i2c paths when kernel
modules are loaded in parallel. The raw i2c paths were not added in that
commit. So add them here in order to fix a vibrator crash for
P21-mainline due to not having the named i2c paths.

Bug: 231637004
Fixes: 8a19d8be9c ("genfs_contexts: fix path for i2c peripheral devices")
Change-Id: I02dfff504704f761c99c328b39595789c2cbeef5
 2022-05-05 16:04:31 -07:00
TreeHugger Robot
bbe95c3a79 Merge changes from topic "gs101-move-dwc3-irq" into tm-dev am: 36f7fe941d am: 82a83b366a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18164764

Change-Id: Ia31705514741c26b3ab34ecc21edb45e57ef89c2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-05 08:46:04 +00:00
Ray Chi
d924169220 Allow hal_usb_gadget_impl to access proc_irq am: 7ac349e932 am: b5c3f6e0ba 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17313628

Change-Id: I96ba2776bb32556b1a3f01cf83cc3d0da63ea7fe
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-05 08:46:02 +00:00
Ray Chi
b5c3f6e0ba Allow hal_usb_gadget_impl to access proc_irq am: 7ac349e932 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17313628

Change-Id: I12709e8375ab34a1ed08ae48ce2db522d98f188c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-05 07:27:12 +00:00
TreeHugger Robot
36f7fe941d Merge changes from topic "gs101-move-dwc3-irq" into tm-dev 
* changes:
  Revert "add sepolicy for set_usb_irq.sh"
  Allow hal_usb_gadget_impl to access proc_irq
 2022-05-05 07:08:20 +00:00
Yichi Chen
e2a93ee001 Merge "Allow hal_fingerprint_default to access hal_pixel_display_service" into tm-dev am: 650209645c am: b2c0884cd9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17823364

Change-Id: I5ff9750abee568345789c6a2f9ad9d6df3eff8e3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-05 02:44:18 +00:00
Yichi Chen
43d6af291c Merge "Allow hal_fingerprint_default to access hal_pixel_display_service" into tm-dev am: 650209645c am: b2c0884cd9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17823364

Change-Id: I0c12bd8decf007033f42c492d149d6afb0a1244f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-05 02:44:17 +00:00
Yichi Chen
b83ddf305d Merge "Allow hal_fingerprint_default to access hal_pixel_display_service" into tm-dev am: 650209645c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17823364

Change-Id: I7fcfd0a6cfc006f2f68a5aa1d1e97f88ca321f38
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-05 02:17:59 +00:00
Yichi Chen
650209645c Merge "Allow hal_fingerprint_default to access hal_pixel_display_service" into tm-dev 2022-05-05 02:03:49 +00:00
George Chang
130f2b784e Update nfc from hidl to aidl service 
Bug: 216290344
Test: atest NfcNciInstrumentationTests
Test: atest VtsAidlHalNfcTargetTest
Change-Id: I288474f691670655516728fe0e164a3e5689875c
 2022-05-05 01:13:59 +08:00
William McVicker
d5094282b6 Merge "genfs_contexts: add raw i2c-s2mpg10mfd and i2c-s2mpg11mfd nodes" into tm-dev am: e6250cd86e am: 18cb713b62 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18123741

Change-Id: Ie615dcd13480e7cc91195c8726ebbc13e2225342
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-04 17:12:51 +00:00
William McVicker
cd65dd36d5 Merge "genfs_contexts: add raw i2c-s2mpg10mfd and i2c-s2mpg11mfd nodes" into tm-dev am: e6250cd86e am: 18cb713b62 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18123741

Change-Id: Idef6f9e9c77289b596a2346817e37e3f555d4361
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-04 17:10:26 +00:00
William McVicker
cb0bdc8681 Merge "genfs_contexts: add raw i2c-s2mpg10mfd and i2c-s2mpg11mfd nodes" into tm-dev am: e6250cd86e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/18123741

Change-Id: I11fe5e32944b784ad60c3b88177cddff72db879b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-04 16:38:59 +00:00
William McVicker
e6250cd86e Merge "genfs_contexts: add raw i2c-s2mpg10mfd and i2c-s2mpg11mfd nodes" into tm-dev 2022-05-04 16:10:16 +00:00
Ray Chi
503fa09010 Revert "add sepolicy for set_usb_irq.sh" 
This reverts commit 714075eba7.

Bug: 224699556
Test: build pass
Change-Id: Ie275e48ee87c4e9f5c83b7802c3f3baa12ad30af
Merged-In: Ie275e48ee87c4e9f5c83b7802c3f3baa12ad30af
(cherry picked from commit bf9ec40ab7)
 2022-05-04 11:45:26 +00:00
Ray Chi
7ac349e932 Allow hal_usb_gadget_impl to access proc_irq 
Bug: 224699556
Test: build pass
Change-Id: Id9a9adbdc921629b6e89d0850dd8acaf76b1a891
Merged-In: Id9a9adbdc921629b6e89d0850dd8acaf76b1a891
(cherry picked from commit 455c3c165348fa9ea65c65b004d4dda1426d04be)
 2022-05-04 11:45:08 +00:00
Ray Chi
0c04f75e49 Revert "add sepolicy for set_usb_irq.sh" am: bf9ec40ab7 am: 9a2c989fb7 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2086225

Change-Id: I3002e1842255353047726918a2f41553c1a43b1b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-04 07:28:51 +00:00
Ray Chi
7fa97ff2ba Allow hal_usb_gadget_impl to access proc_irq am: d99789413d am: 98225a40ac 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2086224

Change-Id: I5555829b6b3b0d0234449933f44b4da2aadd5340
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-04 07:28:48 +00:00
Ray Chi
9a2c989fb7 Revert "add sepolicy for set_usb_irq.sh" am: bf9ec40ab7 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2086225

Change-Id: Id9ebe6c1a58dbd45fe2dc381cf79f8be2fbb2287
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-04 06:52:05 +00:00
Ray Chi
98225a40ac Allow hal_usb_gadget_impl to access proc_irq am: d99789413d 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2086224

Change-Id: Iac35a7fc9508e991f03bd9142a552f3e4e43981c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-04 06:52:04 +00:00
Ray Chi
bf9ec40ab7 Revert "add sepolicy for set_usb_irq.sh" 
This reverts commit 714075eba7.

Bug: 194346886
Test: build pass
Change-Id: Ie275e48ee87c4e9f5c83b7802c3f3baa12ad30af
 2022-05-04 09:49:17 +08:00
Ray Chi
d99789413d Allow hal_usb_gadget_impl to access proc_irq 
Bug: 220996010
Test: build pass
Change-Id: Id9a9adbdc921629b6e89d0850dd8acaf76b1a891
(cherry picked from commit 455c3c165348fa9ea65c65b004d4dda1426d04be)
 2022-05-04 09:46:39 +08:00
Asad Ali
8974ed37c4 Merge "Allow chre to communicate with fwk_stats_service." into tm-qpr-dev 2022-05-03 21:00:47 +00:00
Jenny Ho
549a58875a Merge "sepolicy: allow access debugfs charger register dump" into tm-dev am: 9b27bbdab6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/17944214

Change-Id: Ic470338a2d29551f83a06795ddb75ba43838a380
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-03 13:30:43 +00:00
Jenny Ho
9b27bbdab6 Merge "sepolicy: allow access debugfs charger register dump" into tm-dev 2022-05-03 10:39:21 +00:00
Albert Wang
11aeebbc15 Merge "Expand the xHCI wakeup path for suspend_control" am: 77db706d9b am: 84866a80c1 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2075870

Change-Id: I7eb9ed2f555c49806685deede90d169b8f5bf71d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-03 08:46:25 +00:00
Albert Wang
84866a80c1 Merge "Expand the xHCI wakeup path for suspend_control" am: 77db706d9b 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2075870

Change-Id: I53ad439a4804bd84c02adce154d182ba2fa79554
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-03 07:40:48 +00:00
Albert Wang
77db706d9b Merge "Expand the xHCI wakeup path for suspend_control" 2022-05-03 07:14:40 +00:00
Asad Ali
98e8bf3e45 Allow chre to communicate with fwk_stats_service. am: c6ea8d1656 am: bc040f306d 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2077138

Change-Id: Ieb41d6bd22ee5500269261652993f0866ac795bc
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-02 22:06:22 +00:00
Asad Ali
bc040f306d Allow chre to communicate with fwk_stats_service. am: c6ea8d1656 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2077138

Change-Id: I54420bcfe55250683a2afd25a85242cdf5056e5c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-05-02 21:33:11 +00:00
Will McVicker
12b3700a38 genfs_contexts: add raw i2c-s2mpg10mfd and i2c-s2mpg11mfd nodes 
This adds the [067]-001f and [178]-002f raw i2c numberings to the
sepolicy for the P21-mainline driver which doesn't use the i2c vendor
hook to rename these numberings. This is required for the thermal hal to
work.

Bug: 231155356
Signed-off-by: Will McVicker <willmcvicker@google.com>
Change-Id: I8e4bbbd0768e63e708f46eb42bddb5fc28b29caa
 2022-05-02 10:12:15 -07:00
Asad Ali
7bfcc6f4e5 Allow chre to communicate with fwk_stats_service. 
Bug: 230788686
Test: Logged atoms using CHRE + log atom extension.
Change-Id: I0683a224d61cdc8c927360ebad3de115ed431e1a
(cherry picked from commit c6ea8d1656)
 2022-04-29 17:00:27 +00:00
Asad Ali
c6ea8d1656 Allow chre to communicate with fwk_stats_service. 
Bug: 230788686
Test: Logged atoms using CHRE + log atom extension.
Change-Id: I0683a224d61cdc8c927360ebad3de115ed431e1a
 2022-04-28 22:27:57 +00:00
Asad Ali
a9528564c0 Merge "Update SELinux to allow CHRE to talk to the Wifi HAL" am: a022023a90 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2077149

Change-Id: I196d9c8349e352c630b11441bf3280d456a75118
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-28 07:51:24 +00:00
Asad Ali
a022023a90 Merge "Update SELinux to allow CHRE to talk to the Wifi HAL" 2022-04-28 07:05:14 +00:00
Albert Wang
ee1758317e Expand the xHCI wakeup path for suspend_control 
Error log:
Error opening kernel wakelock stats for: wakeup132 (../../devices/platform/11110000.usb/11110000.dwc3/xhci-hcd-exynos.5.auto/usb2/2-1/wakeup/wakeup132): Permission denied
avc: denied { read } for name="wakeup132" dev="sysfs" ino=3607558 scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

Bug: 209745132
Test: test build to verify sepolicy log
Signed-off-by: Albert Wang <albertccwang@google.com>
Change-Id: I6c70272a79059f7ca4e3b0e525bbc09625e25135
 2022-04-28 06:41:24 +00:00
Kris Chen
c6eea8a657 Allow hal_fingerprint_default to access hal_pixel_display_service 
Fix the following avc denial:
avc: denied  { find } for pid=1158 uid=1000 name=com.google.hardware.pixel.display.IDisplay/default scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:hal_pixel_display_service:s0 tclass=service_manager permissive=0
avc: denied { call } for scontext=u:r:hal_fingerprint_default:s0 tcontext=u:r:hal_graphics_composer_default:s0 tclass=binder permissive=0

Bug: 229716695
Bug: 224573604
Test: build and test fingerprint on device.
Change-Id: Id24e65213221048d6dfdeae6ed2bcb7b762a0f75
 2022-04-28 03:08:47 +00:00
Wei Wang
615f85c22d allow udfps hal to access trusty 
Bug: 229350721
Bug: 230492593
Test: UDFPS with stress
Signed-off-by: Wei Wang <wvw@google.com>
Change-Id: Ib1abe0e0318689528a6658f3597f1c11ad9fa1c3
 2022-04-27 20:20:43 +00:00
Treehugger Robot
fd65b31055 Merge "android.hardware.usb.IUsb AIDL migration" am: c49520d66e 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2044871

Change-Id: Ib0ea1d39f90456062a1d18ac86ff8c6140cb29eb
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-27 17:39:58 +00:00
Treehugger Robot
c49520d66e Merge "android.hardware.usb.IUsb AIDL migration" 2022-04-27 16:21:29 +00:00
Jenny Ho
15036785cf sepolicy: allow access debugfs charger register dump 
[  438.549652] type=1400 audit(1651035282.616:8): avc: denied { read } for comm="dumpstate@1.1-s" name="registers" dev="debugfs" ino=31549 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:debugfs:s0 tclass=file permissive=0
[  438.550252] type=1400 audit(1651035282.616:9): avc: denied { read } for comm="dumpstate@1.1-s" name="registers" dev="debugfs" ino=31532 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:debugfs:s0 tclass=file permissive=0

Bug: 230360103
Signed-off-by: Jenny Ho <hsiufangho@google.com>
Change-Id: I102a159ca23a65d99a52cac3d011f5ce535a37e7
 2022-04-27 10:09:48 +00:00
Anthony Stange
8c311f981b Update SELinux to allow CHRE to talk to the Wifi HAL 
Bug: 206614765
Test: Run locally
Change-Id: I73bcf96ed1cab0a101e5f84852a1d82258b9c690
Merged-In: I73bcf96ed1cab0a101e5f84852a1d82258b9c690
 2022-04-27 06:13:14 +00:00
Edmond Chung
a287bef991 Camera: add setsched capability. am: 99b4aebb6a 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2076040

Change-Id: I2b276fc1165bcd66d9075566d50f0971e1447811
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-26 20:19:27 +00:00
Wei Wang
5e9a38799a Merge "Grant trusty to power hal" into tm-dev 2022-04-26 16:47:14 +00:00
Edmond Chung
99b4aebb6a Camera: add setsched capability. 
The camera HAL needs to configure schedule policies for
performance optimizations.

Bug: 228632527
Test: adb logcat
Change-Id: Ifbf433c026549ca774a9521704d0b0b75c9e9f23
Merged-In: Ifbf433c026549ca774a9521704d0b0b75c9e9f23
Signed-off-by: Edmond Chung <edmondchung@google.com>
 2022-04-25 15:25:01 -07:00