Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
963 commits 1 branch 0 tags 494 MiB
Commit graph

963 commits

This branch
This branch
All branches
Author SHA1 Message Date
Quinn Yan
c2a7ad88f8 Merge "Revert the unnecessary sepolicy rules for hal_neuralnetworks_darwinn." into sc-dev am: be5aa28148 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15434450

Change-Id: Ieb2059ae8096f31c92a63b3721628cb69a83cfea
 2021-08-02 18:17:06 +00:00
Quinn Yan
be5aa28148 Merge "Revert the unnecessary sepolicy rules for hal_neuralnetworks_darwinn." into sc-dev 2021-08-02 18:01:50 +00:00
Mark Chang
978b04ae9e Merge "[DO NOT MERGE] sepolicy: Add "dontaudit" for twoshay dac_override." into sc-dev am: f7fa1fa877 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15416442

Change-Id: I1bcc7dbca6a14c15b65df96b57ffe3108f0010a6
 2021-07-31 00:11:04 +00:00
Mark Chang
70a9ce2df2 [DO NOT MERGE] sepolicy: Add "dontaudit" for twoshay dac_override. am: a1aab562ca 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15416442

Change-Id: Iecfcfb1daa0b1d91ddf3c2fb056526c5c011aa8e
 2021-07-31 00:11:02 +00:00
Mark Chang
f7fa1fa877 Merge "[DO NOT MERGE] sepolicy: Add "dontaudit" for twoshay dac_override." into sc-dev 2021-07-31 00:01:26 +00:00
qinyiyan
ee4e7f45ce Revert the unnecessary sepolicy rules for hal_neuralnetworks_darwinn. 
Bug: 194241380
Test: flashed forrest build and ran PtsSELinuxTestCases
Change-Id: Ie2f0572a368f09e522bc2cdfdf9da1859c1c44e7
 2021-07-30 23:36:06 +00:00
TreeHugger Robot
c2ebcd6fb7 Merge "Add vendor SELinux denial to allowlist" into sc-dev am: 4720a91c52 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15422669

Change-Id: I2a0ebc95b3165252ada97313072601cbd144d748
 2021-07-30 13:23:21 +00:00
TreeHugger Robot
4720a91c52 Merge "Add vendor SELinux denial to allowlist" into sc-dev 2021-07-30 13:12:12 +00:00
Rick Yiu
01c5111d3b Merge "gs101: Remove vendor_sched" into sc-dev am: dba7013033 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15402045

Change-Id: Ic3d57039bea5c589a60898ec59aba38da1456a2a
 2021-07-30 07:04:45 +00:00
Rick Yiu
dba7013033 Merge "gs101: Remove vendor_sched" into sc-dev 2021-07-30 06:52:10 +00:00
Rick Yiu
7de8a5d4a7 gs101: Remove vendor_sched 
Moved to system/sepolicy.

Bug: 194656257
Test: build pass
Change-Id: Ia5ea1bbc05bdc52b43cb403d99994bad70613e08
Merged-In: Ia5ea1bbc05bdc52b43cb403d99994bad70613e08
 2021-07-30 03:13:39 +00:00
Mark Chang
a1aab562ca [DO NOT MERGE] sepolicy: Add "dontaudit" for twoshay dac_override. 
Bug: 193224954
Test: build pass and boot to home
Signed-off-by: Mark Chang <changmark@google.com>
Change-Id: I5c330564cc026e113c5d33d5d093dbcdb3ede5e4
 2021-07-30 01:49:59 +00:00
Jaineel Mehta
0474bcf10e Add vendor SELinux denial to allowlist 
Change-Id: If7435e9c62811ef3c9757f22f06018c32a8d3597
Test: None
Bug: 194281028
 2021-07-29 21:23:34 +00:00
TreeHugger Robot
c28011e995 Merge "gs101: Allow camera hal to create file in persist camera folder" into sc-dev am: 750888bc5b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15354010

Change-Id: Ic99958700c8b28e81404a15b1446f7108fa7f7c6
 2021-07-29 09:13:58 +00:00
TreeHugger Robot
750888bc5b Merge "gs101: Allow camera hal to create file in persist camera folder" into sc-dev 2021-07-29 08:40:36 +00:00
Michael Eastwood
ebd0f6cb6d Merge "Allow hal_dumpstate_default to access vendor_camera_debug_prop" into sc-dev am: 9bfbb3c0d4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15406130

Change-Id: I2f951ec888186bd93fa3a671be8bd35dc61826fc
 2021-07-28 21:53:39 +00:00
Michael Eastwood
9bfbb3c0d4 Merge "Allow hal_dumpstate_default to access vendor_camera_debug_prop" into sc-dev 2021-07-28 21:36:38 +00:00
Michael Eastwood
30bd5e8ed6 Allow hal_dumpstate_default to access vendor_camera_debug_prop 
Bug: 193365129
Test: atest com.google.android.selinux.pts.SELinuxTest#scanBugreport
Change-Id: I43e389d46e8116844bb9ca4259e5ea28e86c50f4
 2021-07-27 17:22:47 -07:00
TreeHugger Robot
bac578c7e4 Merge "Add AoC wakeup stats to dump state" into sc-dev am: fead41d573 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15393321

Change-Id: I885c2707858cd57aece41f8b91f3267a91607710
 2021-07-27 19:42:54 +00:00
TreeHugger Robot
fead41d573 Merge "Add AoC wakeup stats to dump state" into sc-dev 2021-07-27 19:23:06 +00:00
Jack Wu
e0c7fa7433 sepolicy: gs101: allows pixelstat to access pca file nodes am: d6c1a50bba 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15360184

Change-Id: I904398c0eb47626b0398a5cb1fcea961ef35e6fb
 2021-07-27 02:26:35 +00:00
Max Kogan
5374497df5 Add AoC wakeup stats to dump state 
Need add support for wakeup stats to track AoC to AP messages
resulting in frequent wake-ups.

Bug: 192668026
Change-Id: I073406cc101e114135c863b0e0b86357e93c0415
 2021-07-26 22:45:16 +00:00
Jack Wu
d6c1a50bba sepolicy: gs101: allows pixelstat to access pca file nodes 
07-23 14:24:45.512  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:10): avc: denied { open } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0057/chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:45.512  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:11): avc: denied { getattr } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0057/chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:57.536  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:12): avc: denied { read } for name="chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:57.536  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:13): avc: denied { open } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0057/chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:57.536  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:14): avc: denied { getattr } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0057/chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:57.536  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:15): avc: denied { write } for name="chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1

Bug: 194386750
Test: manually test, no avc: denied
Signed-off-by: Jack Wu <wjack@google.com>
Change-Id: I1a16edb5bb7820f62b3ce598aa50eba2d9455927
 2021-07-24 06:42:39 +00:00
TreeHugger Robot
5cdaa6a45f Merge "Add SE policies for memtrack HAL" into sc-dev am: b3225f0f6c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15283133

Change-Id: Iff4c3146f074c8dc40af1598002629bd9c0d46f3
 2021-07-23 21:24:35 +00:00
TreeHugger Robot
b3225f0f6c Merge "Add SE policies for memtrack HAL" into sc-dev 2021-07-23 20:52:52 +00:00
Ankit Goyal
0f9820830c Add SE policies for memtrack HAL 
Bug: 191966412
Test: adb shell dumpsys meminfo
Change-Id: Ia7ec64840d2bb7c3ae0d61304e109d2ceb9e5f78
 2021-07-24 02:18:36 +08:00
Max Shi
0f58b38401 Allow USF sensor HAL to read camera persist files. am: 0bd50d1eb5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15352099

Change-Id: I585215a1e0266ebb52ccec18834c4f0e68ec6c69
 2021-07-22 23:45:02 +00:00
Max Shi
0bd50d1eb5 Allow USF sensor HAL to read camera persist files. 
USF sensor HAL requires access to camera persist files to determine if
the camera module has been replaced (e.g. via repair), which may affect
calibration of the magnetometer.

Bug: 193727762
Test: Verify sensor HAL can open and read files under
Test: /mnt/vendor/persist/camera/
Change-Id: Icb9d7a46bf8465e1a72054ac9c8493ba18445ef3
 2021-07-22 21:11:44 +00:00
Badhri Jagan Sridharan
00b89f5d8d Merge "Update Usb hal permissions to allow pushing overheat suez events" into sc-dev am: 49804d8d6f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15283349

Change-Id: I7ca2b0ea191d0fab866eca184a795091caa260ad
 2021-07-22 20:50:56 +00:00
Badhri Jagan Sridharan
49804d8d6f Merge "Update Usb hal permissions to allow pushing overheat suez events" into sc-dev 2021-07-22 20:31:13 +00:00
George Lee
a1b0983730 Merge "pixelstats: add bcl directory permission" into sc-dev am: 79a15eed2a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15145257

Change-Id: I5fe3e10576664cf3a73a210a5089d46574fcdf84
 2021-07-22 17:48:25 +00:00
George Lee
79a15eed2a Merge "pixelstats: add bcl directory permission" into sc-dev 2021-07-22 17:03:33 +00:00
Gary Jian
7adebe6c62 Merge "Allow to set vendor_rild_prop for oemrilservice_app" into sc-dev am: 9b5a97d65e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15327671

Change-Id: I942e721133992a86b4cab295e09a5fb99e5fa814
 2021-07-22 08:42:08 +00:00
Gary Jian
9b5a97d65e Merge "Allow to set vendor_rild_prop for oemrilservice_app" into sc-dev 2021-07-22 08:16:42 +00:00
chened
561ce13d59 gs101: Allow camera hal to create file in persist camera folder 
Test: build pass, no cts regression
Bug: 189844464
Change-Id: If150a94f184424f21c509a44001192e36b6ee24a
 2021-07-22 07:11:05 +00:00
Petri Gynther
056fbce364 Add vbmeta_vendor_[ab] to file_contexts am: d12714ccc0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15276573

Change-Id: I7a64114eed37ee384dba61a492fbb58cc2a30831
 2021-07-21 23:46:06 +00:00
Badhri Jagan Sridharan
1ebd84703b Update Usb hal permissions to allow pushing overheat suez events 
Usb hal now pushes the Usb port overheat event through statsd.
Usb hal also accesses usbc-throttling stats to gather info.

Bug: 193615568
Signed-off-by: Badhri Jagan Sridharan <badhri@google.com>
Change-Id: I4918458bc7a8a25d7655b66d1fe40eafc7ccb070
 2021-07-21 14:38:55 -07:00
Sungwoo choi
b47cdf282a Allow to set vendor_rild_prop for oemrilservice_app 
Bug: 193367138
Test: make sure no denied logs in oemrilservice_app when access the
radio property

Signed-off-by: Sungwoo choi <sungwoo48.choi@samsung.com>
Change-Id: I9014002476df7b4e650f7a5a2f153e4eca47d23d
 2021-07-21 08:01:44 +00:00
Petri Gynther
d12714ccc0 Add vbmeta_vendor_[ab] to file_contexts 
Bug: 181909612
Test: build + install + boot to home
Change-Id: Ibb7bd8e5a61d86de1b51a3780a5bfa8cf4caf59b
 2021-07-20 23:41:31 -07:00
sukiliu
8dfbba48d1 Update avc error on ROM 7566803 am: 411aa59779 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15343071

Change-Id: I5a350cde5a79354fa11d1892425ca0f98e64003c
 2021-07-21 06:00:47 +00:00
sukiliu
411aa59779 Update avc error on ROM 7566803 
avc: denied { read } for name="platform:1cc40000.sysmmu--platform:1ce00000.abrolhos" dev="sysfs" ino=21006 scontext=u:r:hal_neuralnetworks_darwinn:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

Bug: 194241380
Test: PtsSELinuxTestCases
Change-Id: If7ee99a36bca88fffc37c12dc306e0453afb1395
 2021-07-21 09:36:05 +08:00
TreeHugger Robot
2260028f16 Merge "ims: allow finding mediametrics_service for vendor_ims_app" into sc-dev am: b3cc71258b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15302265

Change-Id: Ib3679aac5321fee05088ae34fd6aee63e9345599
 2021-07-20 13:12:08 +00:00
Alex Hong
2727807154 Allow suspend_control to access the AOC wakeup node am: f0589d11df 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15334275

Change-Id: I5279e246ce4ce654b76dc8fb213833c60ea32430
 2021-07-20 13:12:04 +00:00
TreeHugger Robot
b3cc71258b Merge "ims: allow finding mediametrics_service for vendor_ims_app" into sc-dev 2021-07-20 13:00:25 +00:00
Sungjun Park
0612b5aa85 ims: allow finding mediametrics_service for vendor_ims_app 
For generate dtmf tone, ImsService find mediametrics_service.
So, added the seplicy rule for finding mediametrics_service.

<Related log>
07-14 15:37:21.391   411   411 E SELinux : avc:  denied  { find } for
pid=2263 uid=10217 name=media.metrics scontext=u:r:vendor_ims_app:s0:
c217,c256,c512,c768 tcontext=u:object_r:mediametrics_service:s0 tclass
=service_manager permissive=0

Bug: 192543653
Signed-off-by: Sungjun Park <sj19385.park@samsung.com>
Change-Id: Ia0f6610ecc454533d9584367694228245afe46e4
 2021-07-20 09:35:23 +00:00
Alex Hong
f0589d11df Allow suspend_control to access the AOC wakeup node 
Test: Check avc denials during boot
      $ adb shell su 0 dumpsys suspend_control
Bug: 194164089

Change-Id: I9edcf6398f61daec6fdde0f7ac69ddd5d275f753
 2021-07-20 09:29:15 +00:00
TreeHugger Robot
5c2f8d4ba6 Merge "ssr_detector_app: Add additional vendor dir and crgroup allow for debug" into sc-dev am: fa62e602fc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15132550

Change-Id: I95b78d239e03912b0ecbaf17645a414f157a5320
 2021-07-20 06:21:36 +00:00
TreeHugger Robot
fa62e602fc Merge "ssr_detector_app: Add additional vendor dir and crgroup allow for debug" into sc-dev 2021-07-20 06:09:35 +00:00
sukiliu
f89cc13852 Update avc error on ROM 7562467 am: d9309ef34d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15328118

Change-Id: I5e5e3cb6af90ed614aeb32aca5697f903ccfa46b
 2021-07-20 04:36:34 +00:00
sukiliu
d9309ef34d Update avc error on ROM 7562467 
avc: denied { read } for name="u:object_r:odsign_prop:s0" dev="tmpfs" ino=229 scontext=u:r:postinstall_dexopt:s0 tcontext=u:object_r:odsign_prop:s0 tclass=file permissive=0
avc: denied { read } for comm="otapreopt" name="u:object_r:odsign_prop:s0" dev="tmpfs" ino=229 scontext=u:r:postinstall_dexopt:s0 tcontext=u:object_r:odsign_prop:s0 tclass=file permissive=0

Bug: 194142604
Bug: 194065991
Test: PtsSELinuxTestCases
Change-Id: Ic3bb544f05ffff0df42f820d2f9cf6cd7cb24879
 2021-07-20 10:03:30 +08:00