Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1414 commits 1 branch 0 tags 494 MiB
Commit graph

117 commits

Author SHA1 Message Date
TreeHugger Robot
a96235b57b Merge "Add AoC wakeup stats to dump state" into sc-dev am: fead41d573 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15393321

Change-Id: Ia4cb5725b748fcccd901a28ca2e3dbb354c3e44e
 2021-07-27 19:44:07 +00:00
TreeHugger Robot
fead41d573 Merge "Add AoC wakeup stats to dump state" into sc-dev 2021-07-27 19:23:06 +00:00
Jack Wu
2c79c75768 sepolicy: gs101: allows pixelstat to access pca file nodes am: d6c1a50bba 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15360184

Change-Id: Ic3efb76715139aa335995b95e7756f23b5de226c
 2021-07-27 02:29:16 +00:00
Max Kogan
5374497df5 Add AoC wakeup stats to dump state 
Need add support for wakeup stats to track AoC to AP messages
resulting in frequent wake-ups.

Bug: 192668026
Change-Id: I073406cc101e114135c863b0e0b86357e93c0415
 2021-07-26 22:45:16 +00:00
Jack Wu
d6c1a50bba sepolicy: gs101: allows pixelstat to access pca file nodes 
07-23 14:24:45.512  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:10): avc: denied { open } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0057/chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:45.512  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:11): avc: denied { getattr } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0057/chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:57.536  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:12): avc: denied { read } for name="chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:57.536  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:13): avc: denied { open } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0057/chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:57.536  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:14): avc: denied { getattr } for path="/sys/devices/platform/10d50000.hsi2c/i2c-5/5-0057/chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1
07-23 14:24:57.536  1000  3001  3001 I pixelstats-vend: type=1400 audit(0.0:15): avc: denied { write } for name="chg_stats" dev="sysfs" ino=72245 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1

Bug: 194386750
Test: manually test, no avc: denied
Signed-off-by: Jack Wu <wjack@google.com>
Change-Id: I1a16edb5bb7820f62b3ce598aa50eba2d9455927
 2021-07-24 06:42:39 +00:00
TreeHugger Robot
cd16e38ab2 Merge "Add SE policies for memtrack HAL" into sc-dev am: b3225f0f6c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15283133

Change-Id: I552351e0eac65c20d795b1682852896943f948c8
 2021-07-23 21:24:50 +00:00
TreeHugger Robot
b3225f0f6c Merge "Add SE policies for memtrack HAL" into sc-dev 2021-07-23 20:52:52 +00:00
Ankit Goyal
0f9820830c Add SE policies for memtrack HAL 
Bug: 191966412
Test: adb shell dumpsys meminfo
Change-Id: Ia7ec64840d2bb7c3ae0d61304e109d2ceb9e5f78
 2021-07-24 02:18:36 +08:00
Badhri Jagan Sridharan
31b15ff2bb Merge "Update Usb hal permissions to allow pushing overheat suez events" into sc-dev am: 49804d8d6f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15283349

Change-Id: I6fc802f74aaf7e1f7a7b8574ed5ace1886b9623c
 2021-07-22 20:52:11 +00:00
Badhri Jagan Sridharan
49804d8d6f Merge "Update Usb hal permissions to allow pushing overheat suez events" into sc-dev 2021-07-22 20:31:13 +00:00
Badhri Jagan Sridharan
1ebd84703b Update Usb hal permissions to allow pushing overheat suez events 
Usb hal now pushes the Usb port overheat event through statsd.
Usb hal also accesses usbc-throttling stats to gather info.

Bug: 193615568
Signed-off-by: Badhri Jagan Sridharan <badhri@google.com>
Change-Id: I4918458bc7a8a25d7655b66d1fe40eafc7ccb070
 2021-07-21 14:38:55 -07:00
Alex Hong
5cc647e87d Allow suspend_control to access the AOC wakeup node am: f0589d11df 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15334275

Change-Id: Ibfbe41ba694a27408dbd3ff6bdb5632d55a9a05e
 2021-07-20 13:12:56 +00:00
Alex Hong
f0589d11df Allow suspend_control to access the AOC wakeup node 
Test: Check avc denials during boot
      $ adb shell su 0 dumpsys suspend_control
Bug: 194164089

Change-Id: I9edcf6398f61daec6fdde0f7ac69ddd5d275f753
 2021-07-20 09:29:15 +00:00
TreeHugger Robot
18ba5fc434 Merge "Set sepolicy for shell script of disabling contaminant detection" into sc-dev am: f0dd8e2957 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15269315

Change-Id: I6c76bc3520f86a8aa85172a38fbfe8ebec6d934c
 2021-07-15 16:32:23 +00:00
Darren Hsu
3050ed8ed9 Set sepolicy for shell script of disabling contaminant detection 
The avc denials are listed in b/192208389#comment10.

Bug: 192208389
Test: Manually tested
Change-Id: Ib2e3cf498851c0c9e5e74aacc9bf391549c0ad1a
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2021-07-15 11:11:11 +08:00
Stephane Lee
ec44f8bfd2 Add DC Charging to server configurable parameters; ensure the sysfs node is writable am: 2046513eb7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15180033

Change-Id: I3cd66320c887223d53506cb2ce741a1e04c02afd
 2021-07-13 08:47:59 +00:00
Stephane Lee
2046513eb7 Add DC Charging to server configurable parameters; ensure the sysfs node is writable 
hal_googlebattery will be writing to:
/sys/devices/platform/google,cpm/dc_ctl

Test: Ensure there are no errors on logcat | grep google_battery@
Bug: 183772980

Change-Id: Id4490d6de161eefe63c36c01d497696b16c6292d
 2021-07-12 13:27:54 -07:00
TreeHugger Robot
658fee07c2 Merge "Add system file of INT clock to sysfs_fabric group" into sc-dev am: 8318f84aef 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15152132

Change-Id: I81b56ac19c9b6305037ffda1c2fe72c0505ece6d
 2021-07-06 01:27:27 +00:00
Yu(Swim) Chih Ren
3aa97b5012 Add system file of INT clock to sysfs_fabric group 
It is for power hal can access system file of INT clock

Bug: 168654554

Test: 1. Check file group of INT clock system file
      2. P21 Camera Test Checklist done

Change-Id: I1952c5d2ae39c338c9d2ccb8db49d1d119943c06
 2021-07-06 00:33:55 +00:00
Ilya Matyukhin
09792c098f Merge "raviole: transition SystemUI to use HWC for LHBM" into sc-dev am: f9828a9944 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15085906

Change-Id: If83496c47ac3e6450756a5dfc2342884a17e378d
 2021-06-25 01:27:58 +00:00
Ilya Matyukhin
2460cdcc9f raviole: transition SystemUI to use HWC for LHBM 
This change removes direct access to the LHBM sysfs node from SystemUI,
but allows SystemUI to make binder calls to the hardware composer (HWC),
which can be used to enable or disable LHBM.

Bug: 191132545
Bug: 190563896
Bug: 184768835
Test: no avc denials
Change-Id: I5417377ff096e869ad772e4fd2fb23f8c1fd4f1e
 2021-06-23 23:38:27 -07:00
Alex Hong
fd43ace221 Merge "Move the genfs_contexts of sched nodes from vendor to product" into sc-dev am: 1f17829dc2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15045028

Change-Id: I79ce5df849956b3b000ff6241ef0c20dd0a32f7c
 2021-06-22 03:20:34 +00:00
Alex Hong
1f17829dc2 Merge "Move the genfs_contexts of sched nodes from vendor to product" into sc-dev 2021-06-22 03:01:07 +00:00
Alex Hong
c598db170c Move the genfs_contexts of sched nodes from vendor to product 
For sched nodes, "proc_vendor_sched" and "sysfs_vendor_sched",
their type definition is in product sepolicy,
while genfs_contexts is in vendor sepolicy.
In this case, genfs_contexts cannot be resolved after product sepolicy
is replaced by Dynamic System Update.

Need to keep the type definition and genfs_contexts in the same partition.
Now move genfs_contexts because the type definition has to be in product for now
since other private domains are accessing these sched nodes.

Test: $ make selinux_policy
      The device can boot to home after replacing with GSI.
Bug: 191236468
Change-Id: I02ea78b04dfcade4ceb426ff6ebf498daa81ac32
 2021-06-21 14:55:08 +00:00
Craig Dooley
5f7548f746 Merge "Allow hal_dumpstate to collect AoC statistics" into sc-dev am: 7fe9d053e8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15000356

Change-Id: I41d370542b4be1b052ba863df7c28c265ccd036c
 2021-06-17 16:49:11 +00:00
Craig Dooley
3031b077a3 Allow hal_dumpstate to collect AoC statistics 
Bug: 188114650
Signed-off-by: Craig Dooley <dooleyc@google.com>
Change-Id: Iba5525af2c651070b9a5f7769c0439ef320d666b
 2021-06-16 17:18:55 +00:00
TreeHugger Robot
15c7fdc5bb Merge "update wakeup node" into sc-dev am: d3b0256025 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14928571

Change-Id: I787229985b0214fff17ea2feae9b4788e9a35d95
 2021-06-10 04:12:58 +00:00
TreeHugger Robot
d3b0256025 Merge "update wakeup node" into sc-dev 2021-06-10 03:56:50 +00:00
Adam Shih
ef113ab8ac update wakeup node 
Bug: 190672147
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I3a8e8fa8b9007f556a5bfb402c4e8c726499d66f
 2021-06-10 03:23:52 +00:00
Adam Shih
6f1be4dcf7 Merge "organize EdgeTPU modules and sepolicy" into sc-dev am: 22fae537b5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14911633

Change-Id: I4e35a44d8e36220eb05fd478cbdfe8a264d90c29
 2021-06-10 03:12:38 +00:00
Adam Shih
22fae537b5 Merge "organize EdgeTPU modules and sepolicy" into sc-dev 2021-06-10 02:53:28 +00:00
TreeHugger Robot
08f92cd2bd Merge "Add sysfs_camera label for powerhint flow to access intcam & tnr clock" into sc-dev am: c5d10f245a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14795451

Change-Id: Iafa97d33e0ecefa938654e15ce0c1e2f4c1660c8
 2021-06-09 04:37:08 +00:00
TreeHugger Robot
c5d10f245a Merge "Add sysfs_camera label for powerhint flow to access intcam & tnr clock" into sc-dev 2021-06-09 04:18:05 +00:00
Adam Shih
e7ed46c52c organize EdgeTPU modules and sepolicy 
Bug: 190331327
Bug: 190331548
Bug: 189895600
Bug: 190331108
Bug: 182524105
Bug: 183935302
Test: build ROM and check if the modules and sepolicy are still there
Change-Id: I40391a239a16c4fe79d58fab209dcbd1a8f25ede
 2021-06-09 10:39:04 +08:00
Maciej Żenczykowski
0dba97d5f2 R4/raven: correctly label wpan0 device as networking am: b22c6cd04a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14889941

Change-Id: Idae2b832bff3c3d4ed5f22d49c0d0d4538efbc1a
 2021-06-08 05:35:03 +00:00
Maciej Żenczykowski
b22c6cd04a R4/raven: correctly label wpan0 device as networking 
Test: atest, TreeHugger, manual observation of labeling
Bug: 185962988
Signed-off-by: Maciej Żenczykowski <maze@google.com>
Change-Id: I068b7da17590fc9dc914db80263b72cc7536c095
 2021-06-07 20:34:05 -07:00
Yu(Swim) Chih Ren
d45ada475b Add sysfs_camera label for powerhint flow to access intcam & tnr clock 
Test: 1. build selinux and push related files to phone
      2. Use ls -Z "file" to check if selinux content of file is
      expected
      3. P21 camera checklist
Bug: 168654554

Change-Id: Ie757dd3e8adc151c6340e9ca662efbdf0ccb6110
 2021-06-07 06:31:09 +00:00
Rick Yiu
b6b7564259 Merge "gs101-sepolicy: Refine policy for sysfs_vendor_sched" into sc-dev am: b530a26f1f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14774943

Change-Id: Id352df8328a33017692f2a0df544b9db1556d1cf
 2021-06-03 01:20:00 +00:00
Rick Yiu
9e8bd699e9 gs101-sepolicy: Refine policy for sysfs_vendor_sched 
Chagne it to directory based.

Bug: 182509410
Test: device boot normally
Change-Id: I1cfaa95cf07e1e829e747eb99ed39ab64d3ddac1
 2021-06-02 04:52:45 +00:00
Rick Yiu
32838e85d8 Merge "gs101-sepolicy: Allow dumping vendor groups values" into sc-dev am: 6c5779d0af 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14692150

Change-Id: I1b2c4fb8582bf71543ea0c115f369dbb6f8abe9b
 2021-05-28 01:44:23 +00:00
Rick Yiu
6c5779d0af Merge "gs101-sepolicy: Allow dumping vendor groups values" into sc-dev 2021-05-28 01:16:34 +00:00
TreeHugger Robot
cb80570b92 Merge "dumpstate: add sepolicy for hal_dumpstate to access sysfs_display" into sc-dev am: 57eefb5b13 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14608138

Change-Id: I594759be23e922d975f395da8a1d363925dc30ca
 2021-05-25 11:50:55 +00:00
TreeHugger Robot
57eefb5b13 Merge "dumpstate: add sepolicy for hal_dumpstate to access sysfs_display" into sc-dev 2021-05-25 10:12:38 +00:00
Roger Fang
292faf8ed3 Merge "sepolicy: gs101: add permission for the hardware info dsp part number" into sc-dev am: 56cbfd5a0a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/14696016

Change-Id: I929b5c4b1f37c2e0d8bee655fc0141a5a0bbbd4e
 2021-05-25 01:24:04 +00:00
Roger Fang
a97bfcc1e1 sepolicy: gs101: add permission for the hardware info dsp part number 
Bug: 188757638
Test: Manually test passed

Signed-off-by: Roger Fang <rogerfang@google.com>
Change-Id: Id0c3226411b058b613b92e67174f14e64c6c3a2b
 2021-05-24 08:16:34 +00:00
Rick Yiu
5aeb1b9e45 gs101-sepolicy: Allow dumping vendor groups values 
Fix:
avc: denied { read } for name="vendor_sched" dev="sysfs" ino=45566 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

avc: denied { read } for name="dump_task_group_ta" dev="proc" ino=4026532542 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=0

Bug: 172112042
Test: dump data as expected
Change-Id: I9945953dba4afddd34c1535c12193b1f00fdcef9
 2021-05-22 21:30:47 +08:00
chasewu
168a6b0c72 genfs_contexts: fix path for cs40l25a i2c devices 
Due to recent changes which modifies the device name for i2c devices,
cs40l25a device names are now changed from ?-0043 and ?-0042 to
"i2c-cs40l25a" and "i2c-cs40l25a-dual"

Bug: 188078957
Bug: 188651116
Test: manual check avc denied logs
Signed-off-by: chasewu <chasewu@google.com>
Change-Id: I97d3a030c94166f8e2cda7daa38166b1532b6d9f
 2021-05-21 17:32:53 +08:00
TreeHugger Robot
b42a03fa9e Merge "Grant sepolicy for Bluetooth Ccc Timesync feature" into sc-dev 2021-05-21 06:41:20 +00:00
TreeHugger Robot
73b7ad4a3c Merge "pixel-selinux: add SJTAG policies" into sc-dev 2021-05-21 00:49:42 +00:00
George Lee
3561520ae2 Merge "power: mod sysfs_bcl path" into sc-dev 2021-05-20 15:12:44 +00:00