Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
663 commits 1 branch 0 tags 63 MiB
Commit graph

663 commits

This branch
This branch
All branches
Author SHA1 Message Date
Nicolas Geoffray
073de4fba6 Merge "Allow ssr_detector_app writes to system_app_data_file." 2022-11-29 09:00:12 +00:00
Sandeep Dhavale
89f5fff668 Add fastboot sepolicy changes to allow wiping of device 
With new AIDL fastboot service, wiping permissions need to be added
for hal_fastboot_default.

Bug: 260140380
Test: fastboot -w

Change-Id: I08e98461d0697d7539e14435acdacc3cc64eab3d
Signed-off-by: Sandeep Dhavale <dhavale@google.com>
 2022-11-28 17:53:51 +00:00
Nicolas Geoffray
4293206c86 Allow ssr_detector_app writes to system_app_data_file. 
Bug: 260557058
Test: m
Change-Id: Ibd028690a9d8661be8769d1b8f0c4e3a1f0fe985
 2022-11-28 17:27:46 +00:00
Sandeep Dhavale
25ea0f418a Add sepolicy rules for fastboot AIDL service 
Bug: 205760652
Test: Build & Flash

Change-Id: I02fe5ca6c0276fd08cf5127b7d8b7313374f0cfe
Signed-off-by: Sandeep Dhavale <dhavale@google.com>
 2022-11-09 00:36:48 +00:00
Amith Dsouza
be2e1b2ede Fix untracked SELinux denials on boot 
Error:
avc:  denied  { find } for interface=vendor.samsung_slsi.telephony.hardware.radioExternal::IOemSlsiRadioExternal sid=u:r:platform_app:s0:c512,c768 pid=2641 scontext=u:r:platform_app:s0:c512,c768 tcontext=u:object_r:hal_exynos_rild_hwservice:s0 tclass=hwservice_manager permissive=0

Bug: 254453654
Test: Flash device, rebuild driver blobs, check logs after boot

Change-Id: I43d524f781c1dda1d3d5291f661bc549fdbb99d6
 2022-11-02 00:55:45 +00:00
Wei Wang
4a56314a9c Label GPU dvfs period setting am: b5fcd3b4db 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19564662

Change-Id: Ia58bb1e41f2c4e1f8330672545d91779f96daa8d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-10 23:02:35 +00:00
Wei Wang
b5fcd3b4db Label GPU dvfs period setting 
Bug: 239887528
Test: Build
Signed-off-by: Wei Wang <wvw@google.com>
Change-Id: I35766555f13f586e37d03843dae153d02f189976
 2022-08-09 23:52:57 +00:00
Konstantin Vyshetsky
7f2edf52ce convert_to_ext4.sh: modify sepolicy am: c44f96b66a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19492175

Change-Id: I51a6b4a8d407ee7e2fbc84b7472e72d5337eb911
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-02 03:19:38 +00:00
Konstantin Vyshetsky
c44f96b66a convert_to_ext4.sh: modify sepolicy 
Combine individual rules under persist into vendor_persist_type.

Bug: 239632964
Signed-off-by: Konstantin Vyshetsky <vkon@google.com>
Change-Id: I4f90a3b30f9d0dd8b8386ef57728fa098a630081
 2022-08-01 18:51:42 -07:00
Konstantin Vyshetsky
a16b2ac404 convert_to_ext4.sh: add sepolicy am: 07af2808d5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19391424

Change-Id: I19364ae4fa02a74996d14eeadf3f6ee89311bfc9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-01 18:17:39 +00:00
Konstantin Vyshetsky
07af2808d5 convert_to_ext4.sh: add sepolicy 
Add entries for convert_to_ext4.sh executable.

Bug: 239632964
Signed-off-by: Konstantin Vyshetsky <vkon@google.com>
Change-Id: I0d89aa88dab0ae5a4cf3d7b2e4423d1761868bea
 2022-08-01 18:00:49 +00:00
lucaslin
e798862ff6 Add sepolicy for dumpstate to zip tcpdump into bugreport am: 81616f3ad0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19466304

Change-Id: I97d34e9e6d64f470e79d33bd0d277d9f3694d03a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-01 12:46:32 +00:00
lucaslin
81616f3ad0 Add sepolicy for dumpstate to zip tcpdump into bugreport 
Bug: 239634976
Test: 1. Enable tcpdump_logger always-on function
      2. Dump bugreport
      3. Pull dumpstate_board.bin and chagne it to zip
      4. Unzip dumpstate_board.zip and check if tcpdump files
         are there.
Change-Id: I01b9b25a6236bcfa1ce2b89afb3ed1bc2ef49cae
Merged-In: I01b9b25a6236bcfa1ce2b89afb3ed1bc2ef49cae
(cherry picked from commit ee1b7d6bb4)
 2022-08-01 03:00:17 +00:00
Steven Moreland
82c366063e Remove vendor_service. am: f10b9bf2cd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19441143

Change-Id: Ib8a9d7fec295cdc8a9581f042bc082d83612d33a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-28 01:07:53 +00:00
Steven Moreland
f10b9bf2cd Remove vendor_service. 
We want to avoid associating types with where they can be used.

Bug: 237115222
Test: build
Change-Id: I6795d960aa2a3b3832be8e0f6a11cb0fc3337982
 2022-07-26 23:53:54 +00:00
Adam Shih
fcb18faeb1 sync bug_map with downstream am: b34d1c1ed0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19349280

Change-Id: Id6d9092dd4f1e1b59b911a4bba12aca4f238248e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-25 21:32:08 +00:00
Adam Shih
b34d1c1ed0 sync bug_map with downstream 
Bug: 239403666
Test: boot
Change-Id: I7e95cc5169ce56f1bba031b4d8a83ab1d5c80b26
Merged-In: If07a3611f40324d985a387c6dd7f2570c90c7c11
 2022-07-25 21:05:38 +00:00
Edmond Chung
ed1f75b8aa Allow vendor_init to set camera properties am: c09b0f9873 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19381316

Change-Id: I6dd674a0a9dfde23a38137d67a4db4437395600a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-22 01:46:05 +00:00
Edmond Chung
c09b0f9873 Allow vendor_init to set camera properties 
Bug: 239368308
Test: Camera CTS
Change-Id: Ia34804235729d5230123431a4b315bb2967c4cc8
 2022-07-22 01:44:15 +00:00
Robb Glasser
76ff3ba367 Remove HAL sensors dontaudits. am: 46c4571485 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19281889

Change-Id: I003515c35a34416c0c49fe1267ba9ed54c9e2f8c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-14 02:07:43 +00:00
Robb Glasser
46c4571485 Remove HAL sensors dontaudits. 
Sensors HAL sepolicy is written, but the dontaudit parts were not
cleaned up at the time. Removing these as they are no longer needed.

Bug: 227695036
Test: No denials as expected.
Change-Id: Idc0ed7f380cb07bfc7695ef3019f335fd8fad0a2
 2022-07-13 11:06:04 -07:00
Star Chang
932cf00952 wifi_sniffer: Add policy to allow wifi sniffer to access wifi firmware am: c466a68305 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19132092

Change-Id: If9f48a717ec9ae82dda176dfcd1a5b26651028ab
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-07 06:51:32 +00:00
Star Chang
c466a68305 wifi_sniffer: Add policy to allow wifi sniffer to access wifi firmware 
related files.

Add policy to allow wifi_sniffer daemon to access wifi firmware related
files.

To fix the denial message:
[85544.205505] type=1400 audit(1656381950.486:90): avc: denied { search
} for comm="wifi_sniffer" name="wifi" dev="sysfs" ino=97256
scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0
tclass=dir permissive=1
[85544.206027] type=1400 audit(1656381950.486:91): avc: denied { write }
for comm="wifi_sniffer" name="firmware_path" dev="sysfs" ino=97268
scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0
tclass=file permissive=1
[85544.206206] type=1400 audit(1656381950.486:92): avc: denied { open }
for comm="wifi_sniffer" path="/sys/wifi/firmware_path" dev="sysfs"
ino=97268 scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0
tclass=file permissive=1
[85544.206349] type=1400 audit(1656381950.486:93): avc: denied { getattr
} for comm="wifi_sniffer" path="/sys/wifi/firmware_path" dev="sysfs"
ino=97268 scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0
tclass=file permissive=1

Bug: 237465412
Test: wifi_sniffer is workable
Change-Id: I5500be87d2b670e29c08d026872a6b304109f7a3
 2022-07-07 06:15:48 +00:00
Adam Shih
2fc31f23a8 Update error on ROM 8765438 am: 74ff6db973 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19174387

Change-Id: I3ecdc79d72c83e9ec7496303f054da857a3b0cad
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-06 00:37:16 +00:00
Adam Shih
74ff6db973 Update error on ROM 8765438 
Bug: 238037492
Bug: 237093466
Test: SELinuxUncheckedDenialBootTest
Change-Id: I4b067085dc0c9f79b715505a5831cab63fda6381
Merged-In: I4b067085dc0c9f79b715505a5831cab63fda6381
 2022-07-05 03:11:33 +00:00
SalmaxChang
69172f08c9 ssr_detector_app: remove tracking denials am: a7127617ba 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18992387

Change-Id: Ib3fb750345c86fc2c8f66ad27a73cec264884c3c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-29 16:10:28 +00:00
SalmaxChang
a7127617ba ssr_detector_app: remove tracking denials 
Avc errors already fixed. Remove tracking denials.

Bug: 207571417
Bug: 205202542
Change-Id: I97d5f732e038dbdaf7885bdb9ca63bc518a97d51
 2022-06-29 15:52:43 +00:00
Sam Ou
30d46d274b sepolicy: fix odpm avc denials am: 65bdbc4862 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19035052

Change-Id: Ieb89884ee444ba9eb06e23f8ab4d20a96fa8c323
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-27 06:48:52 +00:00
Sam Ou
65bdbc4862 sepolicy: fix odpm avc denials 
add wakeup permissions for odpm driver
since we update acc_data based on alarmtimer

Bug: 236798116
Change-Id: Ib898eeebf0e26a723f260a2a8ddb5e5f64d255ed
Signed-off-by: Sam Ou <samou@google.com>
 2022-06-27 06:29:03 +00:00
sukiliu
9eadb411f8 [Do not merge] Remove regmap from list am: 1f681630c4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18845251

Change-Id: I16cbf31a5f95822ad89b4622e18a015f63875f7e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-27 03:55:38 +00:00
sukiliu
1f681630c4 [Do not merge] Remove regmap from list 
Bug: 227286343
Test: PtsSELinuxTestCases
Change-Id: If32c472dcd6c0e0b83008a660ca6bbe6d79f44e3
 2022-06-27 03:33:16 +00:00
Jinting Lin
f099a07968 Remove obsolete sepolicy of silentlogging am: d3d4af1aac am: 6769f9e352 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: I153545fae767387a65fd5d7a0cce7a0c15eeb58b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:56:54 +00:00
Jinting Lin
5d40c0ab34 Remove obsolete sepolicy of silentlogging am: d3d4af1aac am: b924e94b8e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: Ib995967d386d737a905142dbb69ce2f88fe29c83
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:47:04 +00:00
Jinting Lin
6769f9e352 Remove obsolete sepolicy of silentlogging am: d3d4af1aac 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: I7fbe60eee731c910d75113b2b7b1de9f10b227ba
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:28:50 +00:00
Jinting Lin
b924e94b8e Remove obsolete sepolicy of silentlogging am: d3d4af1aac 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: I76365c02940cad7c9495ffa3b98e974ed3e51111
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:27:24 +00:00
Jinting Lin
d3d4af1aac Remove obsolete sepolicy of silentlogging 
Bug: 221384996

Test: adb bugreport
Change-Id: I35a9dae665f11196ec900346c41a3c786bfdf5fa
 2022-06-20 05:48:22 +00:00
Siarhei Vishniakou
1fa5ab3ecc Allow InputProcessor HAL to read display resolution am: 8b103bff07 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18962799

Change-Id: I56cd9e5dcd25278448c7cd864cf3b023c343cc20
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-17 20:58:50 +00:00
Siarhei Vishniakou
8b103bff07 Allow InputProcessor HAL to read display resolution 
Currently, there's no API to read the resolution from the system domain,
so the HAL has to read this from the sysprop provided by the display
code.

Allow the HAL to do so in this CL.

Bug: 236200710
Test: adb shell dmesg | grep input_processor
Change-Id: I23285c21a82748c63fbe20988af42884b9261b66
Merged-In: I23285c21a82748c63fbe20988af42884b9261b66
 2022-06-17 20:31:42 +00:00
Lawrence Huang
8810a2f193 Add network permissions for google camera am: 2c5af2b633 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18803934

Change-Id: I779fe88a1361b51118d95e2af6da595dff8cf2c7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-17 19:38:42 +00:00
Lawrence Huang
2c5af2b633 Add network permissions for google camera 
Investigation here:
https://docs.google.com/document/d/1dARYZBxeJFPTEIMr-0U80Ka68BoPY6-h9VcBDZ8Uon8/edit#

Bug: 230434151
Change-Id: I9b37906ba4c7ba2cdbb23fc7a07f1e9e2aa8d1ab
Test: no more avc errors
 2022-06-17 18:59:12 +00:00
Automerger Merge Worker
c4a80436a0 Merge "allow rlsservice read vendor camera property am: f90d992b0c am: f41b4005dd" into tm-d1-dev-plus-aosp 2022-06-16 12:36:58 +00:00
JimiChen
3ab0915765 allow rlsservice read vendor camera property am: f90d992b0c am: f41b4005dd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18844687

Change-Id: I97e1cc94ceacca9ab0da5fce8b051017cdaec65c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 12:36:44 +00:00
JimiChen
e8a19311d5 allow rlsservice read vendor camera property am: f90d992b0c am: 7e79f7639d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18844687

Change-Id: Ifeac7cc60bcd91c0c8018626a1499b0fca6c4282
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 12:36:43 +00:00
JimiChen
f41b4005dd allow rlsservice read vendor camera property am: f90d992b0c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18844687

Change-Id: Id9857d0edc1f34c53a1af86f7bcb16a17e69dc99
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 12:19:33 +00:00
JimiChen
7e79f7639d allow rlsservice read vendor camera property am: f90d992b0c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18844687

Change-Id: Ie8ff6714c0cf09bb94c462836d5329bd0c0705f3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 12:18:03 +00:00
JimiChen
f90d992b0c allow rlsservice read vendor camera property 
Bug: 233020488
Test: no avc denied
Change-Id: Ie7e68a6e18ba64c18e90e39cadacea5a15364eff
 2022-06-16 12:02:26 +00:00
sukiliu
4296484403 [Do not merge]Update avc error on ROM 8732242 am: c25afee26a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18911481

Change-Id: I7f9d305c7e08f1db8e54625da80b1205b04f3964
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 07:10:11 +00:00
sukiliu
c25afee26a [Do not merge]Update avc error on ROM 8732242 
Bug: 236200710
Test: PtsSELinuxTestCases
Merged-In: I9b4b487aa78a69fe981a542aef1a7dbe368a30ce
Change-Id: I9b4b487aa78a69fe981a542aef1a7dbe368a30ce
 2022-06-16 03:24:58 +00:00
Robb Glasser
fdab89cb53 Allow sensors HAL to rw the sensors registry. am: 31981dfaea 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18801904

Change-Id: Iae2c15d00f64e01312332f0cd446e2bb9692d053
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-14 20:00:17 +00:00
Robb Glasser
31981dfaea Allow sensors HAL to rw the sensors registry. 
The sensors HAL needs full permissions to read and write the sensors
registry for things like runtime calibration.

Bug: 227695036
Test: Denial goes away.
Change-Id: I5ccec3497219acca7c172c1cb0cf1d070996b42b
 2022-06-14 19:20:32 +00:00