Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
723 commits 1 branch 0 tags 494 MiB
Commit graph

723 commits

This branch
This branch
All branches
Author SHA1 Message Date
Aaron Ding
9f8d552411 pixel-selinux: add SJTAG policies 
This reverts commit b078284e5d.

Bug: 184768605
Change-Id: Ib0080e2ba3edf7fa654155fb4a7403d52ad2494a
 2021-06-02 10:25:51 +08:00
Aaron Ding
2dbe515943 remove sysfs_type from vendor_page_pinner_debugfs 
Bug: 186500818
Change-Id: If97126a3d46d96342faf89b9698218b6a480a84b
 2021-06-01 17:38:28 +08:00
David Chao
6026cf5181 Grant powerhal access to thermal_link_device and sysfs_thermal 
Bug: 188579571
Test: boot
Change-Id: I8e4675e2817fe3778236618e0dba76f1233e77e2
 2021-06-01 05:17:13 +00:00
Aaron Ding
2d35ae6cb8 Revert "pixel-selinux: add SJTAG policies" am: b078284e5d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14528664

Change-Id: I819e31237595331138b5230a77d5f85dbd368bc0
 2021-05-31 18:43:52 +00:00
Aaron Ding
b078284e5d Revert "pixel-selinux: add SJTAG policies" 
This reverts commit bc525e1a49.

Bug: 186500818
Change-Id: I0bab67d42530270a819598ac320a5946e5d7aa6d
Signed-off-by: Aaron Ding <aaronding@google.com>
 2021-06-01 01:21:14 +08:00
Vova Sharaienko
e133184c45 Merge "hal_health_default: updated sepolicy" into sc-dev am: ce4002966a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14738712

Change-Id: I19ce2ef9b6f771d35036dcd5fd8217bc8eb8219a
 2021-05-28 17:59:27 +00:00
Vova Sharaienko
ce4002966a Merge "hal_health_default: updated sepolicy" into sc-dev 2021-05-28 17:42:45 +00:00
Rick Yiu
8b7354ea6c Merge "gs101-sepolicy: Allow dumping vendor groups values" into sc-dev am: 6c5779d0af 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14692150

Change-Id: I5cdb6420dd45a50867d20a3b1ec97b1989af7a53
 2021-05-28 01:40:56 +00:00
Rick Yiu
6c5779d0af Merge "gs101-sepolicy: Allow dumping vendor groups values" into sc-dev 2021-05-28 01:16:34 +00:00
Vova Sharaienko
144b6b06b3 hal_health_default: updated sepolicy 
This allows the android.hardware.health service to access
AIDL Stats service

Bug: 186578402
Test: Build, flash, boot & and logcat | grep "avc"
Change-Id: I1bfd8dbca4a8a87387c5fc0cc47b9f09a6d07ea4
 2021-05-27 01:51:21 +00:00
Harpreet Eli Sangha
e952c414ec Add CccDkTimeSyncService 
Bug: 183676280
Test: Build and run example client.
Signed-off-by: Harpreet Eli Sangha <eliptus@google.com>
Change-Id: I862d5f3e8be3cf7d23489be374fabf26e29e0ca5
 2021-05-26 16:59:51 +00:00
TreeHugger Robot
51a593d480 Merge "Add sepolicy for Trusty keymint" into sc-dev am: 9e9c6a75da 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14414676

Change-Id: I5e2c27949cd69819a9aa12da921494adefa16606
 2021-05-26 13:44:53 +00:00
TreeHugger Robot
9e9c6a75da Merge "Add sepolicy for Trusty keymint" into sc-dev 2021-05-26 13:23:20 +00:00
sukiliu
826d258fcf Update avc error on ROM 7395282 am: 073a0f5ed1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14717075

Change-Id: Ifa05ac25bfcf263c9cac8584420b17bb84fce60c
 2021-05-26 04:54:42 +00:00
sukiliu
073a0f5ed1 Update avc error on ROM 7395282 
avc: denied { dac_override } for comm="rebalance_inter" capability=1 scontext=u:r:rebalance_interrupts_vendor:s0 tcontext=u:r:rebalance_interrupts_vendor:s0 tclass=capability permissive=0

Bug: 189275648
Test: PtsSELinuxTestCases
Change-Id: I637f1fcd901b8bf59096ba83c927b4d353f0405b
 2021-05-26 11:11:03 +08:00
Shawn Willden
c5fdb59287 Add sepolicy for Trusty keymint 
Bug: 177729159
Test: VtsAidlKeyMintTargetTest on P21
Change-Id: I993faa2a829d3ad4f1b920ff59ba4fd5ef8e7db7
 2021-05-25 16:37:29 -06:00
TreeHugger Robot
a85442bd10 Merge "Allow mediacodec to access the vframe-secure DMA-BUF heap" into sc-dev am: 477e19f032 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14704012

Change-Id: Ib1fe025493a3021d69bf7f79c8809098933ba1b8
 2021-05-25 19:05:23 +00:00
TreeHugger Robot
477e19f032 Merge "Allow mediacodec to access the vframe-secure DMA-BUF heap" into sc-dev 2021-05-25 18:45:37 +00:00
TreeHugger Robot
eeb41949c2 Merge "dumpstate: add sepolicy for hal_dumpstate to access sysfs_display" into sc-dev am: 57eefb5b13 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14608138

Change-Id: I7a32e0b2bcef407665e75e58d0af2db52c08323b
 2021-05-25 11:49:35 +00:00
TreeHugger Robot
57eefb5b13 Merge "dumpstate: add sepolicy for hal_dumpstate to access sysfs_display" into sc-dev 2021-05-25 10:12:38 +00:00
Ocean Chen
b8aebc85e1 storage: update sepolicy for hardwareinfoservice 
avc: denied { search } for name="0:0:0:0" dev="sysfs" ino=57525 scontext=u:r:hardware_info_app:s0:c512,c768 avc: denied { search } for name="health_descriptor" dev="sysfs" ino=57017 scontext=u:r:hardware_info_app:s0:c512,c768 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=dir permissive=0 app=com.google.android.hardwareinfo
avc: denied { search } for name="health_descriptor" dev="sysfs" ino=57017 scontext=u:r:hardware_info_app:s0:c512,c768 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=dir permissive=0 app=com.google.android.hardwareinfo

avc: denied { read } for name="vpd_pg80" dev="sysfs" ino=57559 scontext=u:r:hardware_info_app:s0:c512,c768 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=file permissive=0 app=com.google.android.hardwareinfo
avc: denied { read } for name="model" dev="sysfs" ino=57534 scontext=u:r:hardware_info_app:s0:c512,c768 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=file permissive=0 app=com.google.android.hardwareinfo
avc: denied { read } for name="vendor" dev="sysfs" ino=57533 scontext=u:r:hardware_info_app:s0:c512,c768 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=file permissive=0 app=com.google.android.hardwareinfo
avc: denied { read } for name="rev" dev="sysfs" ino=57535 scontext=u:r:hardware_info_app:s0:c512,c768 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=file permissive=0 app=com.google.android.hardwareinfo
avc: denied { read } for name="eol_info" dev="sysfs" ino=57020 scontext=u:r:hardware_info_app:s0:c512,c768 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=file permissive=0 app=com.google.android.hardwareinfo
avc: denied { read } for name="life_time_estimation_a" dev="sysfs" ino=57021 scontext=u:r:hardware_info_app:s0:c512,c768 tcontext=u:object_r:sysfs_scsi_devices_0000:s0 tclass=file permissive=0 app=com.google.android.hardwareinfo

Bug: 188755652
Test: reboot then check hardwareinfo and avc denined log
Change-Id: Ia03ebdd6b0b46b4c9ace5fbf1fc47a455a55abcb
 2021-05-25 16:57:20 +08:00
Roger Fang
21d7509c17 Merge "sepolicy: gs101: add permission for the hardware info dsp part number" into sc-dev am: 56cbfd5a0a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14696016

Change-Id: If394b6c1a719b26a295b97980b94fb217442ef76
 2021-05-25 01:22:03 +00:00
Roger Fang
56cbfd5a0a Merge "sepolicy: gs101: add permission for the hardware info dsp part number" into sc-dev 2021-05-25 01:02:39 +00:00
Ines Ayara
304a92ea86 Merge "Transition to using libedgetpu_util.so instead of libedgetpu_darwinn2.so. bug: b/182303547" into sc-dev am: dfb3783187 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14652412

Change-Id: Ie52a7d786c4344a7ba0e8bf6bbba87ae7f9d0999
 2021-05-25 00:16:44 +00:00
Vinay Kalia
68849437bd Allow mediacodec to access the vframe-secure DMA-BUF heap 
This patch fixes the following denial:

HwBinder:751_2: type=1400 audit(0.0:9): avc: denied { open } for
path="/dev/dma_heap/vframe-secure" dev="tmpfs" ino=734
scontext=u:r:mediacodec:s0 tcontext=u:object_r:vframe_heap_device:s0
tclass=chr_file permissive=0

Bug: 188121584
Test: AV1 secure video playback

Signed-off-by: Vinay Kalia <vinaykalia@google.com>
Change-Id: I455b39914dd4316a427f5f756b4fb94a2c4db204
 2021-05-24 23:57:28 +00:00
Ines Ayara
dfb3783187 Merge "Transition to using libedgetpu_util.so instead of libedgetpu_darwinn2.so. bug: b/182303547" into sc-dev 2021-05-24 23:55:32 +00:00
Roger Fang
a97bfcc1e1 sepolicy: gs101: add permission for the hardware info dsp part number 
Bug: 188757638
Test: Manually test passed

Signed-off-by: Roger Fang <rogerfang@google.com>
Change-Id: Id0c3226411b058b613b92e67174f14e64c6c3a2b
 2021-05-24 08:16:34 +00:00
Rick Yiu
5aeb1b9e45 gs101-sepolicy: Allow dumping vendor groups values 
Fix:
avc: denied { read } for name="vendor_sched" dev="sysfs" ino=45566 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

avc: denied { read } for name="dump_task_group_ta" dev="proc" ino=4026532542 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=0

Bug: 172112042
Test: dump data as expected
Change-Id: I9945953dba4afddd34c1535c12193b1f00fdcef9
 2021-05-22 21:30:47 +08:00
Grace Chen
f8cf5a7354 Merge "Add selinux permissions for NFC/eSIM firmware upgrade and recovery" into sc-dev am: 16a38b2b6c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14514065

Change-Id: I3ea91e07cb86b9ccbe5c27fdbd29eee2cb4512c6
 2021-05-21 19:14:16 +00:00
Grace Chen
16a38b2b6c Merge "Add selinux permissions for NFC/eSIM firmware upgrade and recovery" into sc-dev 2021-05-21 19:10:52 +00:00
TreeHugger Robot
62e330941f Merge "Grant sepolicy for Bluetooth Ccc Timesync feature" into sc-dev am: b42a03fa9e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14160586

Change-Id: I1f5224c5e295837500f52c7f2a91c7cf0c12e748
 2021-05-21 06:57:16 +00:00
TreeHugger Robot
b42a03fa9e Merge "Grant sepolicy for Bluetooth Ccc Timesync feature" into sc-dev 2021-05-21 06:41:20 +00:00
SHUCHI LILU
aeb7f90af4 Merge "Update avc error on ROM 7380236" into sc-dev am: 5128ec7db7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14660737

Change-Id: I9ec909e4a4d07e8a46e6e4508b43a0ca8e5a5374
 2021-05-21 02:22:40 +00:00
SHUCHI LILU
5128ec7db7 Merge "Update avc error on ROM 7380236" into sc-dev 2021-05-21 02:08:56 +00:00
TreeHugger Robot
91bf8bf616 Merge "pixel-selinux: add SJTAG policies" into sc-dev am: 73b7ad4a3c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14604512

Change-Id: I462cc640fc849f81ecf49e3f39e802e7ab5fa483
 2021-05-21 01:12:47 +00:00
TreeHugger Robot
73b7ad4a3c Merge "pixel-selinux: add SJTAG policies" into sc-dev 2021-05-21 00:49:42 +00:00
Maurice Lam
feba9d73d4 Merge "DO NOT MERGE. Revert Exo selinux policies for S" into sc-dev am: 32848785da 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14533075

Change-Id: Id77a1e6b874638e4f12e2e885d1ccde957cb496c
 2021-05-20 17:50:09 +00:00
Maurice Lam
cfee7fe9bc DO NOT MERGE. Revert Exo selinux policies for S am: a1bf959f13 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14533075

Change-Id: I5bf8406b143b44e5b7442963d5174e3409726710
 2021-05-20 17:50:08 +00:00
Maurice Lam
32848785da Merge "DO NOT MERGE. Revert Exo selinux policies for S" into sc-dev 2021-05-20 17:31:08 +00:00
George Lee
aa5dc74e98 Merge "power: mod sysfs_bcl path" into sc-dev am: 3561520ae2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14655334

Change-Id: Ie46877765eb766a63d79f641f2df37f2e82e8f34
 2021-05-20 15:27:31 +00:00
George Lee
3561520ae2 Merge "power: mod sysfs_bcl path" into sc-dev 2021-05-20 15:12:44 +00:00
Ken Huang
560d12c3f1 dumpstate: add sepolicy for hal_dumpstate to access sysfs_display 
Allow dumpstate to read panel extra info.

Bug: 183061481
Test: adb bugreport
Change-Id: I1902f28c2edceeb5b74ce655f83c8aea7c60825b
 2021-05-20 13:53:39 +00:00
sukiliu
ba92629794 Update avc error on ROM 7380236 
Bug: 188752787
Bug: 188752940
Test: PtsSELinuxTestCases
Change-Id: I5b674d4696ef470956301388f3d0fcc4883010c6
 2021-05-20 16:52:43 +08:00
Peter Csaszar
8fd76cee44 pixel-selinux: add SJTAG policies 
These are the SELinux policies for the sysfs files of the SJTAG
kernel interface. The files are in the following directories:

  /sys/devices/platform/sjtag_ap/interface/
  /sys/devices/platform/sjtag_gsa/interface/

Bug: 184768605
Signed-off-by: Peter Csaszar <pcsaszar@google.com>
Change-Id: I4ecf5cec5bbd08a44d7dbf88de5f3bc58b6c4fe5
 2021-05-20 00:00:30 -07:00
George Lee
f7a9784254 power: mod sysfs_bcl path 
Recent change in kernel prompted path change.

Bug: 186879633
Test: adb bugreport
dumpstate_board.txt shows:
------ Mitigation Stats (/vendor/bin/sh -c echo "Source\t\tCount\tSOC\tTime\tVoltage"; for f in `ls /sys/devices/virtual/pmic/mitigation/last_triggered_count/*` ; do count=`cat $f`; a=${f/\/sys\/devices\/virtual\/pmic\/mitigation\/last_triggered_count\//}; b=${f/last_triggered_count/last_triggered_capacity}; c=${f/last_triggered_count/last_triggered_timestamp/}; d=${f/last_triggered_count/last_triggered_voltage/}; cnt=`cat $f`; cap=`cat ${b/count/cap}`; ti=`cat ${c/count/time}`; volt=`cat ${d/count/volt}`; echo "${a/_count/} \t$cnt\t$cap\t$ti\t$volt" ; done) ------
Source		Count	SOC	Time	Voltage
batoilo 	0	0	0	0
ocp_cpu1 	0	0	0	0
ocp_cpu2 	0	0	0	0
ocp_gpu 	0	0	0	0
ocp_tpu 	0	0	0	0
smpl_warn 	0	0	0	0
soft_ocp_cpu1 	0	0	0	0
soft_ocp_cpu2 	0	0	0	0
soft_ocp_gpu 	0	0	0	0
soft_ocp_tpu 	0	0	0	0
vdroop1 	0	0	0	0
vdroop2 	0	0	0	0
------ Clock Divider Ratio (/vendor/bin/sh -c echo "Source\t\tRatio"; for f in `ls /sys/devices/virtual/pmic/mitigation/clock_ratio/*` ; do ratio=`cat $f`; a=${f/\/sys\/devices\/virtual\/pmic\/mitigation\/clock_ratio\//}; echo "${a/_ratio/} \t$ratio" ; done) ------
Source		Ratio
cpu0_clk 	0xf041c3
cpu1_heavy_clk 	0xf041c3
cpu1_light_clk 	0xf041c5
cpu2_heavy_clk 	0xf041c3
cpu2_light_clk 	0xf041c5
gpu_heavy_clk 	off
gpu_light_clk 	off
tpu_heavy_clk 	off
tpu_light_clk 	off
------ Clock Stats (/vendor/bin/sh -c echo "Source\t\tStats"; for f in `ls /sys/devices/virtual/pmic/mitigation/clock_stats/*` ; do stats=`cat $f`; a=${f/\/sys\/devices\/virtual\/pmic\/mitigation\/clock_stats\//}; echo "${a/_stats/} \t$stats" ; done) ------
Source		Stats
cpu0_clk 	0x101
cpu1_clk 	0x101
cpu2_clk 	0x101
gpu_clk 	off
tpu_clk 	off
------ Triggered Level (/vendor/bin/sh -c echo "Source\t\tLevel"; for f in `ls /sys/devices/virtual/pmic/mitigation/triggered_lvl/*` ; do lvl=`cat $f`; a=${f/\/sys\/devices\/virtual\/pmic\/mitigation\/triggered_lvl\//}; echo "${a/_lvl/} \t$lvl" ; done) ------
Source		Level
ocp_cpu1 	7000mA
ocp_cpu2 	12000mA
ocp_gpu 	12000mA
ocp_tpu 	10500mA
smpl 	2900mV
soft_ocp_cpu1 	7000mA
soft_ocp_cpu2 	12000mA
soft_ocp_gpu 	12000mA
soft_ocp_tpu 	10500mA

Change-Id: Ibe303ad69ffb29f3c3bbd79d557d04138cd09bd7
 2021-05-20 02:07:55 +00:00
iayara
53aff191d2 Transition to using libedgetpu_util.so instead of libedgetpu_darwinn2.so. 
bug: b/182303547

Change-Id: Ia84e63fdfdeac5094752dfe9de84b75bd56aa131
 2021-05-20 00:10:01 +00:00
TreeHugger Robot
b79874f1b2 Merge "logger_app: Fix avc error" into sc-dev am: dc4db7d1cc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14636312

Change-Id: I4ec355ab7418f960c967984aded20fa9322030b7
 2021-05-19 08:43:40 +00:00
TreeHugger Robot
dc4db7d1cc Merge "logger_app: Fix avc error" into sc-dev 2021-05-19 08:31:39 +00:00
yixuanjiang
826c703c8c Add sepolicy for aocdump to access wlan_logs folder am: 494ac0cfe3 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14636311

Change-Id: Iefe2f8ef7f6cda5896da75634a3eaa9560be44ff
 2021-05-19 08:10:35 +00:00
SalmaxChang
b486ddedc5 logger_app: Fix avc error 
avc: denied { search } for name="ramdump" dev="dm-7" ino=316 scontext=u:r:logger_app:s0:c17,c257,c512,c768 tcontext=u:object_r:ramdump_vendor_data_file:s0 tclass=dir permissive=0
avc: denied { search } for name="ssrdump" dev="dm-11" ino=292 scontext=u:r:logger_app:s0:c23,c257,c512,c768 tcontext=u:object_r:sscoredump_vendor_data_crashinfo_file:s0 tclass=dir permissive=0

Bug: 188601292
Bug: 188611595

Change-Id: If6b204bf0d5c502cf09c9fe70bcd572cfe2db016
 2021-05-19 07:39:36 +00:00