Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1498 commits 1 branch 0 tags 494 MiB
Commit graph

1498 commits

This branch
This branch
All branches
Author SHA1 Message Date
Jenny Ho
ae368d3f03 [automerger skipped] sepolicy: add rule for new debug file node am: c8651e514c am: 948eeb2de5 -s ours 
am skip reason: Merged-In I0ddf68d5e15fe8d77d8d61287f65621c14024f46 with SHA-1 17e518038e is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15773285

Change-Id: Ibef4eab822f2fa8cff1af49400a9fde361157f5c
 2021-09-27 16:15:09 +00:00
Jenny Ho
948eeb2de5 sepolicy: add rule for new debug file node am: c8651e514c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15773285

Change-Id: I459d1f82f9680d87a2533568259cd54c11233d5f
 2021-09-27 15:57:26 +00:00
Erik Staats
cb725e413b Allow the sensor HAL to access dynamic sensor properties. am: e42a4ed3be 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15905607

Change-Id: I4d16e83741afa94aec87bdf19d412d8d7e53f91a
 2021-09-24 17:46:31 +00:00
Erik Staats
e42a4ed3be Allow the sensor HAL to access dynamic sensor properties. 
Bug: 195964858
Test: Verified dynamic sensor manager is present in sensor list and that
 no SELinux violations occur on sc-v2-dev and master.
Test: See details in testing done comment in
 https://googleplex-android-review.git.corp.google.com/15905607 .
Change-Id: I2f1c05ec0d840f6ebae1e5356f668b3f9431fd25
 2021-09-24 05:53:35 -07:00
Jenny Ho
c8651e514c sepolicy: add rule for new debug file node 
W dumpstate@1.1-s: type=1400 audit(0.0:7): avc: denied { read } for name="logbuffer_maxfg_monitor" dev="tmpfs" ino=500 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0

Bug: 196755019
Signed-off-by: Jenny Ho <hsiufangho@google.com>
Merged-In: I0ddf68d5e15fe8d77d8d61287f65621c14024f46
Change-Id: I0ddf68d5e15fe8d77d8d61287f65621c14024f46
 2021-09-23 23:29:29 +00:00
Erik Staats
f66955e015 Revert "Allow the sensor HAL to access dynamic sensor properties." am: aef1a206a7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15886140

Change-Id: I8fa160db43cbe237c73cb103e6e212e1aa0df7a0
 2021-09-22 18:11:29 +00:00
Erik Staats
aef1a206a7 Revert "Allow the sensor HAL to access dynamic sensor properties." 
Revert "dynamic_sensor: Add sensor manager init to sub-HAL 2.1."

Revert submission 15874906-bug_195964858.2

Reason for revert: b/200815351
Reverted Changes:
I76a60f7fb:Allow the sensor HAL to access dynamic sensor prop...
I5d587dc46:dynamic_sensor: Add sensor manager init to sub-HAL...

Change-Id: Ib29649b058ec6f329958e1dfcba0c2e35ea79306
 2021-09-22 17:53:58 +00:00
Erik Staats
9cadbdc347 Allow the sensor HAL to access dynamic sensor properties. am: fba4a09331 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15874927

Change-Id: I9022c4d8e270af3a0d369692a6996dd046c732c4
 2021-09-22 12:40:34 +00:00
Erik Staats
fba4a09331 Allow the sensor HAL to access dynamic sensor properties. 
Bug: 195964858
Test: Verified dynamic sensor manager is present in sensor list and that
 no SELinux violations occur.
Test: See details in testing done comment in
 https://googleplex-android-review.git.corp.google.com/15874927 .
Change-Id: I76a60f7fbd113059156ccaea2c4f98580cb0836a
 2021-09-20 16:53:16 -07:00
Jenny Ho
ee73f40872 sepolicy: add rule for new debug file node am: 17e518038e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15756806

Change-Id: Ie913098b9b31e3c042abe13672fddc726cf4aef0
 2021-09-07 14:21:17 +00:00
Jenny Ho
17e518038e sepolicy: add rule for new debug file node 
W dumpstate@1.1-s: type=1400 audit(0.0:7): avc: denied { read } for name="logbuffer_maxfg_monitor" dev="tmpfs" ino=500 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0

Bug: 196755019
Signed-off-by: Jenny Ho <hsiufangho@google.com>
Change-Id: I0ddf68d5e15fe8d77d8d61287f65621c14024f46
 2021-09-06 06:21:34 +00:00
Roshan Pius
9c96111094 gs101-sepolicy: Rename hal_uwb -> hal_uwb_vendor 
Since we are now creating an AOSP HAL for uwb. Rename qorvo's internal
HAL to hal_uwb_vendor to avoid conflicts with the AOSP HAL sepolicy
rules.

Bug: 195308730
Test: Compiles
Change-Id: Ief48eacde68b062b2199b20c0c1bb3af23795240
Merged-In: Ief48eacde68b062b2199b20c0c1bb3af23795240
 2021-08-26 20:02:20 +00:00
Roshan Pius
545771e074 [automerger skipped] gs101-sepolicy: Rename hal_uwb -> hal_uwb_vendor am: a3f040d2ac -s ours 
am skip reason: Merged-In Ief48eacde68b062b2199b20c0c1bb3af23795240 with SHA-1 04fbca104c is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15678068

Change-Id: I1ff7de7eba82ec1d804aa4d2e481303a6ed63252
 2021-08-26 04:07:26 +00:00
Roshan Pius
063cbb1b8f [automerger skipped] gs101-sepolicy: Rename hal_uwb -> hal_uwb_vendor am: 04fbca104c -s ours am: 4eeb587d95 -s ours 
am skip reason: skipped by user rpius

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15675687

Change-Id: Ib6dafd7313c358327c24aa15196cd53d0d3c9840
 2021-08-26 01:17:34 +00:00
Roshan Pius
a3f040d2ac gs101-sepolicy: Rename hal_uwb -> hal_uwb_vendor 
Since we are now creating an AOSP HAL for uwb. Rename qorvo's internal
HAL to hal_uwb_vendor to avoid conflicts with the AOSP HAL sepolicy
rules.

Bug: 195308730
Test: Compiles
Change-Id: Ief48eacde68b062b2199b20c0c1bb3af23795240
Merged-In: Ief48eacde68b062b2199b20c0c1bb3af23795240
 2021-08-26 01:07:43 +00:00
Roshan Pius
4eeb587d95 [automerger skipped] gs101-sepolicy: Rename hal_uwb -> hal_uwb_vendor am: 04fbca104c -s ours 
am skip reason: skipped by user rpius

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15675687

Change-Id: I2d51df14c755847d1a270bdb98e9b702e22f8b7f
 2021-08-26 01:01:24 +00:00
Victor Liu
441d9430ab [automerger skipped] uwb: permissions for factory uwb calibration file am: 29aa981623 am: 7a06a7a434 -s ours 
am skip reason: Merged-In I3e5282477fd391b483e03242ce0b806bd447dc54 with SHA-1 29aa981623 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15616315

Change-Id: I24b2da33bda30d057dab6812ec886615a3febb45
 2021-08-25 23:42:11 +00:00
Victor Liu
e877511429 uwb: permissions for factory uwb calibration file am: 29aa981623 am: 5dfabe8acf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15616315

Change-Id: I35c0484a84695969e5f1f3e7cf2e8c7c06b4df3e
 2021-08-25 23:41:44 +00:00
Victor Liu
7a06a7a434 uwb: permissions for factory uwb calibration file am: 29aa981623 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15616315

Change-Id: I9755128c2a7a1039cb3b1c5a2e3913a0965540d9
 2021-08-25 23:29:50 +00:00
Victor Liu
5dfabe8acf uwb: permissions for factory uwb calibration file am: 29aa981623 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15616315

Change-Id: Ifa053b14b8fe06af7d076b103657ec7232aa8510
 2021-08-25 23:29:46 +00:00
Victor Liu
29aa981623 uwb: permissions for factory uwb calibration file 
add permission to:
copy factory uwb calib files from persist to /data/vendor/uwb
convert copied file to proper format for uwb stack to consume

Bug: 195659525
Signed-off-by: Victor Liu <victorliu@google.com>
Change-Id: I3e5282477fd391b483e03242ce0b806bd447dc54
Merged-In: I3e5282477fd391b483e03242ce0b806bd447dc54
 2021-08-25 19:14:10 +00:00
Roshan Pius
04fbca104c gs101-sepolicy: Rename hal_uwb -> hal_uwb_vendor 
Since we are now creating an AOSP HAL for uwb. Rename qorvo's internal
HAL to hal_uwb_vendor to avoid conflicts with the AOSP HAL sepolicy
rules.

Bug: 195308730
Test: Compiles
Change-Id: Ief48eacde68b062b2199b20c0c1bb3af23795240
Merged-In: Ief48eacde68b062b2199b20c0c1bb3af23795240
 2021-08-25 17:32:53 +00:00
TreeHugger Robot
f3993d4555 Merge "Allow boot color propagation" into sc-qpr1-dev am: 9c97417d3a am: c9690b1256 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15600825

Change-Id: I6d8905a45f5195294ca67d8cf21917779c6c3a0c
 2021-08-21 17:10:21 +00:00
TreeHugger Robot
4dce16cfef Merge "Allow boot color propagation" into sc-qpr1-dev am: 9c97417d3a am: c3521edd8c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15600825

Change-Id: Ie7fde3e797a018b74849b74543a1a0564d9141fd
 2021-08-19 23:24:40 +00:00
TreeHugger Robot
c3521edd8c Merge "Allow boot color propagation" into sc-qpr1-dev am: 9c97417d3a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15600825

Change-Id: Ibef6a94ac176f32b8bb0a87d3eb8283573bbcc74
 2021-08-19 23:12:37 +00:00
TreeHugger Robot
c9690b1256 Merge "Allow boot color propagation" into sc-qpr1-dev am: 9c97417d3a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15600825

Change-Id: I7c3f9be67d2e2ae13c034e4909c9ec589e38ccf2
 2021-08-19 23:12:30 +00:00
TreeHugger Robot
9c97417d3a Merge "Allow boot color propagation" into sc-qpr1-dev 2021-08-19 22:52:31 +00:00
David Chen
381a1043e1 [automerger skipped] resolve merge conflicts of c0922582bc to sc-v2-dev am: 462d4b1bcd -s ours 
am skip reason: Merged-In Ib95debbc9ce10919c5f935e8f70b340bb293b54a with SHA-1 c0922582bc is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15618916

Change-Id: I4cf911eb3be87f95df8310888a4b4d211fc576fb
 2021-08-19 08:37:09 +00:00
David Chen
462d4b1bcd resolve merge conflicts of c0922582bc to sc-v2-dev 
Bug: 197164878

Change-Id: Ibc7ea7ffe9c30912c8e12d081a6b110f8e73f29f
Merged-In: Ib95debbc9ce10919c5f935e8f70b340bb293b54a
 2021-08-19 02:25:56 +00:00
David Chen
28cd716faa resolve merge conflicts of 945de94222 to sc-v2-dev-plus-aosp 
Bug: 197166084

Change-Id: I4b8b2d99db133be4c96853f072e3b10dbac39b92
Merged-In: Ib95debbc9ce10919c5f935e8f70b340bb293b54a
 2021-08-19 02:25:12 +00:00
davidycchen
945de94222 Allow twoshay to access fwk_stats_service and system_server am: c0922582bc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15605516

Change-Id: I8a500539a2738d27fa47d2d3f45cfe5e68bfe099
 2021-08-19 01:30:20 +00:00
Rick Yiu
7fcca345b0 Merge "gs101-sepolicy: Remove private/mediaprovider_app.te" into sc-v2-dev am: 26fec151ec 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15595122

Change-Id: Ic7d8107ef2e16a57e00de5080a86cdffa50c6791
 2021-08-18 04:06:09 +00:00
Rick Yiu
26fec151ec Merge "gs101-sepolicy: Remove private/mediaprovider_app.te" into sc-v2-dev 2021-08-18 03:46:01 +00:00
davidycchen
c0922582bc Allow twoshay to access fwk_stats_service and system_server 
avc:  denied  { find } for pid=813 uid=0
name=android.frameworks.stats.IStats/default scontext=u:r:twoshay:s0
tcontext=u:object_r:fwk_stats_service:s0 tclass=service_manager

avc: denied { call } for scontext=u:r:twoshay:s0
tcontext=u:r:system_server:s0 tclass=binder

Bug: 179334953
Test: Make selinux_policy and push related files to the device.

Signed-off-by: davidycchen <davidycchen@google.com>
Change-Id: Ib95debbc9ce10919c5f935e8f70b340bb293b54a
Merged-In: Ib95debbc9ce10919c5f935e8f70b340bb293b54a
 2021-08-18 09:47:01 +08:00
Bart Van Assche
6828588c74 Add the 'bdev_type' attribute to all block device types am: 37b5741301 am: 239bcceb78 am: 7513cd7ad6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15517922

Change-Id: I5c32e5d3fdb511b5103dc2e0a24f837e714943b7
 2021-08-18 01:26:07 +00:00
Bart Van Assche
65b8e1e433 Add the 'bdev_type' attribute to all block device types am: 37b5741301 am: 79b41e3c3a am: 742ff4f98c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15517922

Change-Id: Ie24dd9a6de1a644b15eed4da713089cc6bcbefe6
 2021-08-18 01:20:26 +00:00
Bart Van Assche
07751567ad Add the 'bdev_type' attribute to all block device types am: 37b5741301 am: 239bcceb78 am: ea25044059 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15517922

Change-Id: I5d46eab501e1ce290570a69dde5450813eff0bf0
 2021-08-18 01:20:15 +00:00
Bart Van Assche
742ff4f98c Add the 'bdev_type' attribute to all block device types am: 37b5741301 am: 79b41e3c3a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15517922

Change-Id: I693db84157721b8ff20ae7bd8da213469352cc75
 2021-08-18 01:01:59 +00:00
Bart Van Assche
7513cd7ad6 Add the 'bdev_type' attribute to all block device types am: 37b5741301 am: 239bcceb78 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15517922

Change-Id: Iedf50eb9fc1c205eb584c4c53ad7de45c06b695d
 2021-08-18 00:56:43 +00:00
Bart Van Assche
ea25044059 Add the 'bdev_type' attribute to all block device types am: 37b5741301 am: 239bcceb78 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15517922

Change-Id: I0ca50d490ad5aa49bcc2f1c7db52f5b81a44dcd2
 2021-08-18 00:56:43 +00:00
Bart Van Assche
239bcceb78 Add the 'bdev_type' attribute to all block device types am: 37b5741301 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15517922

Change-Id: I19d709e960fe8ccf066bdbd20dc6817ee20e55d0
 2021-08-18 00:34:10 +00:00
Bart Van Assche
79b41e3c3a Add the 'bdev_type' attribute to all block device types am: 37b5741301 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15517922

Change-Id: I52ac9161ae22eafecd60a8317370ddc3b243263d
 2021-08-18 00:31:25 +00:00
Bart Van Assche
37b5741301 Add the 'bdev_type' attribute to all block device types 
The following patch introduces code that iterates over all block
devices:
https://android-review.googlesource.com/c/platform/system/core/+/1783847/9

The following patch grants 'init' and 'apexd' permission to iterate over
all block devices:
https://android-review.googlesource.com/c/platform/system/sepolicy/+/1783947

The above SELinux policy change requires to add the 'bdev_type'
attribute to all block devices. Hence this patch.

Bug: 194450129
Bug: 196982345
Test: Built Android images that include this change and verified that neither init nor apexd triggers any SELinux access denied errors.
Change-Id: I6ce1127f199c5b33812f15fe280d86594d7d7ebf
Signed-off-by: Bart Van Assche <bvanassche@google.com>
 2021-08-17 15:23:23 -07:00
Lucas Dupin
6e887cf3a0 Allow boot color propagation 
Allows SystemUI to write the boot color sysprop

Test: manual
Bug: 190093578
Change-Id: I844a4dae87fe09a09ff3368c540ffab5f745d455
(cherry picked from commit 8a586e6786)
 2021-08-17 21:06:23 +00:00
Rick Yiu
6224fa9354 gs101-sepolicy: Remove private/mediaprovider_app.te 
Moved to system/sepolicy to solve GSI avc denials.

Bug: 196326750
Test: build pass
Change-Id: I4bdcc1d49bf9550297687534074fd3fc526d3acc
 2021-08-17 21:09:20 +08:00
Edmond Chung
eb1a9fd509 Merge "gs101: Allow camera HAL to access interrupt handles" into sc-dev am: 7e581b9a7b am: c45a1b5828 am: 36f756e44b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15584607

Change-Id: I27bc0b77a3438fcaf6cbdf209945f6c7a360771c
 2021-08-16 22:45:38 +00:00
Edmond Chung
4ee5ff59a0 Merge "gs101: Allow camera HAL to access interrupt handles" into sc-dev am: 7e581b9a7b am: c45a1b5828 am: 07fbe5b0d8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15584607

Change-Id: I91b59573968bb3ad15f7785ac155809ae9a7cfdc
 2021-08-16 22:45:01 +00:00
Edmond Chung
ff5c485ddc Merge "gs101: Allow camera HAL to access interrupt handles" into sc-dev am: 7e581b9a7b am: d5f9036c8e am: 9bde9324fe 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15584607

Change-Id: I90884f92df1e42fa5b60ad47e914ed1460b40c04
 2021-08-16 22:44:58 +00:00
Edmond Chung
36f756e44b Merge "gs101: Allow camera HAL to access interrupt handles" into sc-dev am: 7e581b9a7b am: c45a1b5828 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15584607

Change-Id: Id66f403466d50ea3beb4663cc137e551a92e16f3
 2021-08-16 22:32:00 +00:00
Edmond Chung
07fbe5b0d8 Merge "gs101: Allow camera HAL to access interrupt handles" into sc-dev am: 7e581b9a7b am: c45a1b5828 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15584607

Change-Id: Ia7663a410cd3ffcbb554dc653c2470e53efa2f4b
 2021-08-16 22:32:00 +00:00