Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
205 commits 1 branch 0 tags 63 MiB
Commit graph

123 commits

Author SHA1 Message Date
Adam Shih
23b637e260 fix mediacodec_samsung service access 
Bug: 202906949
Test: boot with no relevant errors
Change-Id: I015c58f1b223978cb0e61377f5fc6930477c9a53
 2021-10-27 13:24:52 +08:00
Adam Shih
e171a156e2 fix mediacodec_google service access 
Bug: 202906901
Test: boot with no relevant errors
Change-Id: I8ba645de225af4a25c52cc14eb05eb60a64ea202
 2021-10-27 13:24:46 +08:00
Adam Shih
5e572d5c72 fix hal_camera_default service access 
10-25 11:52:35.916   437   437 E SELinux : avc:  denied  { find } for pid=711 uid=1000 name=android.frameworks.stats.IStats/default scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:fwk_stats_service:s0 tclass=service_manager permissive=1
Bug: 202906784
Test: boot with no hal_camera_default errors

Change-Id: I0e21cc11808b973c859ddc2ddebc0db81f999d9f
 2021-10-27 13:24:34 +08:00
Adam Shih
abf31d56d6 fix secure element service access 
Bug: 202902683
Test: boot with no secure element errors
Change-Id: I84ee827d356e6a99af192cce9178fb4f408de5ec
 2021-10-25 11:37:10 +08:00
Adam Shih
0ae5acc904 fix graphics_composer services denials 
10-25 11:28:32.230   438   438 E SELinux : avc:  denied  { add } for pid=500 uid=1000 name=com.google.hardware.pixel.display.IDisplay/default scontext=u:r:hal_graphics_composer_default:s0 tcontext=u:object_r:hal_pixel_display_service:s0 tclass=service_manager permissive=1
10-25 11:28:33.787   438   438 E SELinux : avc:  denied  { find } for pid=500 uid=1000 name=android.hardware.power.IPower/default scontext=u:r:hal_graphics_composer_default:s0 tcontext=u:object_r:hal_power_service:s0 tclass=service_manager permissive=1
Bug: 202906947
Test: boot with no graphics_composer errors

Change-Id: I4174cbcacb7149427814ca67703799ab02b992e4
 2021-10-25 11:31:39 +08:00
Adam Shih
be8aedd6ac fix hal_fingerprint_default denails 
10-25 11:19:03.649   430   430 E SELinux : avc:  denied  { find } for pid=958 uid=1000 name=android.hardware.power.IPower/default scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:hal_power_service:s0 tclass=service_manager permissive=1
10-25 11:19:04.509   430   430 E SELinux : avc:  denied  { find } for pid=958 uid=1000 name=android.frameworks.stats.IStats/default scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:fwk_stats_service:s0 tclass=service_manager permissive=1
Bug: 202906981
Test: boot with no fingerprint errors

Change-Id: I95dcda0698c7fcec1e4874b95b598bc987e83e58
 2021-10-25 11:24:26 +08:00
Adam Shih
a5f61547cf remove legacy folder 
Bug: 196916111
Test: boot to home
Change-Id: I33e4cf4a339092a31c951098e982c0bd38e53852
 2021-10-20 09:33:29 +08:00
Adam Shih
90068020c3 review property settings 
Bug: 203025336
Test: build pass
Change-Id: I48bc1b0a5ffc4631fec04750c9b58bed8f15d39d
 2021-10-18 12:01:42 +08:00
Adam Shih
503d402cb2 review the rest of file declaration 
Bug: 203025336
Test: build pass
Change-Id: I330a8dd46bdf6b731d4f7f61544e1d1f1e59876c
 2021-10-18 12:01:13 +08:00
Adam Shih
37e4973df6 review file declaration 
Bug: 203025336
Test: build pass
Change-Id: I8cfec54ac035f41ccafc58f1ec0b125613e0742b
 2021-10-18 10:31:31 +08:00
Adam Shih
11c3b49e36 review file_contexts 
Bug: 203025336
Test: check if every path exists
Change-Id: I156c4953a50d888e54249038b45992d134b4aaca
 2021-10-18 00:46:45 +00:00
Adam Shih
e5b1c96b00 review genfs_contexts besides bluetooth 
Bug: 203025336
Test: check each path's existence
Change-Id: I0b45434f544fb243bd2810ea7abdb896056aed0e
 2021-10-15 03:45:59 +00:00
Adam Shih
37a0cb7547 review sys file nodes 
Bug: 203025336
Test: check if the paths exist
Change-Id: I5141545211e19d3c18b2c3bb315c10d33d5e3774
 2021-10-15 03:45:59 +00:00
Adam Shih
cf06f9ccbf review proc, tracefs, and system_suspend nodes 
Bug: 203025336
Test: check if each file path exists
Change-Id: I980742978599c162a6c0d09fa2a3a07d97434981
 2021-10-15 03:45:59 +00:00
Bart Van Assche
c6a7058dc3 Stop using the bdev_type SELinux attribute 
The bdev_type is being removed from all SELinux policy files. Hence this
patch.

Bug: 202520796
Test: Treehugger
Change-Id: I475ff63b3f77f1bfe49519b76bb31b90c3216105
Signed-off-by: Bart Van Assche <bvanassche@google.com>
 2021-10-15 01:52:10 +00:00
Adam Shih
0b4e85afe7 review debugfs 
Bug: 203025336
Test: Boot to home with those files labeled
Change-Id: Ibe758555512417953eb9726bdba05c4ac2ff2ccf
 2021-10-14 13:57:18 +08:00
Adam Shih
0b42f3ba82 review file_contexts 
Bug: 203025336
Test: boot to home and check if the files are there
Change-Id: I2b748b18cca389d7fdd8b1b472dcb1605e0ddaaa
 2021-10-14 13:34:33 +08:00
Adam Shih
0a570d1bc1 review hw service settings 
Bug: 196916111
Test: boot to home
Change-Id: I63bc13119cee3564fd577b12aba9042f484ec18f
 2021-10-14 04:01:42 +00:00
Adam Shih
bfd5097be2 dispatch service related error 
Bug: 202906787
Test: pts-tradefed run pts -m PtsSELinuxTest

Change-Id: Ifbdf1de156994572b8fedfd18180d3821ef1594c
 2021-10-14 10:50:12 +08:00
Jaegeuk Kim
bf900e2ae5 allow to convert /efs to f2fs 
Bug: 201348703
Signed-off-by: Jaegeuk Kim <jaegeuk@google.com>
Change-Id: If69f1443a0ee4d46a468a33524e8a51f774b2d28
 2021-10-14 02:17:56 +00:00
Konstantin Vyshetsky
54b0addb16 convert_to_f2fs.sh: add sepolicy 
Add entries for convert_to_f2fs.sh executable.

Bug: 202511062
Signed-off-by: Konstantin Vyshetsky <vkon@google.com>
Change-Id: I76ca5e169efec06f7a856e3938f50cfee5e6a7f3
 2021-10-14 02:17:56 +00:00
Adam Shih
4d8c9e5940 review legacy contexts and keys 
Bug: 196916111
Test: build pass and boot to home
Change-Id: I1b709cf6617668418150f269359eaa28421c1d43
 2021-10-14 10:09:05 +08:00
Adam Shih
5b51181f96 review grilservice_app 
Bug: 198532074
Test: boot with gril app started
Change-Id: I9e21bee23ad2cbb7e6d0e7363780ba0fbf5adb3b
 2021-10-14 10:08:56 +08:00
Shiyong Li
cc27fae6e5 allow hwc to access displaycolor service 
Fix the following violations:
SELinux : avc:  denied  { add } for pid=487 uid=1000 name=displaycolor
scontext=u:r:hal_graphics_composer_default:s0
tcontext=u:object_r:vendor_displaycolor_service:s0 tclass=service_manager
permissive=1
SELinux : avc:  denied  { find } for pid=487 uid=1000 name=displaycolor
scontext=u:r:hal_graphics_composer_default:s0
tcontext=u:object_r:vendor_displaycolor_service:s0 tclass=service_manager
permissive=1

Bug: 199467938
Test: check avc denials while hwc loads calibration file
Signed-off-by: Shiyong Li <shiyongli@google.com>
Change-Id: I43865b0a0fc406dc1955b58a80295c556d650797
 2021-10-13 17:21:58 +00:00
Adam Shih
1aaa9d5be9 review hardware_info_app 
Bug: 196916111
Test: boot with app correctly labeled
Change-Id: I31335fff6356edeedc10ebd2e55b8ed62e39ee02
 2021-10-08 11:39:38 +08:00
Adam Shih
a787a30f8d review trusty domains 
Bug: 198723116
Test: boot to home with trusty domains started
Change-Id: If5c6c0a75b6ad0eb032f637fd51ab2e4cea1e389
 2021-10-08 10:48:04 +08:00
Adam Shih
34693feadc review mediacodec 
Bug: 196916111
Test: boot with google and samsung mediacodec running
Change-Id: I7aaee5def774c8b7c19699f4da9b0b51f4869be9
 2021-10-06 00:47:41 +00:00
Adam Shih
791aeae701 review ramdump_app 
Bug: 196916111
Test: boot to home
Change-Id: I756f9022a7c20392dd8d07d2be7c972395176629
 2021-10-06 00:47:41 +00:00
Kris Chen
fc82a2b242 fingerprint: Fix SELinux error 
Fix the following SELinux error:
E init    : Could not start service 'vendor.fps_hal' as part of class 'late_start': File /vendor/bin/hw/android.hardware.biometrics.fingerprint@2.1-service.goodix(labeled "u:object_r:vendor_file:s0") has incorrect label or no domain transition from u:r:init:s0 to another SELinux domain defined.

Bug: 201500671
Test: build and run on DUT.
Change-Id: I85bd89edfaa6aaca003a5be21f4a045ce5944ab9
 2021-10-05 03:44:27 +00:00
Adam Shih
16c10d6a33 review init-insmod-sh 
Bug: 196916111
Test: boot to home
Change-Id: I085ff319e08c65cfc3d51fb480259fa137f8e3f3
 2021-10-05 01:42:16 +00:00
Adam Shih
798b72ad9c review hal_tetheroffload_default 
Bug: 201599426
Test: boot to home with hal_tetheroffload_default started
Change-Id: I85491753dc7336eff285f61c71ad51840a13d7c3
 2021-10-05 01:42:16 +00:00
Adam Shih
618ea304d4 review tcpdump_logger 
Bug: 201599426
Test: boot with tcpdump_logger started
Change-Id: I023f48ea45b8d5a2180c91577241e9d9410469a4
 2021-09-30 14:40:10 +08:00
Adam Shih
5ec277bf7c review hal_wifi 
Bug: 201599426
Test: boot to home
Change-Id: I05538169275a7e8dc7638e075114440abda8c11b
 2021-09-30 11:13:35 +08:00
Adam Shih
82cdc92c84 review hal_usb 
Bug: 201599187
Test: boot with hal_usb_impl started
Change-Id: I77875c6911f6582454d666a57ed59cc1e386885b
 2021-09-30 11:00:43 +08:00
Adam Shih
7ac4d6ae8c review hal_power_stats_default 
Bug: 201230944
Test: make sure all file contexts took effect
Change-Id: Ifefb09f69b722747ccbb1c8cfbd423b27204e4e4
 2021-09-28 14:42:35 +08:00
Adam Shih
fb11c9aaa0 restore rlsservice 
01-01 20:00:12.304   425   425 E SELinux : avc:  denied  { add } for pid=704 uid=1000 name=rlsservice scontext=u:r:rlsservice:s0 tcontext=u:object_r:default_android_vndservice:s0 tclass=service_manager permissive=1
01-01 20:00:11.374     1     1 I SELinux : Context u:object_r:rlsservice_exec:s0 is not valid (left unmapped).
rlsservice uses apex, that's why it cannot be found in vendor.img
Bug: 196916111
Test: boot with rlsservice started

Change-Id: I8e052d75473f9431bbaeafb74d0e4043b02a1b51
 2021-09-28 14:23:36 +08:00
Adam Shih
758dd9c309 review hal_power_default related contexts 
Bug: 201230944
Test: make sure all contexts setting take effect
Change-Id: I1e3be99700560583153e70efdd21de5356b97c74
 2021-09-28 13:54:03 +08:00
Adam Shih
ad68e7dc96 remove hal_health_default 
It will be easier to review it through boot test
Bug: 201230944
Test: boot to home

Change-Id: I5008c4054ce04f062a8ca01a1e2bfd4cfe8daf70
 2021-09-28 08:04:38 +08:00
Adam Shih
962e580a3c review hal_wlc 
Bug: 201230944
Test: boot with hal_wlc started
Change-Id: I81d5ff7ed4745fb6d760f59c6acc50cc1732c95e
 2021-09-28 08:03:15 +08:00
Adam Shih
54e3056f4c review vendor_battery_profile_prop 
The action came from PTS
Bug: 196916111
Test: boot to home

Change-Id: I950fb0fa3fd959d3c176d5fc960b57f905034d67
 2021-09-22 10:21:27 +08:00
Adam Shih
3f1c23ad58 rewrite hbmsv app 
This app has different sources for every device
Bug: 196916111
Test: boot to home

Change-Id: Iccbdc94eb68c03a5e7b5f1081e802b29c11cb5b0
 2021-09-17 12:46:12 +08:00
Adam Shih
368ac5f679 review hal_nfc_default 
Bug: 196916111
Test: boot to home with nfc hal started
Change-Id: Iee8c30777f83788ff703c8094c03182171d713c5
 2021-09-17 11:06:51 +08:00
Adam Shih
d57c9cd1fc review graphics related sepolicy 
Bug: 196916111
Test: boot to home
Change-Id: I43a875fb69e4237009b0515d8db6ebac8e2982b5
 2021-09-16 14:07:31 +08:00
Adam Shih
01d2b96516 restart dauntless sepolicy 
Bug: 199685763
Test: build ROM with relevant modules labeled correctly
Change-Id: I9d01ad1dea9da059cb91142adadd3f55f50cf9ca
 2021-09-16 04:45:52 +00:00
Adam Shih
256795caa7 review SSR app 
Bug: 198532074
Test: boot with SSR app labeled
Change-Id: I7fd0765ffdcc5632be1c91a28de25c6e1e531e26
 2021-09-14 04:00:15 +00:00
Adam Shih
2a422d7159 remove fingerprint policy 
Bug: 196916111
Test: boot ot home with fingerprint hal started
Change-Id: I24a81eb5bae26120e66e7d77f9672566bb1f049b
 2021-09-13 14:59:36 +08:00
Adam Shih
953c43b31a remove untraceable rules 
Bug: 196916111
Test: boot to home
01-01 12:00:13.140   903   903 I Binder:903_1: type=1400 audit(0.0:9): avc: denied { quotaget } for scontext=u:r:installd:s0 tcontext=u:object_r:modem_img_file:s0 tclass=filesystem permissive=1

Change-Id: Iec8f2495b13df6b035af0cf11f67cd1525bcf9ea
 2021-09-13 14:59:16 +08:00
Adam Shih
cf1ea7aad5 review block devices 
Bug: 196916111
Test: boot with those partition mounted with no avc error
Change-Id: I6248be92d19abf37f5b901aa6101436832813f42
 2021-09-08 12:34:14 +08:00
Adam Shih
95cc78f004 review ofl_app 
Bug: 198532074
Test: boot with ofl app labeled correctly
Change-Id: Ic00207c063e6c8771c2c6b077169ae1d25c77225
 2021-09-08 12:17:23 +08:00
Adam Shih
89923acb04 review radio app 
Bug: 198532074
Test: boot with app correctly labeled
Change-Id: Iba1f5c949052fafca8e629aba24484a7705f3f21
 2021-09-08 11:27:34 +08:00