Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
978 commits 1 branch 0 tags 494 MiB
Commit graph

978 commits

This branch
This branch
All branches
Author SHA1 Message Date
Petri Gynther
056fbce364 Add vbmeta_vendor_[ab] to file_contexts am: d12714ccc0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15276573

Change-Id: I7a64114eed37ee384dba61a492fbb58cc2a30831
 2021-07-21 23:46:06 +00:00
Badhri Jagan Sridharan
1ebd84703b Update Usb hal permissions to allow pushing overheat suez events 
Usb hal now pushes the Usb port overheat event through statsd.
Usb hal also accesses usbc-throttling stats to gather info.

Bug: 193615568
Signed-off-by: Badhri Jagan Sridharan <badhri@google.com>
Change-Id: I4918458bc7a8a25d7655b66d1fe40eafc7ccb070
 2021-07-21 14:38:55 -07:00
Sungwoo choi
b47cdf282a Allow to set vendor_rild_prop for oemrilservice_app 
Bug: 193367138
Test: make sure no denied logs in oemrilservice_app when access the
radio property

Signed-off-by: Sungwoo choi <sungwoo48.choi@samsung.com>
Change-Id: I9014002476df7b4e650f7a5a2f153e4eca47d23d
 2021-07-21 08:01:44 +00:00
Petri Gynther
d12714ccc0 Add vbmeta_vendor_[ab] to file_contexts 
Bug: 181909612
Test: build + install + boot to home
Change-Id: Ibb7bd8e5a61d86de1b51a3780a5bfa8cf4caf59b
 2021-07-20 23:41:31 -07:00
sukiliu
8dfbba48d1 Update avc error on ROM 7566803 am: 411aa59779 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15343071

Change-Id: I5a350cde5a79354fa11d1892425ca0f98e64003c
 2021-07-21 06:00:47 +00:00
sukiliu
411aa59779 Update avc error on ROM 7566803 
avc: denied { read } for name="platform:1cc40000.sysmmu--platform:1ce00000.abrolhos" dev="sysfs" ino=21006 scontext=u:r:hal_neuralnetworks_darwinn:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

Bug: 194241380
Test: PtsSELinuxTestCases
Change-Id: If7ee99a36bca88fffc37c12dc306e0453afb1395
 2021-07-21 09:36:05 +08:00
TreeHugger Robot
2260028f16 Merge "ims: allow finding mediametrics_service for vendor_ims_app" into sc-dev am: b3cc71258b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15302265

Change-Id: Ib3679aac5321fee05088ae34fd6aee63e9345599
 2021-07-20 13:12:08 +00:00
Alex Hong
2727807154 Allow suspend_control to access the AOC wakeup node am: f0589d11df 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15334275

Change-Id: I5279e246ce4ce654b76dc8fb213833c60ea32430
 2021-07-20 13:12:04 +00:00
TreeHugger Robot
b3cc71258b Merge "ims: allow finding mediametrics_service for vendor_ims_app" into sc-dev 2021-07-20 13:00:25 +00:00
Sungjun Park
0612b5aa85 ims: allow finding mediametrics_service for vendor_ims_app 
For generate dtmf tone, ImsService find mediametrics_service.
So, added the seplicy rule for finding mediametrics_service.

<Related log>
07-14 15:37:21.391   411   411 E SELinux : avc:  denied  { find } for
pid=2263 uid=10217 name=media.metrics scontext=u:r:vendor_ims_app:s0:
c217,c256,c512,c768 tcontext=u:object_r:mediametrics_service:s0 tclass
=service_manager permissive=0

Bug: 192543653
Signed-off-by: Sungjun Park <sj19385.park@samsung.com>
Change-Id: Ia0f6610ecc454533d9584367694228245afe46e4
 2021-07-20 09:35:23 +00:00
Alex Hong
f0589d11df Allow suspend_control to access the AOC wakeup node 
Test: Check avc denials during boot
      $ adb shell su 0 dumpsys suspend_control
Bug: 194164089

Change-Id: I9edcf6398f61daec6fdde0f7ac69ddd5d275f753
 2021-07-20 09:29:15 +00:00
TreeHugger Robot
5c2f8d4ba6 Merge "ssr_detector_app: Add additional vendor dir and crgroup allow for debug" into sc-dev am: fa62e602fc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15132550

Change-Id: I95b78d239e03912b0ecbaf17645a414f157a5320
 2021-07-20 06:21:36 +00:00
TreeHugger Robot
fa62e602fc Merge "ssr_detector_app: Add additional vendor dir and crgroup allow for debug" into sc-dev 2021-07-20 06:09:35 +00:00
sukiliu
f89cc13852 Update avc error on ROM 7562467 am: d9309ef34d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15328118

Change-Id: I5e5e3cb6af90ed614aeb32aca5697f903ccfa46b
 2021-07-20 04:36:34 +00:00
sukiliu
d9309ef34d Update avc error on ROM 7562467 
avc: denied { read } for name="u:object_r:odsign_prop:s0" dev="tmpfs" ino=229 scontext=u:r:postinstall_dexopt:s0 tcontext=u:object_r:odsign_prop:s0 tclass=file permissive=0
avc: denied { read } for comm="otapreopt" name="u:object_r:odsign_prop:s0" dev="tmpfs" ino=229 scontext=u:r:postinstall_dexopt:s0 tcontext=u:object_r:odsign_prop:s0 tclass=file permissive=0

Bug: 194142604
Bug: 194065991
Test: PtsSELinuxTestCases
Change-Id: Ic3bb544f05ffff0df42f820d2f9cf6cd7cb24879
 2021-07-20 10:03:30 +08:00
TreeHugger Robot
8b76ff03de Merge "Add cpm/pca9468 logbuffer directories so that bugreports can take a snapshot" into sc-dev am: f8b8e0cb53 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15316269

Change-Id: I0f77c7bfc41db1bdd361708218d5dd5750d5c682
 2021-07-19 21:09:31 +00:00
TreeHugger Robot
f8b8e0cb53 Merge "Add cpm/pca9468 logbuffer directories so that bugreports can take a snapshot" into sc-dev 2021-07-19 20:54:38 +00:00
TreeHugger Robot
56491c6712 Merge "Allow HAL to access sysfs." into sc-dev am: fc321aabe2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15308771

Change-Id: I2254f63fc551654694fa5ecda3b78cda80c76d5c
 2021-07-19 18:39:16 +00:00
TreeHugger Robot
fc321aabe2 Merge "Allow HAL to access sysfs." into sc-dev 2021-07-19 18:22:13 +00:00
Andrew LeCain
c854cd3e43 Merge "sepolicy allow fingerprint hal to read mfg_data" into sc-dev am: ff13d1adee 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15292860

Change-Id: I419c8ac06e29ad9bafadac397e3948794cd0f38d
 2021-07-19 18:04:20 +00:00
Andrew LeCain
ff13d1adee Merge "sepolicy allow fingerprint hal to read mfg_data" into sc-dev 2021-07-19 17:46:18 +00:00
Stephane Lee
022b61751e Add cpm/pca9468 logbuffer directories so that bugreports can take a snapshot 
Test: adb bugreport; check "dumpstate_board.txt"
Bug: 193894298
Change-Id: I222405ab6d78bd4367a91cc0f13b8d8a0f1ca578
 2021-07-16 16:27:42 -07:00
Sina Hassani
e763f3cc9b Allow HAL to access sysfs. 
This is so that it can read fw metrics from sysfs and dump them through
dumpsys.

Test: Ran dumpsys and bugreport.
Bug: 193841666
Change-Id: I08c08e35bad35d0eefc3f6ad218fb47e24051b0c
 2021-07-16 16:27:34 -07:00
Wenhao Wang
2668a75c61 Merge "Add wakelock access for storageproxyd" into sc-dev am: 5305955a86 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15306271

Change-Id: I9bc3270349b159cfd1e1a9e33162c0169d23494a
 2021-07-16 17:29:45 +00:00
Wenhao Wang
5305955a86 Merge "Add wakelock access for storageproxyd" into sc-dev 2021-07-16 17:12:01 +00:00
Alex Hong
603f871e41 Merge "sepolicy: gs101: support tetheroffload hal version 1.y" into sc-dev am: ea6934fda9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15296508

Change-Id: Ie62db9de45aeb5244d1a53d35f2f216122378177
 2021-07-16 06:45:21 +00:00
Alex Hong
ea6934fda9 Merge "sepolicy: gs101: support tetheroffload hal version 1.y" into sc-dev 2021-07-16 06:28:32 +00:00
Namkyu Kim
4055c31faf sepolicy: gs101: support tetheroffload hal version 1.y 
Support both 1.0 and 1.1.

Bug: 186539538
Test: run vts -m VtsHalTetheroffloadControlV1_0TargetTest
      run vts -m VtsHalTetheroffloadControlV1_1TargetTest

Signed-off-by: Namkyu Kim <namkyu78.kim@samsung.com>
Change-Id: I76a26dcd22e1c8985d470a39b9aeae618f459d00
 2021-07-16 04:05:21 +00:00
Stephane Lee
0a7e3ad9ea Merge "odpm: Rename the odpm_config sepolicies to be more consistent" into sc-dev am: ea6996bc52 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15289584

Change-Id: Ia8765b15f56c4a4da76ce47c0e38ebaef351d4a7
 2021-07-16 02:10:10 +00:00
Stephane Lee
ea6996bc52 Merge "odpm: Rename the odpm_config sepolicies to be more consistent" into sc-dev 2021-07-16 01:55:33 +00:00
Wenhao Wang
5c009fb96f Add wakelock access for storageproxyd 
The storageproxyd needs a wakelock around the sequence of UFS commands

Bug: 193456223
Test: Trusty storage tests
Change-Id: I1efe3144c8bcc17c056fc3b9b796e080f77991d5
 2021-07-15 17:10:31 -07:00
Andrew LeCain
d8d8580281 sepolicy allow fingerprint hal to read mfg_data 
declares new device context for mfg_data_block_device
give fp HAL permission to read/write/open
give fp HAL permission to search block_device dir

Bug: 189135413
Test: sideload calibration in enforcing mode.
Change-Id: I19e0cd13fc452b42c3f35772c4bafd433dbcc8b1
 2021-07-15 10:58:53 -07:00
TreeHugger Robot
9eca0031b0 Merge "Set sepolicy for shell script of disabling contaminant detection" into sc-dev am: f0dd8e2957 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15269315

Change-Id: I56fc4bbc6331e9b273f6deb9c324fcc2f48f7e74
 2021-07-15 16:31:29 +00:00
TreeHugger Robot
f0dd8e2957 Merge "Set sepolicy for shell script of disabling contaminant detection" into sc-dev 2021-07-15 16:17:40 +00:00
sukiliu
5382253c4f Update avc error on ROM 7550575 am: 06ea8d9432 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15283866

Change-Id: I8a9c4dc678122acb58cec715bfed8707cd4701f3
 2021-07-15 09:00:29 +00:00
Darren Hsu
3050ed8ed9 Set sepolicy for shell script of disabling contaminant detection 
The avc denials are listed in b/192208389#comment10.

Bug: 192208389
Test: Manually tested
Change-Id: Ib2e3cf498851c0c9e5e74aacc9bf391549c0ad1a
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2021-07-15 11:11:11 +08:00
sukiliu
06ea8d9432 Update avc error on ROM 7550575 
Bug: 193726003
Bug: 193633303
Bug: 193548421
Test: PtsSELinuxTestCases
Change-Id: Id6cb13602eb9a69f7815a0301a5708577c663bd2
 2021-07-15 09:33:58 +08:00
Stephane Lee
c7342a7824 odpm: Rename the odpm_config sepolicies to be more consistent 
Test: Ensure that there are no sepolicy errors on odpm_config
Bug: 192674986
Change-Id: I3043a544511c8c3051e1bd10e9f6b668b251cf5f
 2021-07-14 16:11:51 -07:00
Orion Hodson
ea548a455a Merge "Revert "Update avc error on ROM 7522385"" into sc-dev am: d4a7e81293 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15235283

Change-Id: Ia370863825c449a693fc0776f7573c2cb95da998
 2021-07-14 09:22:27 +00:00
Orion Hodson
d4a7e81293 Merge "Revert "Update avc error on ROM 7522385"" into sc-dev 2021-07-14 09:08:32 +00:00
TreeHugger Robot
29508b1969 Merge "Add create perm for tee" into sc-dev am: e7aab2cbdd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15276267

Change-Id: I836c68f5138bc60a1ae4b1a74a8b634b2dbd9ac9
 2021-07-14 01:20:32 +00:00
TreeHugger Robot
e7aab2cbdd Merge "Add create perm for tee" into sc-dev 2021-07-14 01:01:53 +00:00
Wenhao Wang
c60e44c29e Add create perm for tee 
The storageproxyd needs to create persist/ss from scratch.
So we add the create perm.

Bug: 193489307
Test: Trusty storage tests
Change-Id: Ida1c07acac26494ae6bba0392fb2da0425803608
 2021-07-13 16:26:17 -07:00
TreeHugger Robot
e24d28c448 Merge "Revert "Update avc error on ROM 7526917"" into sc-dev am: 0afce44985 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15265928

Change-Id: I68f17cac42d705859eb3f22e694666f2f21f510e
 2021-07-13 17:17:12 +00:00
TreeHugger Robot
0afce44985 Merge "Revert "Update avc error on ROM 7526917"" into sc-dev 2021-07-13 17:03:43 +00:00
Michael Ayoubi
04d9f1ac13 Revert "Update avc error on ROM 7526917" 
This reverts commit 81a8e5b4ce.

Reason for revert: <Qorvo Version P2-S4(ag/15139489) which caused these errors got reverted from sc-dev in ag/15224151. It will now go into master>

Bug: 192924316
Change-Id: I772053cf512ba555a5fa657d39f957ac51f013c1
 2021-07-13 17:03:26 +00:00
Chris Fries
0d6a29a714 Merge "suppress error for ag/15263334" into sc-dev am: 5de8701fae 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15258522

Change-Id: I2d10c68c79ec36bdef20d89076bb3846844fdb25
 2021-07-13 15:51:38 +00:00
Chris Fries
5de8701fae Merge "suppress error for ag/15263334" into sc-dev 2021-07-13 15:37:16 +00:00
Stephane Lee
ce93f1c3bf Add DC Charging to server configurable parameters; ensure the sysfs node is writable am: 2046513eb7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15180033

Change-Id: Id86535b96a58f1561b501c5c91ef43306031053c
 2021-07-13 08:46:09 +00:00
Adam Shih
9d7e88c27e suppress error for ag/15263334 
Bug: 193474772
Test: boot with no relevant error found
Change-Id: Ia3f49fbf9e623c6b81d6c595e19e275f64521dfe
 2021-07-13 09:57:18 +08:00