Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
710 commits 1 branch 0 tags 494 MiB
Commit graph

710 commits

This branch
This branch
All branches
Author SHA1 Message Date
Minchan Kim
d8c003c9e1 Merge "sepolicy: gs101: allow dump cma statistics" into sc-dev am: 650cf48406 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15081303

Change-Id: I8dd50fa4c57b82b6e887d5bd4df8f9035bb68bd6
 2021-06-24 02:18:49 +00:00
Minchan Kim
650cf48406 Merge "sepolicy: gs101: allow dump cma statistics" into sc-dev 2021-06-24 01:45:11 +00:00
Thierry Strudel
c45b4c7c51 Merge "Add support for non-su hal_uwb" into sc-dev am: e99c749cbd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928438

Change-Id: Ia0ff6c0dceb663346fd48b6970e5a6035437eff0
 2021-06-24 00:56:12 +00:00
Thierry Strudel
e99c749cbd Merge "Add support for non-su hal_uwb" into sc-dev 2021-06-24 00:45:49 +00:00
Minchan Kim
7f9abeee45 sepolicy: gs101: allow dump cma statistics 
Provide necessary sepolicy for bugreport dump to access cma metric
information under /sys/kernel/pixel_stat/*

Test: Run "adb bugreport <zip>" and verify it contains the output
      from dumpstate_board.txt
Bug: 191904985
Signed-off-by: Minchan Kim <minchan@google.com>
Change-Id: Iaa92006eeb5158a0962652427d1af061fe1cf03d
 2021-06-23 14:15:46 -07:00
TreeHugger Robot
b596f9dbd5 Merge "Allow fingerprint hal to read sysfs_chosen" into sc-dev am: c431abb5bf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15072299

Change-Id: Id800243025f0eb916789582f6c9925924e94e4ec
 2021-06-23 11:33:09 +00:00
TreeHugger Robot
c431abb5bf Merge "Allow fingerprint hal to read sysfs_chosen" into sc-dev 2021-06-23 11:20:51 +00:00
Denny cy Lee
7185538f79 Pixelstat: battery history access premission am: 0b21a2d44a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14688520

Change-Id: Ida0cfc72b0bfcfc0943f012edc093f8d1d936679
 2021-06-23 08:33:25 +00:00
Kris Chen
a23d1bb37b Allow fingerprint hal to read sysfs_chosen 
Fixes the following avc denial:
android.hardwar: type=1400 audit(0.0:49): avc: denied { search } for name="chosen" dev="sysfs" ino=9575 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_chosen:s0 tclass=dir permissive=1
android.hardwar: type=1400 audit(0.0:50): avc: denied { read } for name="platform" dev="sysfs" ino=9591 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_chosen:s0 tclass=file permissive=1
android.hardwar: type=1400 audit(0.0:51): avc: denied { open } for path="/sys/firmware/devicetree/base/chosen/plat/platform" dev="sysfs" ino=9591 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_chosen:s0 tclass=file permissive=1

Bug: 191832617
Test: Enroll and authenticate fingerprints.
Change-Id: I5c576cc210d9e85b1999655bdc27736183db8aed
 2021-06-23 16:20:57 +08:00
Denny cy Lee
0b21a2d44a Pixelstat: battery history access premission 
Test: manually, relate seploicy not show; battery history log printed
      05-24 13:29:19.637  2829  2829 D pixelstats_BatteryEEPROM:
      checkAndReport: 0940 0a80 0500 0200 0200 0000
Bug: 189050725
Change-Id: I20567e168db43fe2168a9a30ac7a4b0cec65a665
Signed-off-by: Denny cy Lee <dennycylee@google.com>
 2021-06-23 13:50:32 +08:00
Adam Shih
2812270759 modulize init.radio.sh am: d74e989739 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15048203

Change-Id: Ifae088c8915f6920de295286e6c34a9af17de8b3
 2021-06-23 03:17:48 +00:00
Michael Ayoubi
cebbf14174 Add support for non-su hal_uwb 
Bug: 187386527
Test: Boot and confirm HAL is up
Signed-off-by: Michael Ayoubi <mayoubi@google.com>
Change-Id: Ia9f3f90fba6981762fe375aa37c81f8474ad9c53
 2021-06-23 01:26:25 +00:00
Adam Shih
d74e989739 modulize init.radio.sh 
Bug: 190331600
Test: build ROM and make sure the file is there and functional.
Change-Id: Icb3e0e590ae315d53eb5251fd5e74d6aacab1fe2
 2021-06-23 01:07:26 +00:00
TreeHugger Robot
7ad9e45515 Merge "Allow camera hal to access devfreq query" into sc-dev am: e2ef28efca 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14980575

Change-Id: I1922239b616469f421d75ac35a392d65d2521cc4
 2021-06-22 12:30:09 +00:00
TreeHugger Robot
e2ef28efca Merge "Allow camera hal to access devfreq query" into sc-dev 2021-06-22 12:06:16 +00:00
Speth Chang
419019a71a Allow camera hal to access devfreq query 
Bug: 190687351
Test: p21 checklist
Change-Id: Id0cb74b483882a6ede93cadc475a7be334ecf20d
 2021-06-22 10:19:49 +00:00
Alex Hong
fd43ace221 Merge "Move the genfs_contexts of sched nodes from vendor to product" into sc-dev am: 1f17829dc2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15045028

Change-Id: I79ce5df849956b3b000ff6241ef0c20dd0a32f7c
 2021-06-22 03:20:34 +00:00
Alex Hong
1f17829dc2 Merge "Move the genfs_contexts of sched nodes from vendor to product" into sc-dev 2021-06-22 03:01:07 +00:00
Srinivas Patibandla
0d3d449ced Update time sync seinfo to not use platform signature am: 51c891fa7b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15014432

Change-Id: I1ae881f223b3e014b74af2495255ef18c0e30ffc
 2021-06-21 19:54:51 +00:00
Alex Hong
c598db170c Move the genfs_contexts of sched nodes from vendor to product 
For sched nodes, "proc_vendor_sched" and "sysfs_vendor_sched",
their type definition is in product sepolicy,
while genfs_contexts is in vendor sepolicy.
In this case, genfs_contexts cannot be resolved after product sepolicy
is replaced by Dynamic System Update.

Need to keep the type definition and genfs_contexts in the same partition.
Now move genfs_contexts because the type definition has to be in product for now
since other private domains are accessing these sched nodes.

Test: $ make selinux_policy
      The device can boot to home after replacing with GSI.
Bug: 191236468
Change-Id: I02ea78b04dfcade4ceb426ff6ebf498daa81ac32
 2021-06-21 14:55:08 +00:00
Srinivas Patibandla
51c891fa7b Update time sync seinfo to not use platform signature 
Bug: b/190695230
Change-Id: I2dbee2e624c8794b3aa9ff85d8985a15ee159a0f
 2021-06-21 14:47:28 +00:00
Thiebaud Weksteen
e6f8977370 Merge "Fix access permissions for sysfs_aoc_reset" into sc-dev am: c4d98b5c11 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15018192

Change-Id: Ia6ed028f32448e2475784a8e9406092b7ea6572e
 2021-06-21 08:56:38 +00:00
Thiebaud Weksteen
c4d98b5c11 Merge "Fix access permissions for sysfs_aoc_reset" into sc-dev 2021-06-21 08:38:37 +00:00
Jack Wu
4266de165e sepolicy: gs101: allows pixelstat to access wlc file nodes am: 2794370557 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14732233

Change-Id: I1568bee94e97333056a76bddf174a8dd75926e5a
 2021-06-19 02:58:13 +00:00
Jack Wu
2794370557 sepolicy: gs101: allows pixelstat to access wlc file nodes 
05-31 11:14:57.280  1000  3126  3126 W pixelstats-vend: type=1400 audit(0.0:162): avc: denied { search } for name="i2c-p9412" dev="sysfs" ino=60862 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=dir permissive=0
05-31 11:14:57.280  1000  3126  3126 W pixelstats-vend: type=1400 audit(0.0:163): avc: denied { search } for name="i2c-p9412" dev="sysfs" ino=60862 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=dir permissive=0

05-31 13:12:23.940  1000  2838  2838 W pixelstats-vend: type=1400 audit(0.0:182): avc: denied { read } for name="charge_stats" dev="sysfs" ino=73276 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0

05-31 15:02:02.215  1000 13169 13169 W pixelstats-vend: type=1400 audit(0.0:166): avc: denied { write } for name="charge_stats" dev="sysfs" ino=73483 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0
05-31 15:02:02.215  1000 13169 13169 W pixelstats-vend: type=1400 audit(0.0:167): avc: denied { write } for name="charge_stats" dev="sysfs" ino=73483 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0

Bug: 176195960
Test: manually test, no avc: denied
Signed-off-by: Jack Wu <wjack@google.com>
Change-Id: I0af03dd8099e246c5f94e8e8530d7b2bcf50ff95
 2021-06-18 13:50:59 +00:00
Franklin He
e2757f1a2f Merge "Add new sepolicy to allow Power Hint" into sc-dev am: 6a488b8a81 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14997453

Change-Id: I4fa13dd60ca94612acad3e5c2cce085a3499b164
 2021-06-18 08:51:48 +00:00
Franklin He
6a488b8a81 Merge "Add new sepolicy to allow Power Hint" into sc-dev 2021-06-18 08:37:19 +00:00
Krzysztof Kosiński
e154e0957c Merge changes I18cbcf1b,I28a27741 into sc-dev am: c18265aaaa 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15020911

Change-Id: Ibdc7bbd8f3943e08f3202e15f8a6eff51dd65d7b
 2021-06-18 08:05:55 +00:00
Krzysztof Kosiński
c18265aaaa Merge changes I18cbcf1b,I28a27741 into sc-dev 
* changes:
  Allow camera HAL to set vendor.camera properties
  Allow rlsservice/camera HAL to read /apex/apex-info-list.xml
 2021-06-18 07:46:33 +00:00
Adam Shih
5e7be474d4 organize confirmationui settings am: d77bc5a970 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15021790

Change-Id: I759065d2cbd5c0e8a5fc7153273c3f1016137000
 2021-06-18 06:57:36 +00:00
Thiébaud Weksteen
7e232446dc Fix access permissions for sysfs_aoc_reset 
avc: denied { getattr } for comm="UsfHalWorker" path="/sys/devices/platform/19000000.aoc/reset" dev="sysfs" ino=69873 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_aoc_reset:s0 tclass=file permissive=0

Bug: 190712449
Bug: 191415949
Change-Id: Ibad4e75aa60b06129221086031289c855c561e96
 2021-06-18 08:56:59 +02:00
Yuriy Romanenko
6bf4661e8f Allow camera HAL to set vendor.camera properties 
Bug: 188246923
Test: See topic
Change-Id: I18cbcf1b622ad7cd6d6bd1ea258b3d537db54412
 2021-06-17 21:58:54 -07:00
Adam Shih
d77bc5a970 organize confirmationui settings 
Bug: 190331547
Bug: 190331370
Test: build ROM and make sure file and sepolicy is still there
Change-Id: I4cabf9280ab5e21038bcb72615799b7ed0fb1670
 2021-06-18 12:56:05 +08:00
Badhri Jagan Sridharan
04302e6743 Merge "Add file context for /dev/logbuffer_tcpm" into sc-dev am: d9876fd266 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15019635

Change-Id: Ibd2e13f7069bec378076c40f187d9707c85f6227
 2021-06-18 03:55:10 +00:00
Badhri Jagan Sridharan
d9876fd266 Merge "Add file context for /dev/logbuffer_tcpm" into sc-dev 2021-06-18 03:38:35 +00:00
Badhri Jagan Sridharan
eb3881dbe7 Add file context for /dev/logbuffer_tcpm 
/dev/logbuffer_tcpm gets accessed by dumpstate while bugreport
generation.

Bug: 189792358
Signed-off-by: Badhri Jagan Sridharan <badhri@google.com>
Change-Id: Ica0f3557ad9c41844f8411b0bdf68d66fbba00e5
 2021-06-17 16:11:28 -07:00
Craig Dooley
5f7548f746 Merge "Allow hal_dumpstate to collect AoC statistics" into sc-dev am: 7fe9d053e8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15000356

Change-Id: I41d370542b4be1b052ba863df7c28c265ccd036c
 2021-06-17 16:49:11 +00:00
Craig Dooley
7fe9d053e8 Merge "Allow hal_dumpstate to collect AoC statistics" into sc-dev 2021-06-17 16:32:38 +00:00
Franklin He
c53c03b843 Add new sepolicy to allow Power Hint 
SELinux policy changes to work with https://googleplex-android-review.git.corp.google.com/c/device/google/gs101/+/14997393
This allows the NNAPI HAL to make IPC calls to the Power HAL in order to request power hints

Bug: 191241561
Test: Pushed new SEPolicy to device, verified no AVC problems when making IPC calls
Change-Id: I8209b3677bedf908901389c07304f4478d0431b0
 2021-06-17 07:59:11 +00:00
Yuriy Romanenko
14786d9b40 Allow rlsservice/camera HAL to read /apex/apex-info-list.xml 
To detect apex updates

Bug: 188246923
Test: See topic
Change-Id: I28a27741c1c285f8b49a2aa50bc0665143c1b7cb
 2021-06-16 20:55:38 -07:00
TreeHugger Robot
c3d33dfd8f Merge "vendor_telephony_app.te: add selinuxfs:file" into sc-dev am: 502b653380 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14963703

Change-Id: Id126e3c4849db6a693458c67215c81e08c33c1a2
 2021-06-17 01:44:20 +00:00
TreeHugger Robot
502b653380 Merge "vendor_telephony_app.te: add selinuxfs:file" into sc-dev 2021-06-17 01:14:20 +00:00
Yu-Chi Cheng
66aac3e71f Allowed EdgeTPU compilation services (tflite and nnapi) to access am: 643e5a7123 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15004632

Change-Id: I6d0883541ad8f5796cc0ef7ae8ca7fb9827ce5f2
 2021-06-17 01:09:50 +00:00
Yu-Chi Cheng
643e5a7123 Allowed EdgeTPU compilation services (tflite and nnapi) to access 
overcommit_memory info.

This is required as part of the compilation process, likely part of
the jemalloc which was added recently.

Bug: 190790251
Test: verified on local P21 device.
Change-Id: I4d90ea92afd7beaa4c4efa6ed509d703764932a1
 2021-06-16 16:17:14 -07:00
Craig Dooley
3031b077a3 Allow hal_dumpstate to collect AoC statistics 
Bug: 188114650
Signed-off-by: Craig Dooley <dooleyc@google.com>
Change-Id: Iba5525af2c651070b9a5f7769c0439ef320d666b
 2021-06-16 17:18:55 +00:00
TreeHugger Robot
632d66fb17 Merge "Add sepolicy for hwcomposer to access lhbm sysfs" into sc-dev am: 11ebd6122e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14234767

Change-Id: Id3396b6103d217649292ec4338e72d4a52fdf18e
 2021-06-16 14:05:25 +00:00
TreeHugger Robot
11ebd6122e Merge "Add sepolicy for hwcomposer to access lhbm sysfs" into sc-dev 2021-06-16 13:51:37 +00:00
Adam Shih
56f9c7730f Merge "remove vcd from user ROM" into sc-dev am: 2cdde93f15 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14934449

Change-Id: Idceee76892481baf7c7c6339f088f003a7e735f3
 2021-06-16 06:54:18 +00:00
Adam Shih
2cdde93f15 Merge "remove vcd from user ROM" into sc-dev 2021-06-16 06:40:28 +00:00
TreeHugger Robot
0bf84fa3c0 Merge "Use label persist_ss_file" into sc-dev am: 6550281b13 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14987305

Change-Id: I4336b65c246f69138f6534fc76ea12ead51f786e
 2021-06-16 06:04:59 +00:00