Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
786 commits 1 branch 0 tags 63 MiB
Commit graph

786 commits

This branch
This branch
All branches
Author SHA1 Message Date
Ray Chi
3a7647d59c [DO NOT MERGE] usb: Add sepolicy for extcon access 
USB gadget hal will access extcon folder so that this patch
will add new rule to allow USB gadget hal to access extcon.

Bug: 263435622
Test: build pass
Change-Id: I971732c6a40700a85df61170dcf1c3660307b96c
(cherry picked from commit 03fb0f6ceb)
Merged-In: I971732c6a40700a85df61170dcf1c3660307b96c
 2023-02-14 18:13:41 +00:00
Android Build Coastguard Worker
bfcae7eb32 Snap for 9414670 from f5a88c35a4 to tm-qpr2-release 
Change-Id: I78749312c952346ab00f38c0145e5cab9e014c02
 2022-12-17 02:02:55 +00:00
Jenny Ho
f5a88c35a4 Add sepolicy rule to allow dump battery maxfg history 
android.hardwar: type=1400 audit(0.0:7): avc: denied { getattr } for path="/dev/maxfg_history" dev="tmpfs" ino=580 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0 bug=b/240632721

Bug: 254164096
Change-Id: I64ff95ba8db62a8f831d012b4cdf4e6ec973f086
Signed-off-by: Jenny Ho <hsiufangho@google.com>
 2022-12-15 03:03:01 +00:00
Android Build Coastguard Worker
683adbb75b Snap for 9397138 from 810a7c5988 to tm-qpr2-release 
Change-Id: I44abf5e6db8ba1b7072f43dc7484df4001f3220d
 2022-12-13 03:46:28 +00:00
Jack Wu
810a7c5988 ignore shell access on wlc am: 812312fb1c am: e5974267f8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20677740

Change-Id: Ic9e3f1e1c7d029268a6430eda9bfdd8873c30ede
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-12 07:55:16 +00:00
Jack Wu
e5974267f8 ignore shell access on wlc am: 812312fb1c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20677740

Change-Id: I12bf3f89227c1d3cab0ea2ac5863bfbcaf7eb6f9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-12 06:50:08 +00:00
Android Build Coastguard Worker
88b834523d Snap for 9385690 from 5df8045c3b to tm-qpr2-release 
Change-Id: I2f7ad0a9350d7befc417667ea7114be279536869
 2022-12-09 00:03:20 +00:00
Jack Wu
812312fb1c ignore shell access on wlc 
Bug: 261804136
Test: boot
Change-Id: I5f1d321df2daa2ec785e2ad1ac2e02478568b688
Merged-In: I5f1d321df2daa2ec785e2ad1ac2e02478568b688
Signed-off-by: Jack Wu <wjack@google.com>
 2022-12-08 17:58:26 +08:00
chiayupei
5df8045c3b hal_sensors_default: Add sepolicy for MagCC. 
avc: denied { search } for name="battery" dev="sysfs" ino=78703 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=1
avc: denied { read } for name="status" dev="sysfs" ino=78714 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
avc: denied { open } for path="/sys/devices/platform/google,battery/power_supply/battery/status" dev="sysfs" ino=78714 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
avc: denied { getattr } for path="/sys/devices/platform/google,battery/power_supply/battery/status" dev="sysfs" ino=78714 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
avc: denied { read } for name="status" dev="sysfs" ino=78714 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=file permissive=1
avc: denied { search } for name="i2c-p9222" dev="sysfs" ino=69679 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=dir permissive=1
Bug: 254155730
Test: Manually test no avc denied for MagCC

Change-Id: Ie5261b39187ffcdf645ae64727c54643bdbc1c47
Signed-off-by: chiayupei <chiayupei@google.com>
 2022-12-08 07:56:50 +00:00
Android Build Coastguard Worker
f5a1f66b9f Snap for 9371302 from 271a845885 to tm-qpr2-release 
Change-Id: I61dfe152be4f25a2cdee0e308a6f8b2bda3cdf7b
 2022-12-06 00:03:08 +00:00
Wasb Liu
271a845885 hal_health_default: updated sepolicy am: daeff5e18c am: 88e9fb512d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20610808

Change-Id: I4f4cc732f46d00a7c18dc1fb691436aa826e441a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-05 04:56:13 +00:00
Wasb Liu
88e9fb512d hal_health_default: updated sepolicy am: daeff5e18c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20610808

Change-Id: Idb7b4ffa9a74638247fc9bbaa4f697c9945e4c2e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-12-05 03:51:20 +00:00
Android Build Coastguard Worker
f3c943685a Snap for 9364794 from 0237351f52 to tm-qpr2-release 
Change-Id: I8f8ce64b50abcb979c2cb84392519bca060edc7f
 2022-12-03 02:03:18 +00:00
George Lee
0237351f52 Battery Mitigation: Use Brownout Reason - sepolicy 
Brownout Reason replaces startup_bugreport_requested.  Battery
Mitigation needs to be updated.

Bug: 237287659
Test: Ensure lastmeal.txt is properly generated.
Merged-In: Ia03da290f5cb90ebbc7616d46e90064e346a402c
Change-Id: Ic123d704e37aa6d1dcd7377c291b537069ede829
Signed-off-by: George Lee <geolee@google.com>
 2022-12-02 05:13:57 +00:00
Wasb Liu
daeff5e18c hal_health_default: updated sepolicy 
allow android.hardware.health service to access persist_battery_file

11-14 13:53:39.242   872   872 W android.hardwar: type=1400 audit(0.0:17): avc: denied { search } for name="battery" dev="sda1" ino=84 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:persist_battery_file:s0 tclass=dir permissive=0

Bug: 258535661
Bug: 260878511
Test: check for no avc denied on persist_battery_file
Change-Id: I7564b03339e17f9eea4aa5a8feda31bcfdd6100c
Signed-off-by: Wasb Liu <wasbliu@google.com>
Signed-off-by: Ken Tsou <kentsou@google.com>
(cherry picked from commit 24cfe388c5)
 2022-12-02 02:01:24 +00:00
Android Build Coastguard Worker
ef183ee898 Snap for 9358956 from 30e01ffb8c to tm-qpr2-release 
Change-Id: I37ad3f8227c7836253c1734b3b848ae2832658f3
 2022-12-02 00:03:25 +00:00
Ziyi Cui
30e01ffb8c [ DO NOT MERGE ] gs201-sepolicy: pixelstats: enable pixelstats access to perf-metrics 
enable pixelstats access to sysfs path, define sysfs_perfmetrics

Bug: 227809911
Bug: 232541623
Test: Verified the existence of atom and correctness of resume latency, irq stats
Signed-off-by: Ziyi Cui <ziyic@google.com>
Change-Id: If1b95148b59a6816c6795921018dfae68d80550b
 2022-12-01 06:31:22 +00:00
Ziyi Cui
521334a366 gs201-sepolicy:dumpstate: allow dumpstate access sysfs_vendor_metrics 
Test: "adb bugreport" includes metrics capture.

Bug: 246799997
Signed-off-by: Ziyi Cui <ziyic@google.com>
Change-Id: I1c2f4aaf1cd875a37497ca8beacb555d39eeb51e
 2022-12-01 06:27:22 +00:00
Ziyi Cui
2d4a9c02fc [ DO NOT MERGE ] gs201-sepolicy: pixelstats: enable pixelstats access to temp-residency-metrics 
enable pixelstats access to sysfs path
Bug: 246799997
Test: Verified the existence of atom and correctness of atom stats
Signed-off-by: Ziyi Cui <ziyic@google.com>
Change-Id: I4a731d40a586e01c484cf95c57fb16a03f5e6ceb
 2022-12-01 06:27:22 +00:00
Android Build Coastguard Worker
73adfe41cf Snap for 9354090 from 24cfe388c5 to tm-qpr2-release 
Change-Id: Id47d8082dcc6e0f6464bb0138d8887328bbbea8f
 2022-12-01 00:03:22 +00:00
Wasb Liu
24cfe388c5 hal_health_default: updated sepolicy 
allow android.hardware.health service to access persist_battery_file

11-14 13:53:39.242   872   872 W android.hardwar: type=1400 audit(0.0:17): avc: denied { search } for name="battery" dev="sda1" ino=84 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:persist_battery_file:s0 tclass=dir permissive=0

Bug: 258535661
Test: check for no avc denied on persist_battery_file
Change-Id: I7564b03339e17f9eea4aa5a8feda31bcfdd6100c
Signed-off-by: Wasb Liu <wasbliu@google.com>
 2022-11-30 09:44:34 +00:00
Stephen Crane
5cd114d3a0 Allow Trusty storageproxy property 
Allows the Trusty storageproxyd to set ro.vendor.trusty.storage.fs_ready
when the data filesystems are ready for use, and allows vendor init to
query and wait on this property.

Test: build, flash, test app loading
Bug: 258018785
Change-Id: I0b4f80371385bf0ddb0c44e81b1893bb80c7a63d
Merged-In: I0b4f80371385bf0ddb0c44e81b1893bb80c7a63d
 2022-11-28 19:48:56 +00:00
Android Build Coastguard Worker
6d747832d4 Snap for 9325773 from a2e6c51431 to tm-qpr2-release 
Change-Id: Id78c1384afcaba07108b288832af644549ae5ed7
 2022-11-24 00:04:01 +00:00
Steve Pfetsch
a2e6c51431 gs201-sepolicy: provide permission for TouchInspector app [DO NOT MERGE] 
Resolve these access violations:
avc: denied { write } for name="driver_test" dev="proc" ino=4026535572
scontext=u:r:platform_app:s0:c512,c768 tcontext=u:object_r:proc_touch:s0
tclass=file permissive=1 app=com.google.touch.touchinspector
avc: denied { open } for path="/proc/fts/driver_test" dev="proc"
ino=4026535572 scontext=u:r:platform_app:s0:c512,c768
tcontext=u:object_r:proc_touch:s0 tclass=file permissive=1
app=com.google.touch.touchinspector
avc: denied { getattr } for path="/proc/fts/driver_test" dev="proc"
ino=4026535572 scontext=u:r:platform_app:s0:c512,c768
tcontext=u:object_r:proc_touch:s0 tclass=file permissive=1
app=com.google.touch.touchinspector
avc: denied { read } for name="driver_test" dev="proc" ino=4026535572
scontext=u:r:platform_app:s0:c512,c768 tcontext=u:object_r:proc_touch:s0
tclass=file permissive=1 app=com.google.touch.touchinspector

avc: denied { open } for path="/proc/fts_ext/driver_test" dev="proc"
ino=4026535574 scontext=u:r:platform_app:s0:c512,c768
tcontext=u:object_r:proc_touch:s0 tclass=file permissive=1
app=com.google.touch.touchinspector
avc: denied { getattr } for path="/proc/fts_ext/driver_test" dev="proc"
ino=4026535574 scontext=u:r:platform_app:s0:c512,c768
tcontext=u:object_r:proc_touch:s0 tclass=file permissive=1
app=com.google.touch.touchinspector

Bug: 182118395
Signed-off-by: Steve Pfetsch <spfetsch@google.com>
Change-Id: Ia3bd2323b77134b8e47d858f36756780dec98c19
 2022-11-22 23:48:19 +00:00
Android Build Coastguard Worker
600f28c3f3 [coastguard skipped] Merge sparse cherrypicks from sparse-9293603-L15900000957431128 into tm-qpr2-release. 
Change-Id: I3df1268e623a75d523d461655228eb6c170a7355
 2022-11-18 19:06:30 +00:00
Android Build Coastguard Worker
e4b0d83bbf Merge cherrypicks of [20468124] into sparse-9293603-L15900000957431128. 
Change-Id: I47486945d527102e8df6e6ffdf45bfd0620b61bb
 2022-11-18 19:01:40 +00:00
George Lee
71560f7402 gs201-sepolicy: Add BrownoutDetection app [DO NOT MERGE] 
This app files bugreport for user-debug build with reboot reason = ocp
or uvlo.  Removed the dependency on BetterBug.

Bug: 237287659
Test: Ensure bugreport is generated under user-debug build with reboot
reason = ocp or uvlo.
Signed-off-by: George Lee <geolee@google.com>
Change-Id: Ib8fceb62e66e9d561a6597687ea3cbe5ac9a832d
(cherry picked from commit d59612c409)
Merged-In: Ib8fceb62e66e9d561a6597687ea3cbe5ac9a832d
 2022-11-18 19:01:31 +00:00
Android Build Coastguard Worker
2110e8f7dc Snap for 9301146 from d59612c409 to tm-qpr2-release 
Change-Id: I4ecf9d49686fb11f23d96ceaa9ab78c824ed376a
 2022-11-17 00:07:02 +00:00
George Lee
d59612c409 gs201-sepolicy: Add BrownoutDetection app [DO NOT MERGE] 
This app files bugreport for user-debug build with reboot reason = ocp
or uvlo.  Removed the dependency on BetterBug.

Bug: 237287659
Test: Ensure bugreport is generated under user-debug build with reboot
reason = ocp or uvlo.
Signed-off-by: George Lee <geolee@google.com>
Change-Id: Ib8fceb62e66e9d561a6597687ea3cbe5ac9a832d
 2022-11-16 18:20:57 +00:00
Android Build Coastguard Worker
f15ca4355e Snap for 9290907 from 4baa8bea9c to tm-qpr2-release 
Change-Id: Ia21ce6e83871b55b7b76dd41a5f16ce026be054d
 2022-11-15 00:07:08 +00:00
Minchan Kim
4baa8bea9c dumpstate: allow dumpstate access pixel specific trace events 
At bugreport, it's useful to debug problems with having trace events.
Allow dumpstate access pixel trace event directory and files.

Test: "adb bugreport" includes trace event capture.
Bug: 238728493
Change-Id: Ia3fe7c149bfa0d0d192070ff28513384898af917
Signed-off-by: Minchan Kim <minchan@google.com>
 2022-11-14 19:00:39 +00:00
Android Build Coastguard Worker
0d427ac3b1 Snap for 9274385 from 8140a50845 to tm-qpr2-release 
Change-Id: Iec078bca1f8102417f083146ed44d23db050c5de
 2022-11-10 00:03:22 +00:00
Rick Chen
8140a50845 Allow CHRE to use EPOLLWAKEUP [DO NOT MERGE] 
avc: denied { block_suspend } for comm="UsfTransport" capability=36 scontext=u:r:chre:s0 tcontext=u:r:chre:s0 tclass=capability2 permissive=0

Bug: 238666865
Test: Check no chre avc denied.
Change-Id: Ie936055550c6221beae394c264d664c1e76f946b
Signed-off-by: Rick Chen <rickctchen@google.com>
 2022-11-09 15:06:39 +00:00
Android Build Coastguard Worker
66c428c052 Snap for 9268991 from 8427e1db8d to tm-qpr2-release 
Change-Id: I1bfd71266bb5ea93d4d224d6e36cbf7e647404be
 2022-11-09 00:03:20 +00:00
George Lee
8427e1db8d betterbug: Fixed sepolicy related to File [DO NOT MERGE] 
Added File Attachment sepolicy for betterbug

Bug: 237287659
Test: Attach files from local directory and confirm it can be attached.
Signed-off-by: George Lee <geolee@google.com>
Change-Id: Ie2ee163794a4b955915a1b62b12d5aa625931034
 2022-11-08 15:11:18 +00:00
Roger Fang
35112bba62 [DO NOT MERGE] sepolicy: add permission for CCA rate of pixelstats-vend 
pixelstats-vend: type=1400 audit(0.0:7): avc: denied { read } for name="cca_rate_read_once" dev="sysfs" ino=100809 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Bug: 249225148
Test: Manually test passed

Change-Id: I802b79417cd9ce23386bb62eccb151610bfb8ac1
Signed-off-by: Roger Fang <rogerfang@google.com>
 2022-11-08 09:53:37 +00:00
Android Build Coastguard Worker
315e064377 Snap for 9264471 from 40be3818e1 to tm-qpr2-release 
Change-Id: If7219f91ab6bd5968bb61908b9c70e6bad1586cd
 2022-11-08 00:12:00 +00:00
Android Build Coastguard Worker
e5af3efc4d Merge cherrypicks of [20395514] into tm-qpr2-release. 
Change-Id: I14e2e328f9521e79502205acb74777ad4668aacc
 2022-11-07 03:33:34 +00:00
George Lee
a85164a440 betterbug: Fixed sepolicy related to mediaserver [DO NOT MERGE] 
Added mediaserver sepolicy for betterbug

Bug: 237287659
Test: Run same video capture on Betterbug to confirm video can be
captured.
Signed-off-by: George Lee <geolee@google.com>
Change-Id: I5226bdbf9d4fccb991161bbe6ac4edf8fd3b15a7
(cherry picked from commit 40be3818e1)
Merged-In: I5226bdbf9d4fccb991161bbe6ac4edf8fd3b15a7
 2022-11-07 03:33:32 +00:00
Android Build Coastguard Worker
29e1cd1b85 [coastguard skipped] Merge sparse cherrypicks from sparse-9258676-L67400000957223967 into tm-qpr2-release. 
Change-Id: Id392951cf8ff3b3bf2d43922494c6241cf2341c1
 2022-11-07 03:20:00 +00:00
Android Build Coastguard Worker
00acd4815a Merge cherrypicks of [20395514] into sparse-9258676-L67400000957223967. 
Change-Id: I5e69a83ba3bb9de15a4abb08d1b1aaf738edd691
 2022-11-07 03:15:41 +00:00
George Lee
293b13687f betterbug: Fixed sepolicy related to mediaserver [DO NOT MERGE] 
Added mediaserver sepolicy for betterbug

Bug: 237287659
Test: Run same video capture on Betterbug to confirm video can be
captured.
Signed-off-by: George Lee <geolee@google.com>
Change-Id: I5226bdbf9d4fccb991161bbe6ac4edf8fd3b15a7
(cherry picked from commit 40be3818e1)
Merged-In: I5226bdbf9d4fccb991161bbe6ac4edf8fd3b15a7
 2022-11-07 03:15:39 +00:00
George Lee
40be3818e1 betterbug: Fixed sepolicy related to mediaserver [DO NOT MERGE] 
Added mediaserver sepolicy for betterbug

Bug: 237287659
Test: Run same video capture on Betterbug to confirm video can be
captured.
Signed-off-by: George Lee <geolee@google.com>
Change-Id: I5226bdbf9d4fccb991161bbe6ac4edf8fd3b15a7
 2022-11-05 18:45:08 +00:00
Android Build Coastguard Worker
d09561718e Snap for 9257771 from f9552297fa to tm-qpr2-release 
Change-Id: If6565d08d8c3062edb53d2d60b25637f223e7cdc
 2022-11-05 01:03:03 +00:00
Star Chang
f9552297fa Add sepolicy for TWT to dumpstate 
Bug: 253348062
Test: dump bugreport ok
Signed-off-by: Star Chang <starchang@google.com>
Change-Id: I0958fef496302df3f5e6e188f15117de78988a62
 2022-11-04 01:31:19 +00:00
Android Build Coastguard Worker
b8ba2e1070 Snap for 9248884 from 9877742035 to tm-qpr2-release 
Change-Id: Iaad7c79b1c875dd22902e8453d51079999477f93
 2022-11-02 23:03:10 +00:00
Puma Hsu
9877742035 Add xhci-hcd-exynos.6 wakeup path for suspend_control 
Bug: 255270480
Test: verified with forrest test build
Change-Id: I5e2eed4d5e20361d86f6d6be8c92ca337e4ee004
Signed-off-by: Puma Hsu <pumahsu@google.com>
 2022-11-02 07:39:53 +00:00
Android Build Coastguard Worker
77ed34ebf8 Snap for 9243084 from 0810814b49 to tm-qpr2-release 
Change-Id: I6e0ceb725582f6093bfe4e8ff45bb689d31f5bce
 2022-11-01 23:03:06 +00:00
pointerkung
0810814b49 Add required sepolicy rule for Camera 
Grant access for TNR max_freq to let libperfmgr can control it via powerhint.

Bug: 243729855
Test: Build pass, GCA, Control TNR max_freq via powerhint
Change-Id: I8f8faa360d9908afe3fe0de3c322a2be356b86c8
 2022-11-01 11:33:43 +00:00
Jenny Ho
441a3ad3ef Add permission for logbuffer_bd 
Bug: 242679204
Signed-off-by: Jenny Ho <hsiufangho@google.com>
Change-Id: Ie5c9829ee1a4980689c933273a273f1f4ac612b6
 2022-11-01 05:34:18 +00:00