device_google_gs201

Author	SHA1	Message	Date
Tommy Chiu	b7790aa7a8	RKP: Add IRemotelyProvisionedComponent service Bug: 212643050 Bug: 221503025 Change-Id: I7932ba96d0d7dd603d360cd7319997a7c108500a	2022-03-01 06:10:23 +00:00
Joseph Jang	5fb066e143	identity: Add sepolicy permission for hal_identity_citadel to find hal_remotelyprovisionedcomponent_service log: SELinux : avc: denied { find } for pid=885 uid=9999 name=android.hardware.security.keymint.IRemotelyProvisionedComponent/strongbox scontext=u:r:hal_identity_citadel:s0 tcontext=u:object_r:hal_remotelyprovisionedcomponent_service:s0 tclass=service_manager permissive=0 Bug: 218613398 Change-Id: I124ea5898609a3f68bee13b6db931878252d4081	2022-02-24 02:20:37 +00:00
Adam Shih	436106d52f	Let citadel talk to system_server Bug: 205904322 Test: no request loop caused by citadeld Change-Id: Ia258ed2555d82eb2ea2b139a266c8f76d3b29d06	2022-02-11 06:54:28 +00:00
Adam Shih	be9bc5e2da	Grant hal_weaver_citadel access to vndbinder and citadeld Test: boot to home under enforcing mode Bug: 205657092 Bug: 205904286 Change-Id: Ic6f46f0c827d202fd81fb744f4ec3241b24396d6	2022-01-04 03:48:16 +00:00
Adam Shih	70d78900fd	Grant init_citadel access Test: boot to home under enforcing mode Bug: 205655298 Bug: 205779736 Bug: 205904401 Change-Id: Ia7c1033240970122f3af79428bdb9012dcbc9d45	2022-01-04 03:48:04 +00:00
Adam Shih	b627a2f18b	Grant citadeld access Test: boot to home under enforcing mode Bug: 205657177 Bug: 205904322 Change-Id: I49a7f14d4948f94814067e7ef137186610547033	2022-01-04 03:47:51 +00:00
Adam Shih	bc651b87ce	let citadel and camera hal use binder Bug: 205904207 Test: boot with no relevant error log Change-Id: I0544f0ea645c5e594279bfda5aef4714c7929d26	2021-11-16 11:37:38 +08:00
Tommy Chiu	94f78934d9	Keymint: Fix SELinux denial Also remove -dontaudit- configuration. Bug: 205073229 Bug: 205655569 Bug: 205904323 Change-Id: If8de3b4e6ee01488fdd563b702fbba1bd7c73ef0	2021-11-15 16:12:38 +00:00
Joseph Jang	b4393a0bf3	Fix SELinux error coming from hal_identity_citadel Bug: 205657024 Change-Id: Ic23b631eb63cf13ba7e08215590e73386d2a3126	2021-11-11 14:52:05 +08:00
Adam Shih	c0d04c41b3	fix citadeld service access Bug: 204718569 Test: boot with no relevant error Change-Id: Iba8c01f34c4453c8001e56b25089b467c4de79ea	2021-11-01 10:45:13 +08:00
Adam Shih	9cb1f625ba	fix hal_weaver_citadel denials Bug: 202907040 Test: boot with nno relevant errors Change-Id: Ieb7a57518b433cc6cd2849afb58c8616b409db13	2021-10-25 11:09:06 +08:00
Adam Shih	fc1ec67aa4	fix init_citadel service access Bug: 202906904 Test: boot to home with no relevant error Change-Id: I6729ced49cbbecbc33234e311fb81652a065fe39	2021-10-20 10:41:56 +08:00
Adam Shih	ecc3a24449	fix identity service access 10-20 10:32:58.701 438 438 E SELinux : avc: denied { find } for pid=742 uid=9999 name=android.hardware.citadel.ICitadeld scontext=u:r:hal_identity_citadel:s0 tcontext=u:object_r:citadeld_service:s0 tclass=service_manager permissive=1 Bug: 202906902 Test: boot to home with no relevant error Change-Id: Ia6e09343843f9a5c96e06998ba5c50fb64948d7f	2021-10-20 10:35:18 +08:00
Adam Shih	4c20c40f50	Fix hal_keymint_citadel service access 10-20 10:24:31.155 432 432 E SELinux : avc: denied { find } for pid=481 uid=1064 name=android.hardware.citadel.ICitadeld scontext=u:r:hal_keymint_citadel:s0 tcontext=u:object_r:citadeld_service:s0 tclass=service_manager permissive=1 Bug: 202907039 Test: boot to home with no keymint errors Change-Id: I7935fe52a9774f8fca67336be9c9d47fe2675756	2021-10-20 10:26:18 +08:00
Adam Shih	56bef214d3	fix citadeld's service access Bug: 202906931 Test: boot with no relevant logs Change-Id: Ic65c6f218f69a1afa14fcd1b6eb0feacf48ea54f	2021-10-20 09:54:52 +08:00
Adam Shih	01d2b96516	restart dauntless sepolicy Bug: 199685763 Test: build ROM with relevant modules labeled correctly Change-Id: I9d01ad1dea9da059cb91142adadd3f55f50cf9ca	2021-09-16 04:45:52 +00:00

16 commits