Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
3835 commits 1 branch 0 tags 494 MiB
Commit graph

3835 commits

This branch
This branch
All branches
Author SHA1 Message Date
Joseph Jang
ac6f4e0d00 Move recovery.te to device/google/gs-common/dauntless/sepolicy 
Bug: 279381809
Change-Id: If41449f97e729053caa98930cc7f2ef9fd6d844e
 2023-04-24 08:09:23 +00:00
jimsun
26e3d2abd0 rild: allow rild to ptrace 
06-20 18:47:41.940000  8708  8708 I auditd  : type=1400 audit(0.0:7): avc: denied { ptrace } for comm="libmemunreachab" scontext=u:r:rild:s0 tcontext=u:r:rild:s0 tclass=process permissive=0
06-20 18:47:41.940000  8708  8708 W libmemunreachab: type=1400 audit(0.0:7): avc: denied { ptrace } for scontext=u:r:rild:s0 tcontext=u:r:rild:s0 tclass=process permissive=0

Bug: 263757077
Test: manual
Change-Id: I35ad31e6cc4e2942c671e51720f28a9abce3dcca
 2023-04-18 07:48:32 +00:00
Bruno BELANYI
bf8675143b Merge "Use restricted vendor property for ARM runtime options" into udc-dev 2023-04-17 10:59:23 +00:00
Xin Li
ab4e3e986a [automerger skipped] Merge TQ2A.230405.003 am: 82232b6423 am: 26cfa34cb7 -s ours am: 9505121ada -s ours 
am skip reason: Merged-In I8c265919f7ae4b18aa304b0a584536d2a0f4b27a with SHA-1 9828cc747a is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: I07cabb680ee2172a60bdc37f9a61a2af528844d1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 20:57:06 +00:00
Xin Li
9505121ada [automerger skipped] Merge TQ2A.230405.003 am: 82232b6423 am: 26cfa34cb7 -s ours 
am skip reason: Merged-In I8c265919f7ae4b18aa304b0a584536d2a0f4b27a with SHA-1 9828cc747a is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: Ie91202c445df25847c5bcd37cf8224e7bae6536e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 20:22:54 +00:00
Xin Li
26cfa34cb7 Merge TQ2A.230405.003 am: 82232b6423 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2530520

Change-Id: I92a1d4dff4571e4aa8f11ca6f71978d549bfc812
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 19:00:54 +00:00
Mike McTernan
b46b936df8 confirmationui: Allow securedpud to access the systemsuspend HAL. 
In order to use a wakelock, securedpud needs access to binder and the
system_suspend_service HAL.

Bug: 274851247
Test: manual, trigger TUI and check for AVC denials
Change-Id: Ibd27d32e092269f91d6557ebddcd27d4ccf1355a
 2023-04-11 13:04:53 +00:00
Xin Li
82232b6423 Merge TQ2A.230405.003 
Bug: 271343657
Merged-In: I8c265919f7ae4b18aa304b0a584536d2a0f4b27a
Change-Id: I61dd94e23d10e5405135626487ddadddb1f89f9f
 2023-04-10 23:55:29 -07:00
Wilson Sung
c41cb55d4f Update SELinux error 
Test: scanBugreport
Bug: 277528855
Change-Id: Ia59cd4045433f2e82a602672fe533e27e87b0275
 2023-04-10 11:02:52 +08:00
Adam Shih
d186da49ea Merge "use dumpsate from gs-common" into udc-dev 2023-04-10 01:11:17 +00:00
Wilson Sung
816622f352 Update error on ROM 9891405 
Bug: 277155042
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: Ic2129188db52ec85a8afaf92c507a42695e82804
 2023-04-07 14:56:21 +08:00
Adam Shih
240c435174 use dumpsate from gs-common 
Bug: 273380985
Test: adb bugreport
Change-Id: I9092e2e004e3ad0b3667b948ed4d633cd50d088c
 2023-04-07 13:02:21 +08:00
Victor Liu
d87df92740 Merge "uwb: add permission for ccc ranging" into udc-dev 2023-04-06 20:57:49 +00:00
feiyuchen
391f954d5d Allow camera HAL to access edgetpu_app_service in gs101 
We are seeing SELinux error b/276911450. It turns out that I only added the SE policy for 2023 device ag/22248613, but I forgot to add it for gs101 and gs201. So I created this CL.

See more background in ag/22248613.

Test: For gs201, I tested on my Pixel7 and I saw no more error. For gs101, I just did mm.
Bug: 275016466
Bug: 276911450
Change-Id: I3d691128daa2d7115f80c378f7b42de334cd8ed5
 2023-04-04 21:32:36 +00:00
Bruno BELANYI
7838603828 Use restricted vendor property for ARM runtime options 
They need to be read by everything that links with libmali, but we don't
expect anybody to actually write to them.

Bug: b/272740524
Test: CtsDeqpTestCases (dEQP-VK.protected_memory.stack.stacksize_*)
Change-Id: I963fb55fb92ef5f91426dbec913c901e58cacf64
 2023-04-04 13:04:00 +00:00
Victor Liu
a55bb8682c uwb: add permission for ccc ranging 
Bug: 255649425
Change-Id: I05aac586146bf25569b5f6251d2fd62b921631be
 2023-03-31 14:04:13 -07:00
Wilson Sung
083b5fe640 Merge "Update SELinux error" into udc-dev 2023-03-31 10:18:47 +00:00
Wilson Sung
accb299d5d Update SELinux error 
Test: scanBugreport
Bug: 276385941
Change-Id: I54627db892f95ac7ee6e9b08762b7a72793d4a00
 2023-03-31 10:55:58 +08:00
Wilson Sung
28afe7393f Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 275002227
Change-Id: If2133d83efbfa00ee9643a25047f465c60d2d3c4
 2023-03-29 06:34:07 +00:00
Adam Shih
7cc3817f71 Move power dump text section out of hal_dumpstate_default 
Bug: 273380985
Test: adb bugreport
Change-Id: I77b59ea719055972429b2b8a1349e52e0e1fe395
 2023-03-28 15:03:22 +08:00
Adam Shih
5bfe1bdd6d Move camera text dump to dump_gs101 
Bug: 273380985
Test: adb bugreport
Change-Id: Iba138e608885a1215515ec8cc5f5e997dfcfcf3f
 2023-03-27 10:37:02 +08:00
TreeHugger Robot
feef477d2f Merge "Remove tracking_denials/hal_fingerprint_default.te" into udc-dev 2023-03-27 01:37:37 +00:00
chenkris
2bd6ae14f3 Remove tracking_denials/hal_fingerprint_default.te 
Bug: 187015705
Bug: 183338543
Test: build and test fingerprint on device.
Test: no fingerprint avc denials in logcat.
Change-Id: I1dde2c0d8c8ab2610c2b8147c15ac5c9f813345a
 2023-03-24 07:40:05 +00:00
Adam Shih
e7ea94d8e1 Move cma dump to itself 
Bug: 273380985
Test: adb bugreport
Change-Id: I40ecb631c7fbbea216f5c56857b92152c997e466
 2023-03-24 13:56:31 +08:00
KRIS CHEN
2f8f23232a Merge "Allow fingerprint hal to read sysfs_leds" into udc-dev 2023-03-24 02:06:37 +00:00
Kris Chen
d678ee3226 Allow fingerprint hal to read sysfs_leds 
Fix the following avc denials:
avc: denied { search } for name="backlight" dev="sysfs" ino=79316
scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_leds:s0
tclass=dir permissive=1

avc: denied { read } for name="state" dev="sysfs" ino=79365
scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_leds:s0
tclass=file permissive=1

Bug: 271072126
Test: Authenticate fingerprint.
Change-Id: I67f5502bc7b4b1d6e14cf493f1bc6575980bcd0d
 2023-03-21 12:19:07 +00:00
Jörg Wagner
cb6bad65e7 Update Mali DDK to r40 : Additional SELinux settings 
Expose DDK's dynamic configuration options through the Android Sysprop
interface, following recommendations from Arm's Android Integration
Manual.

Bug: 261718474

(cherry picked from commit 74d31a1568)
Merged-In: I5c69a8bafe3a4c738c124facb1f437ec721cc3ea
Change-Id: I7e6734cb79b38898eb65a0194b37381a1367fc36
 2023-03-21 10:31:51 +00:00
Adam Shih
4d9aa0b28f use devfreq dump from gs-common 
Bug: 273380985
Test: adb bugreport
Change-Id: I0ea6767fd7640c2ee1be66f659f94c15cb4766cd
 2023-03-21 12:41:23 +08:00
Enzo Liao
2110a1db8c SSRestarDetector: modify the SELinux policy to allow access files owned by system for Whitechapel. am: 893d8ddff7 am: 2bc1af0adf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/21937144

Change-Id: Ic08044ef00fef5fab0a52fe8375f3a7aa1a51924
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-15 05:14:54 +00:00
Enzo Liao
2bc1af0adf SSRestarDetector: modify the SELinux policy to allow access files owned by system for Whitechapel. am: 893d8ddff7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/21937144

Change-Id: Ibd95511a2d3a6e1cdebac8a20238c2ecfa876e27
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-15 04:38:41 +00:00
Enzo Liao
893d8ddff7 SSRestarDetector: modify the SELinux policy to allow access files owned by system for Whitechapel. 
It needs to access a file pushed by hosts of test suites (details: http://go/pd-client-for-lab#heading=h.wtp07hbqvwgx)

Bug: 234359369
Design: http://go/pd-client-for-lab
Test: manual (http://b/271555983#comment3)
Change-Id: I1c9544ca2ebe1857c439f00c4589f739aca8e157
 2023-03-15 03:52:17 +00:00
Xin Li
0ff740c68d [automerger skipped] Merge Android 13 QPR2 am: f703b89586 -s ours am: af9a0596e4 -s ours am: f782184f62 -s ours 
am skip reason: Merged-In I09b67ca07d7f9573d77f64686fb818d4dc1753cc with SHA-1 85bd1b8441 is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2486782

Change-Id: Ie37f36262dee71729e90a28da38d1ebf8439713e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-15 00:06:22 +00:00
Xin Li
f782184f62 [automerger skipped] Merge Android 13 QPR2 am: f703b89586 -s ours am: af9a0596e4 -s ours 
am skip reason: Merged-In I09b67ca07d7f9573d77f64686fb818d4dc1753cc with SHA-1 85bd1b8441 is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2486782

Change-Id: I3eb89a6c5cdb182b2e340d61458fcbe804d156d0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-14 23:06:15 +00:00
Xin Li
af9a0596e4 [automerger skipped] Merge Android 13 QPR2 am: f703b89586 -s ours 
am skip reason: Merged-In I09b67ca07d7f9573d77f64686fb818d4dc1753cc with SHA-1 85bd1b8441 is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2486782

Change-Id: I8e0f4144027a594f78e29bde8407d130509ac6e5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-14 22:32:23 +00:00
Xin Li
f703b89586 Merge Android 13 QPR2 
Bug: 273316506
Merged-In: I09b67ca07d7f9573d77f64686fb818d4dc1753cc
Change-Id: I4dfcfac354c52a6bf2828558dd44e1acca0b550a
 2023-03-13 23:09:33 -07:00
Jasmine Cha
3b3aa9e921 Merge "audio: move sepolicy about audio to gs-common" into udc-dev 2023-03-10 02:06:05 +00:00
Jasmine Cha
b263562360 audio: move sepolicy about audio to gs-common 
Bug: 259161622
Test: build pass and check with audio ext hidl/aidl

Change-Id: Ie1499be82e405c2ddf4cd1a62ee7ff2823befd8e
Signed-off-by: Jasmine Cha <chajasmine@google.com>
 2023-03-09 10:10:18 +08:00
Adam Shih
7d3f25d95b Move display dump to gs-common 
Bug: 269212897
Test: adb bugreport
Change-Id: Id40661687bbd04d7eba4790dc5fe17ca5c79e47d
 2023-03-07 13:01:05 +08:00
leochuang
4fe64170d3 Update SELinux error 
Test: scanBugreport
Bug: 270247432
Change-Id: Ia5e76ee1c027ac2b1cbbbc6a20a20f3ea609a1b7
 2023-02-22 10:30:02 +08:00
Ken Tsou
cd826e0365 [automerger skipped] [DO NOT MERGE] hal_health_default: access persist.vendor.shutdown.* am: 3194ab09f9 am: c02d353334 -s ours 
am skip reason: subject contains skip directive

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/21457164

Change-Id: I313ea2cb154644b1a61f40e08e0cd6f41868b5ce
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-02-18 15:53:31 +00:00
Ken Tsou
c02d353334 [DO NOT MERGE] hal_health_default: access persist.vendor.shutdown.* am: 3194ab09f9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/21457164

Change-Id: Iad95f30732e0342f673d36999028722775706bb5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-02-18 14:52:58 +00:00
Ken Tsou
3194ab09f9 [DO NOT MERGE] hal_health_default: access persist.vendor.shutdown.* 
msg='avc: denied { set } for property=persist.vendor.shutdown.voltage_avg pid=908 uid=1000 gid=1000 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:vendor_default_prop:s0 tclass=property_service permissive=0'

Bug: 266181615
Change-Id: Ia87610f0363bbfbe4fe446244b44818c273841f4
Signed-off-by: Ken Tsou <kentsou@google.com>
 2023-02-17 10:28:27 +00:00
Ken Tsou
6964113b1c hal_health_default: allow to access persist.vendor.shutdown.* 
msg='avc: denied { set } for property=persist.vendor.shutdown.voltage_avg pid=908 uid=1000 gid=1000 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:vendor_default_prop:s0 tclass=property_service permissive=0'

Bug: 266181615
Change-Id: Ia87610f0363bbfbe4fe446244b44818c273841f4
Signed-off-by: Ken Tsou <kentsou@google.com>
 2023-02-17 07:02:01 +00:00
Lucas Wei
6ef92ee0d1 Merge "votable: Update don't audit file entry" 2023-02-16 06:00:51 +00:00
TreeHugger Robot
afafde41a1 Merge "Update SELinux error" 2023-02-15 03:53:59 +00:00
Treehugger Robot
6c53f05cae Merge "Remove bug_map entry for incident" am: bc70a9f3df am: dfd9324aca am: 05d473ec62 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2436853

Change-Id: Ic2399bc1d08f5b79ac19e083595a0f0e3ba9233e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-02-15 03:27:43 +00:00
Lucas Wei
5a70bbb335 votable: Update don't audit file entry 
Test: No votable avc errors in dmesg
Bug: 247905787
Change-Id: I95ab4dd7750e9b0f26d41fece50dc6d0aa73dd41
Signed-off-by: Lucas Wei <lucaswei@google.com>
 2023-02-15 02:49:08 +00:00
leochuang
e5b2d04476 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 269218654
Test: scanBugreport
Bug: 269370106
Bug: 269045042
Change-Id: Ief58a1f19580251476c71602951550388015df01
 2023-02-15 10:25:40 +08:00
Treehugger Robot
05d473ec62 Merge "Remove bug_map entry for incident" am: bc70a9f3df am: dfd9324aca 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2436853

Change-Id: I0c0386e02131db6c353f059ad1320f51027d9e6d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-02-15 02:23:51 +00:00
Treehugger Robot
dfd9324aca Merge "Remove bug_map entry for incident" am: bc70a9f3df 
Original change: https://android-review.googlesource.com/c/device/google/gs101-sepolicy/+/2436853

Change-Id: I435bdfe151ffbb88e2b3e2f8360acfaf42093ee4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-02-15 01:36:50 +00:00