Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
863 commits 1 branch 0 tags 494 MiB
Commit graph

863 commits

This branch
This branch
All branches
Author SHA1 Message Date
Petri Gynther
adee4062ad Add vbmeta_vendor_[ab] to file_contexts am: d12714ccc0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15276573

Change-Id: Ie5f417c81373d599403646c90ddeda78b84c0b7a
 2021-07-21 23:50:44 +00:00
Petri Gynther
d12714ccc0 Add vbmeta_vendor_[ab] to file_contexts 
Bug: 181909612
Test: build + install + boot to home
Change-Id: Ibb7bd8e5a61d86de1b51a3780a5bfa8cf4caf59b
 2021-07-20 23:41:31 -07:00
sukiliu
d1f198d5eb Update avc error on ROM 7566803 am: 411aa59779 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15343071

Change-Id: I71dbe7cfb4ff8f409e9565e4a636ca8c4a3844ce
 2021-07-21 06:02:08 +00:00
sukiliu
411aa59779 Update avc error on ROM 7566803 
avc: denied { read } for name="platform:1cc40000.sysmmu--platform:1ce00000.abrolhos" dev="sysfs" ino=21006 scontext=u:r:hal_neuralnetworks_darwinn:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

Bug: 194241380
Test: PtsSELinuxTestCases
Change-Id: If7ee99a36bca88fffc37c12dc306e0453afb1395
 2021-07-21 09:36:05 +08:00
TreeHugger Robot
0c411447d7 Merge "ims: allow finding mediametrics_service for vendor_ims_app" into sc-dev am: b3cc71258b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15302265

Change-Id: Ie50b322dca7fc0292a200a721870c6679456c5b5
 2021-07-20 13:13:02 +00:00
Alex Hong
5cc647e87d Allow suspend_control to access the AOC wakeup node am: f0589d11df 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15334275

Change-Id: Ibfbe41ba694a27408dbd3ff6bdb5632d55a9a05e
 2021-07-20 13:12:56 +00:00
TreeHugger Robot
b3cc71258b Merge "ims: allow finding mediametrics_service for vendor_ims_app" into sc-dev 2021-07-20 13:00:25 +00:00
Sungjun Park
0612b5aa85 ims: allow finding mediametrics_service for vendor_ims_app 
For generate dtmf tone, ImsService find mediametrics_service.
So, added the seplicy rule for finding mediametrics_service.

<Related log>
07-14 15:37:21.391   411   411 E SELinux : avc:  denied  { find } for
pid=2263 uid=10217 name=media.metrics scontext=u:r:vendor_ims_app:s0:
c217,c256,c512,c768 tcontext=u:object_r:mediametrics_service:s0 tclass
=service_manager permissive=0

Bug: 192543653
Signed-off-by: Sungjun Park <sj19385.park@samsung.com>
Change-Id: Ia0f6610ecc454533d9584367694228245afe46e4
 2021-07-20 09:35:23 +00:00
Alex Hong
f0589d11df Allow suspend_control to access the AOC wakeup node 
Test: Check avc denials during boot
      $ adb shell su 0 dumpsys suspend_control
Bug: 194164089

Change-Id: I9edcf6398f61daec6fdde0f7ac69ddd5d275f753
 2021-07-20 09:29:15 +00:00
TreeHugger Robot
8be9d35300 Merge "ssr_detector_app: Add additional vendor dir and crgroup allow for debug" into sc-dev am: fa62e602fc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15132550

Change-Id: Ifdd759f02d516efa1691833b84e9129ed7136fe8
 2021-07-20 06:23:08 +00:00
TreeHugger Robot
fa62e602fc Merge "ssr_detector_app: Add additional vendor dir and crgroup allow for debug" into sc-dev 2021-07-20 06:09:35 +00:00
sukiliu
909d2db713 Update avc error on ROM 7562467 am: d9309ef34d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15328118

Change-Id: Ida52f53a71258077d8163be3984c006e1d905f00
 2021-07-20 04:37:32 +00:00
sukiliu
d9309ef34d Update avc error on ROM 7562467 
avc: denied { read } for name="u:object_r:odsign_prop:s0" dev="tmpfs" ino=229 scontext=u:r:postinstall_dexopt:s0 tcontext=u:object_r:odsign_prop:s0 tclass=file permissive=0
avc: denied { read } for comm="otapreopt" name="u:object_r:odsign_prop:s0" dev="tmpfs" ino=229 scontext=u:r:postinstall_dexopt:s0 tcontext=u:object_r:odsign_prop:s0 tclass=file permissive=0

Bug: 194142604
Bug: 194065991
Test: PtsSELinuxTestCases
Change-Id: Ic3bb544f05ffff0df42f820d2f9cf6cd7cb24879
 2021-07-20 10:03:30 +08:00
TreeHugger Robot
dd0acb63a4 Merge "Add cpm/pca9468 logbuffer directories so that bugreports can take a snapshot" into sc-dev am: f8b8e0cb53 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15316269

Change-Id: Ia0bf59df027d801313955161d53139b7176c8b19
 2021-07-19 21:10:22 +00:00
TreeHugger Robot
f8b8e0cb53 Merge "Add cpm/pca9468 logbuffer directories so that bugreports can take a snapshot" into sc-dev 2021-07-19 20:54:38 +00:00
TreeHugger Robot
299745791f Merge "Allow HAL to access sysfs." into sc-dev am: fc321aabe2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15308771

Change-Id: If129d2a57a6d94ef42cc187b7d53eb5c5a536d80
 2021-07-19 18:39:57 +00:00
TreeHugger Robot
fc321aabe2 Merge "Allow HAL to access sysfs." into sc-dev 2021-07-19 18:22:13 +00:00
Andrew LeCain
d297941975 Merge "sepolicy allow fingerprint hal to read mfg_data" into sc-dev am: ff13d1adee 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15292860

Change-Id: I53ca776b64edda2d1cabf505445f2f7768f04dc6
 2021-07-19 18:06:19 +00:00
Andrew LeCain
ff13d1adee Merge "sepolicy allow fingerprint hal to read mfg_data" into sc-dev 2021-07-19 17:46:18 +00:00
Stephane Lee
022b61751e Add cpm/pca9468 logbuffer directories so that bugreports can take a snapshot 
Test: adb bugreport; check "dumpstate_board.txt"
Bug: 193894298
Change-Id: I222405ab6d78bd4367a91cc0f13b8d8a0f1ca578
 2021-07-16 16:27:42 -07:00
Sina Hassani
e763f3cc9b Allow HAL to access sysfs. 
This is so that it can read fw metrics from sysfs and dump them through
dumpsys.

Test: Ran dumpsys and bugreport.
Bug: 193841666
Change-Id: I08c08e35bad35d0eefc3f6ad218fb47e24051b0c
 2021-07-16 16:27:34 -07:00
Wenhao Wang
e4e2f33f14 Merge "Add wakelock access for storageproxyd" into sc-dev am: 5305955a86 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15306271

Change-Id: I133982ece59c9dc571b858b189375d31b4f02542
 2021-07-16 17:30:31 +00:00
Wenhao Wang
5305955a86 Merge "Add wakelock access for storageproxyd" into sc-dev 2021-07-16 17:12:01 +00:00
Alex Hong
77236f96d6 Merge "sepolicy: gs101: support tetheroffload hal version 1.y" into sc-dev am: ea6934fda9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15296508

Change-Id: Id9c0bdad2c43886630107cbbbc7f51459481ddf9
 2021-07-16 06:46:06 +00:00
Alex Hong
ea6934fda9 Merge "sepolicy: gs101: support tetheroffload hal version 1.y" into sc-dev 2021-07-16 06:28:32 +00:00
Namkyu Kim
4055c31faf sepolicy: gs101: support tetheroffload hal version 1.y 
Support both 1.0 and 1.1.

Bug: 186539538
Test: run vts -m VtsHalTetheroffloadControlV1_0TargetTest
      run vts -m VtsHalTetheroffloadControlV1_1TargetTest

Signed-off-by: Namkyu Kim <namkyu78.kim@samsung.com>
Change-Id: I76a26dcd22e1c8985d470a39b9aeae618f459d00
 2021-07-16 04:05:21 +00:00
Stephane Lee
b37fe8c071 Merge "odpm: Rename the odpm_config sepolicies to be more consistent" into sc-dev am: ea6996bc52 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15289584

Change-Id: I587aad68aafb8b4229fd76f2a35d94ccc4a51987
 2021-07-16 02:11:29 +00:00
Stephane Lee
ea6996bc52 Merge "odpm: Rename the odpm_config sepolicies to be more consistent" into sc-dev 2021-07-16 01:55:33 +00:00
Wenhao Wang
5c009fb96f Add wakelock access for storageproxyd 
The storageproxyd needs a wakelock around the sequence of UFS commands

Bug: 193456223
Test: Trusty storage tests
Change-Id: I1efe3144c8bcc17c056fc3b9b796e080f77991d5
 2021-07-15 17:10:31 -07:00
Andrew LeCain
d8d8580281 sepolicy allow fingerprint hal to read mfg_data 
declares new device context for mfg_data_block_device
give fp HAL permission to read/write/open
give fp HAL permission to search block_device dir

Bug: 189135413
Test: sideload calibration in enforcing mode.
Change-Id: I19e0cd13fc452b42c3f35772c4bafd433dbcc8b1
 2021-07-15 10:58:53 -07:00
TreeHugger Robot
18ba5fc434 Merge "Set sepolicy for shell script of disabling contaminant detection" into sc-dev am: f0dd8e2957 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15269315

Change-Id: I6c76bc3520f86a8aa85172a38fbfe8ebec6d934c
 2021-07-15 16:32:23 +00:00
TreeHugger Robot
f0dd8e2957 Merge "Set sepolicy for shell script of disabling contaminant detection" into sc-dev 2021-07-15 16:17:40 +00:00
sukiliu
65cda2d3a4 Update avc error on ROM 7550575 am: 06ea8d9432 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15283866

Change-Id: I5fd96bc2ab734e30683c77519fdf45594cb7904d
 2021-07-15 09:01:40 +00:00
Darren Hsu
3050ed8ed9 Set sepolicy for shell script of disabling contaminant detection 
The avc denials are listed in b/192208389#comment10.

Bug: 192208389
Test: Manually tested
Change-Id: Ib2e3cf498851c0c9e5e74aacc9bf391549c0ad1a
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2021-07-15 11:11:11 +08:00
sukiliu
06ea8d9432 Update avc error on ROM 7550575 
Bug: 193726003
Bug: 193633303
Bug: 193548421
Test: PtsSELinuxTestCases
Change-Id: Id6cb13602eb9a69f7815a0301a5708577c663bd2
 2021-07-15 09:33:58 +08:00
Stephane Lee
c7342a7824 odpm: Rename the odpm_config sepolicies to be more consistent 
Test: Ensure that there are no sepolicy errors on odpm_config
Bug: 192674986
Change-Id: I3043a544511c8c3051e1bd10e9f6b668b251cf5f
 2021-07-14 16:11:51 -07:00
Orion Hodson
b611de527f Merge "Revert "Update avc error on ROM 7522385"" into sc-dev am: d4a7e81293 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15235283

Change-Id: I404a023228cee821b97a72b29394f81e517d56c7
 2021-07-14 09:23:21 +00:00
Orion Hodson
d4a7e81293 Merge "Revert "Update avc error on ROM 7522385"" into sc-dev 2021-07-14 09:08:32 +00:00
TreeHugger Robot
67dfb20473 Merge "Add create perm for tee" into sc-dev am: e7aab2cbdd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15276267

Change-Id: Id0970b0bfb90adb33206450bd88b823d8742fc47
 2021-07-14 01:21:36 +00:00
TreeHugger Robot
e7aab2cbdd Merge "Add create perm for tee" into sc-dev 2021-07-14 01:01:53 +00:00
Wenhao Wang
c60e44c29e Add create perm for tee 
The storageproxyd needs to create persist/ss from scratch.
So we add the create perm.

Bug: 193489307
Test: Trusty storage tests
Change-Id: Ida1c07acac26494ae6bba0392fb2da0425803608
 2021-07-13 16:26:17 -07:00
TreeHugger Robot
64e79c3514 Merge "Revert "Update avc error on ROM 7526917"" into sc-dev am: 0afce44985 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15265928

Change-Id: Ic78c1af03bc8a748db3198dae28e5a104f9d4b45
 2021-07-13 17:19:02 +00:00
TreeHugger Robot
0afce44985 Merge "Revert "Update avc error on ROM 7526917"" into sc-dev 2021-07-13 17:03:43 +00:00
Michael Ayoubi
04d9f1ac13 Revert "Update avc error on ROM 7526917" 
This reverts commit 81a8e5b4ce.

Reason for revert: <Qorvo Version P2-S4(ag/15139489) which caused these errors got reverted from sc-dev in ag/15224151. It will now go into master>

Bug: 192924316
Change-Id: I772053cf512ba555a5fa657d39f957ac51f013c1
 2021-07-13 17:03:26 +00:00
Chris Fries
44e0728dac Merge "suppress error for ag/15263334" into sc-dev am: 5de8701fae 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15258522

Change-Id: Idc466d8e5dd5e3733a840cf78e3dad02b9486fab
 2021-07-13 15:52:31 +00:00
Chris Fries
5de8701fae Merge "suppress error for ag/15263334" into sc-dev 2021-07-13 15:37:16 +00:00
Stephane Lee
ec44f8bfd2 Add DC Charging to server configurable parameters; ensure the sysfs node is writable am: 2046513eb7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15180033

Change-Id: I3cd66320c887223d53506cb2ce741a1e04c02afd
 2021-07-13 08:47:59 +00:00
Adam Shih
9d7e88c27e suppress error for ag/15263334 
Bug: 193474772
Test: boot with no relevant error found
Change-Id: Ia3f49fbf9e623c6b81d6c595e19e275f64521dfe
 2021-07-13 09:57:18 +08:00
Stephane Lee
2046513eb7 Add DC Charging to server configurable parameters; ensure the sysfs node is writable 
hal_googlebattery will be writing to:
/sys/devices/platform/google,cpm/dc_ctl

Test: Ensure there are no errors on logcat | grep google_battery@
Bug: 183772980

Change-Id: Id4490d6de161eefe63c36c01d497696b16c6292d
 2021-07-12 13:27:54 -07:00
SHUCHI LILU
961b0a8689 Merge "Update avc error on ROM 7539530" into sc-dev am: 4aa650714c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15250405

Change-Id: Ifeccd2009a20300026813565692ffb69aef971bd
 2021-07-12 04:05:36 +00:00