device_google_gs101

Author	SHA1	Message	Date
Rick Yiu	a457b1d640	gs101-sepolicy: Fix tracking_denials of sysfs_vendor_sched Bug: 190368350 Test: build pass Change-Id: Id742e8328f63c04e5448225975897d8f6adc1e13	2021-06-09 01:34:50 +00:00
Adam Shih	86c45c70e6	Merge "modulize hal_neuralnetwork_armnn" into sc-dev	2021-06-08 23:03:04 +00:00
Denny cy Lee	1eb6bfcd3e	Hardwareinfo: battery info porting Test: No read error in logcat Bug: 171947164 Bug: 181915166 Bug: 181177926 Bug: 181914888 Bug: 188627513 Change-Id: Ibbed06cc7e6eb00c8611cdc8bc95356b17c7e043 Signed-off-by: Denny cy Lee <dennycylee@google.com>	2021-06-08 15:34:31 +08:00
SHUCHI LILU	ebbc3289b3	Merge "Update avc error on ROM 7432667" into sc-dev am: `699d68a092` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14860443 Change-Id: I98ef9d496413a77bfbe71de966cbe4ef2484b68e	2021-06-08 06:06:44 +00:00
SHUCHI LILU	699d68a092	Merge "Update avc error on ROM 7432667" into sc-dev	2021-06-08 05:50:50 +00:00
Maciej Żenczykowski	064f02f407	R4/raven: correctly label wpan0 device as networking am: `b22c6cd04a` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14889941 Change-Id: I72c70a56bd785377984de6149dd13a9123e3a59c	2021-06-08 05:33:23 +00:00
sukiliu	bb8b462d7a	Update avc error on ROM 7432667 Bug: b/190337281 Bug: b/190337282 Bug: b/190336524 Bug: b/190337295 Bug: b/190337296 Bug: b/190337283 Bug: b/190336723 Bug: b/190336841 Bug: b/190337297 Bug: b/190336525 Test: PtsSELinuxTestCases Change-Id: I2edda1bf554c0239953b8a31152a09045fb1f15a	2021-06-08 12:48:06 +08:00
Adam Shih	3cca7c4a0d	Remove obsolete context am: `c8b02fc4c3` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14881658 Change-Id: I4ac714dcf0033fc5fff07e6a3aabc76db1f7dee0	2021-06-08 03:57:29 +00:00
Maciej Żenczykowski	b22c6cd04a	R4/raven: correctly label wpan0 device as networking Test: atest, TreeHugger, manual observation of labeling Bug: 185962988 Signed-off-by: Maciej Żenczykowski <maze@google.com> Change-Id: I068b7da17590fc9dc914db80263b72cc7536c095	2021-06-07 20:34:05 -07:00
Adam Shih	02f93b6096	modulize hal_neuralnetwork_armnn Bug: 189895314 Bug: 171160755 Bug: 171670122 Bug: 180858476 Test: make sure all affected devices' armnn module has the right label Change-Id: I6ca736f156497738167ba5eea5606a0e654611b9	2021-06-08 11:17:22 +08:00
Adam Shih	c8b02fc4c3	Remove obsolete context Bug: 190330778 Test: make selinux_policy with such entry gone Change-Id: I28844c361a951de35d509ce042e64e090188e755	2021-06-08 11:17:17 +08:00
TreeHugger Robot	8026fa508e	Merge "Remove unnecessary rules for vendor rcs app" into sc-dev am: `17b8f5cd4e` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14848259 Change-Id: I898b08642de6800f22f19cd1b385d5f61cd492bb	2021-06-07 19:27:49 +00:00
TreeHugger Robot	17b8f5cd4e	Merge "Remove unnecessary rules for vendor rcs app" into sc-dev	2021-06-07 19:01:45 +00:00
Long Ling	a2d45360d3	Merge "sepolicy: gs101: display: fix dumpstate of displaycolor" into sc-dev am: `5afbe4584f` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14877618 Change-Id: I201f737fd913061524d1f5a2fc7859920d3b0513	2021-06-07 17:03:36 +00:00
Long Ling	5afbe4584f	Merge "sepolicy: gs101: display: fix dumpstate of displaycolor" into sc-dev	2021-06-07 16:36:32 +00:00
SalmaxChang	5103918441	cbd: Fix avc error am: `7865bf8577` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14847064 Change-Id: I02c860658a85721b71e5e5d4f8ee1befe7d4a9cd	2021-06-07 11:28:29 +00:00
Yu(Swim) Chih Ren	d45ada475b	Add sysfs_camera label for powerhint flow to access intcam & tnr clock Test: 1. build selinux and push related files to phone 2. Use ls -Z "file" to check if selinux content of file is expected 3. P21 camera checklist Bug: 168654554 Change-Id: Ie757dd3e8adc151c6340e9ca662efbdf0ccb6110	2021-06-07 06:31:09 +00:00
Long Ling	1064df0f26	sepolicy: gs101: display: fix dumpstate of displaycolor displaycolor service runs in HW Composer. This change allow displaycolor to output to dumpstate via pipe fd. Bug: 189846843 Test: adb bugreport and check displaycolor dump in dumpstate_board.txt Change-Id: I109db9374124caf9053a9fd7ba6159f83c372038	2021-06-06 22:20:19 -07:00
SalmaxChang	7865bf8577	cbd: Fix avc error avc: denied { search } for comm="cbd" name="/" dev="sda1" ino=2 scontext=u:r:cbd:s0 tcontext=u:object_r:persist_file:s0 tclass=dir permissive=0 Bug: 180687795 Change-Id: I149163760fa47378d03dc2d8c8a00c590788796c	2021-06-07 01:40:59 +00:00
Rick Yiu	d5fa128a7d	Merge "gs101-sepolicy: Fix avc denials for sysfs_vendor_sched" into sc-dev am: `f275064208` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14814591 Change-Id: I87ce390d45ce8fda3a90cebf126922a76f0470e2	2021-06-07 00:58:53 +00:00
Rick Yiu	f275064208	Merge "gs101-sepolicy: Fix avc denials for sysfs_vendor_sched" into sc-dev	2021-06-07 00:38:36 +00:00
TreeHugger Robot	3c2d8cd22c	Merge "Add CccDkTimeSyncService" into sc-dev am: `77cbbc1237` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14273480 Change-Id: I77d39d4b2d1b2bf19407e63444c0e4fb26b6742d	2021-06-04 21:45:42 +00:00
TreeHugger Robot	77cbbc1237	Merge "Add CccDkTimeSyncService" into sc-dev	2021-06-04 21:23:24 +00:00
Hui Wang	724ea61092	Remove unnecessary rules for vendor rcs app Bug: 190194610 Test: make, manual Change-Id: I99f624a70a36ad6cf47806faf0eed693383dac5f	2021-06-04 14:03:31 -07:00
TreeHugger Robot	c6db38ea50	Merge "whitechapel: make vframe-secure a system heap" into sc-dev am: `aa7a8405e2` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14083385 Change-Id: I57abe05ecdb311160459a3a3c7dc1fcdf58293ef	2021-06-04 18:19:15 +00:00
TreeHugger Robot	aa7a8405e2	Merge "whitechapel: make vframe-secure a system heap" into sc-dev	2021-06-04 18:02:34 +00:00
Sean Callanan	77432c5015	whitechapel: make vframe-secure a system heap The GPU driver uses vframe-secure for secure allocations, so the corresponding DMA heap file should be visible to all processes so use the dmabuf_system_secure_heap_device type instead. In order for this type to be used, we need to ensure that the HAL Allocator has access to it, so update hal_graphics_allocator_default.te Finally, since there are no longer any buffer types associated with the vframe_heap_device type, remove it. Bug: 182090311 Test: run cts-dev -m CtsDeqpTestCases --module-arg CtsDeqpTestCases:include-filter:dEQP-VK.protected_memory.stack.stacksize_64 and ensure secure allocations succeed Test: Play DRM-protected video in ExoPlayer and ensure videos render correctly via MFC->DPU. Change-Id: Id341e52322a438974d4634a4274a7be2ddb4c9fe	2021-06-04 18:01:34 +00:00
TreeHugger Robot	86bc19fafb	Merge "storage: update sepolicy for hardwareinfoservice" into sc-dev am: `29a5be5603` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14696013 Change-Id: I11ed5570c71bbb4f1dd80ff0411587aceabc6dc9	2021-06-04 11:02:36 +00:00
TreeHugger Robot	29a5be5603	Merge "storage: update sepolicy for hardwareinfoservice" into sc-dev	2021-06-04 10:45:34 +00:00
TreeHugger Robot	54767e9f18	Merge "[RCS] Add sepolicy for RCS as non-system app" into sc-dev am: `be1f56dba1` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14719163 Change-Id: Ic7ee2c3ff0a036229000191881e0255fee2f6b56	2021-06-04 06:42:19 +00:00
Maciej Żenczykowski	bfebab07d6	allow hal_usb_impl configfs:dir { create rmdir }; am: `729e8901ab` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14542109 Change-Id: I0803ce3e0ab48c7d1f258789dcb0d3b12fc4ede6	2021-06-04 06:42:09 +00:00
TreeHugger Robot	be1f56dba1	Merge "[RCS] Add sepolicy for RCS as non-system app" into sc-dev	2021-06-04 06:22:03 +00:00
Maciej Żenczykowski	729e8901ab	allow hal_usb_impl configfs:dir { create rmdir }; This is needed to allow USB HAL to create multi-config gadget (ie. rndis + ncm). Bug: 172793258 Test: built and booted on oriole Signed-off-by: Maciej Żenczykowski <maze@google.com> Change-Id: Ifb98b23138122ad4e0aeea8dd9c93d7b3e16d3aa	2021-06-04 02:53:11 +00:00
jznpark	3d127f9224	[RCS] Add sepolicy for RCS as non-system app As shannon-rcs has been changed from system app to non-system app, sepolicy has to be updated. Bug: 186135775 Bug: 189707387 Test: sanity test Signed-off-by: jznpark <jzn.park@samsung.com> Change-Id: I32cce90611c619494136a6b1d01b3fb48330d169	2021-06-03 13:30:26 -07:00
Rick Yiu	a4dbe2ef40	gs101-sepolicy: Fix avc denials for sysfs_vendor_sched Bug: 190011861 Bug: 190011862 Bug: 190011863 Bug: 190012301 Bug: 190012320 Test: boot to home Change-Id: Icddb42fb194547211e33cf1d871e839a954b0919	2021-06-03 17:55:17 +08:00
Chiawei Wang	a1a00508b1	Merge "pixelstats: fix permission errors" into sc-dev am: `9cfc661bee` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14781915 Change-Id: I89bbeeca2f88a9a82b5d7a1a66a70d16f79627ce	2021-06-03 09:03:14 +00:00
Chiawei Wang	9cfc661bee	Merge "pixelstats: fix permission errors" into sc-dev	2021-06-03 08:45:12 +00:00
Chiawei Wang	9d5830ac19	pixelstats: fix permission errors 1. sysfs_dma_heap erros are fixed by ag/13926718 2. debugfs_mgm error is fixed by ag/14683912 Bug: 188114896 Bug: 183338421 Bug: 188495492 Test: pts-tradefed run pts -m PtsSELinuxTest http://sponge2/6cbd0af0-5414-4f2c-aea0-99b4981360a4 Signed-off-by: Chiawei Wang <chiaweiwang@google.com> Change-Id: Icd2fa4e7f168d15fd4cec3000bc0e7a33eab4d3e	2021-06-03 02:52:33 +00:00
Rick Yiu	3ad28926f7	Merge "gs101-sepolicy: Refine policy for sysfs_vendor_sched" into sc-dev am: `b530a26f1f` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14774943 Change-Id: I47a0e9367819d6ddd3b384f93c7199dead2e809e	2021-06-03 01:16:38 +00:00
Rick Yiu	b530a26f1f	Merge "gs101-sepolicy: Refine policy for sysfs_vendor_sched" into sc-dev	2021-06-03 00:56:00 +00:00
Peter Csaszar	c9da551db2	pixel-selinux: Add mlstrustedobject for SJTAG am: `7ea6a44719` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14794010 Change-Id: I2b1b51ecfec820558988666ab03082951dd21fec	2021-06-02 20:56:54 +00:00
Peter Csaszar	7ea6a44719	pixel-selinux: Add mlstrustedobject for SJTAG This CL adds the "mlstrustedobject" to types for files involved in the SJTAG authentication flow, in order to address MLS-based AVC denials. Bug: 189466122 Test: No more AVC denials when activating SJTAG in BetterBug Signed-off-by: Peter Csaszar <pcsaszar@google.com> Change-Id: Ieb88653830ce95751eee5cf26c26fd6302067bce	2021-06-02 12:23:01 -07:00
Aaron Ding	9a43bd9ead	pixel-selinux: add SJTAG policies am: `9f8d552411` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14795132 Change-Id: Ia7c9bd89f0c958eeed16828186948a045044223a	2021-06-02 06:23:03 +00:00
Aaron Ding	2f3336940b	remove sysfs_type from vendor_page_pinner_debugfs am: `2dbe515943` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14782004 Change-Id: I12715f8c51af7decc14aedf173e3bb13c8f51c1d	2021-06-02 06:22:59 +00:00
Rick Yiu	9e8bd699e9	gs101-sepolicy: Refine policy for sysfs_vendor_sched Chagne it to directory based. Bug: 182509410 Test: device boot normally Change-Id: I1cfaa95cf07e1e829e747eb99ed39ab64d3ddac1	2021-06-02 04:52:45 +00:00
Aaron Ding	9f8d552411	pixel-selinux: add SJTAG policies This reverts commit `b078284e5d`. Bug: 184768605 Change-Id: Ib0080e2ba3edf7fa654155fb4a7403d52ad2494a	2021-06-02 10:25:51 +08:00
Aaron Ding	2dbe515943	remove sysfs_type from vendor_page_pinner_debugfs Bug: 186500818 Change-Id: If97126a3d46d96342faf89b9698218b6a480a84b	2021-06-01 17:38:28 +08:00
David Chao	6026cf5181	Grant powerhal access to thermal_link_device and sysfs_thermal Bug: 188579571 Test: boot Change-Id: I8e4675e2817fe3778236618e0dba76f1233e77e2	2021-06-01 05:17:13 +00:00
Aaron Ding	2d35ae6cb8	Revert "pixel-selinux: add SJTAG policies" am: `b078284e5d` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14528664 Change-Id: I819e31237595331138b5230a77d5f85dbd368bc0	2021-05-31 18:43:52 +00:00
Aaron Ding	b078284e5d	Revert "pixel-selinux: add SJTAG policies" This reverts commit `bc525e1a49`. Bug: 186500818 Change-Id: I0bab67d42530270a819598ac320a5946e5d7aa6d Signed-off-by: Aaron Ding <aaronding@google.com>	2021-06-01 01:21:14 +08:00

... 3 4 5 6 7 ...

868 commits