device_google_gs201

Author	SHA1	Message	Date
Labib	8f63e40658	Let RadioExt talk to bt hal am: `2b189b45af` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17821687 Change-Id: I41c1cd2eb48ac552fcc56cd0c83194acbd8a248f Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-20 03:57:54 +00:00
Labib	2b189b45af	Let RadioExt talk to bt hal Bug: 227122249 Test: Manual Change-Id: I9f41615e8e862af147d6f47e5e4c4e0dde40c233	2022-04-20 03:20:39 +00:00
chungkai	3a8df849f1	sepolicy: fix avc denials am: `32bf1ffbf7` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17800453 Change-Id: Ic7f02808fc2e363ea4d30b7cab4ac6b79db0efed Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-20 03:02:19 +00:00
chungkai	32bf1ffbf7	sepolicy: fix avc denials add potential paths for i2c peripheral devices sine we enable parallel module loading Bug: 226887726 Test: do bugreport without avc denials Signed-off-by: chungkai <chungkai@google.com> Change-Id: I4af39bb6e620a59e02417a06c1dabd45df360fc3	2022-04-20 02:22:31 +00:00
Jason Macnak	5e49f73b7c	Remove sysfs_gpu type definition am: `a77fc2a6df` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17007102 Change-Id: I621268fe203c8f2c6373ff55ad168d32bb15a2f6 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-19 16:24:57 +00:00
Jason Macnak	a77fc2a6df	Remove sysfs_gpu type definition ... as it has moved to system/sepolicy. Bug: b/161819018 Test: presubmit Change-Id: I107f92617bea56590b5af351341cc1c3b2844360 Merged-In: I107f92617bea56590b5af351341cc1c3b2844360	2022-04-19 15:59:04 +00:00
Ted Lin	e5213f1820	Sepolicy: add the system_app.te for hal_wlc am: `55f4e61c8c` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17750775 Change-Id: I4e0ad90285d75ae8ae8b8a2ea231980fabcf1d2e Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-19 06:33:45 +00:00
Ted Lin	55f4e61c8c	Sepolicy: add the system_app.te for hal_wlc 04-11 20:28:15.435 523 523 I auditd : avc: denied { find } for interface=vendor.google.wireless_charger::IWirelessCharger sid=u:r:system_app:s0 pid=3755 scontext=u:r:system_app:s0 tcontext=u:object_r:hal_wlc_hwservice:s0 tclass=hwservice_manager permissive=0 Bug:229036607 Test: adb bugreport Change-Id: I40562204b3517b2861b2a52466f9cde04a5321c5 Signed-off-by: Ted Lin <tedlin@google.com>	2022-04-19 06:11:19 +00:00
Jerry Huang	f5bbe7b88a	Allow mediacodec_google to access gpu_device am: `9bc45b2d60` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17731167 Change-Id: Id2e4061ed41734a687dc5268da2487d99ad78763 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-18 07:19:17 +00:00
Jerry Huang	9bc45b2d60	Allow mediacodec_google to access gpu_device Bug: 228794372 Test: android.media.decoder.cts.DecoderTest#testAV1HdrToSdr The change is for following error: 04-08 17:02:44.020 1046 7284 7284 W HwBinder:7284_3: type=1400 audit(0.0:70491): avc: denied { getattr } for path="/dev/mali0" dev="tmpfs" ino=1052 scontext=u:r:mediacodec_google:s0 tcontext=u:object_r:gpu_device:s0 tclass=chr_file permissive=0 04-08 17:02:44.028 1046 7284 7284 W HwBinder:7284_3: type=1400 audit(0.0:70492): avc: denied { getattr } for path="/dev/mali0" dev="tmpfs" ino=1052 scontext=u:r:mediacodec_google:s0 tcontext=u:object_r:gpu_device:s0 tclass=chr_file permissive=0 04-08 17:02:44.040 1046 7284 7284 W HwBinder:7284_3: type=1400 audit(0.0:70493): avc: denied { getattr } for path="/dev/mali0" dev="tmpfs" ino=1052 scontext=u:r:mediacodec_google:s0 tcontext=u:object_r:gpu_device:s0 tclass=chr_file permissive=0 04-08 17:02:44.048 1046 7284 7284 W HwBinder:7284_3: type=1400 audit(0.0:70494): avc: denied { getattr } for path="/dev/mali0" dev="tmpfs" ino=1052 scontext=u:r:mediacodec_google:s0 tcontext=u:object_r:gpu_device:s0 tclass=chr_file permissive=0 Change-Id: Ie22903807fcc12d931cbdd36678ae1d4a3776a3d	2022-04-18 13:34:04 +08:00
Joshua McCloskey	d386974cac	Allow platform apps to access FP Hal am: `2dc0bbd55b` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17625014 Change-Id: I0ff7aeba35e96f3ba82de61d49e9f596ff2b4f6e Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-15 22:12:14 +00:00
Joshua McCloskey	2dc0bbd55b	Allow platform apps to access FP Hal Bug: 227247855 Test: Verified manually that the fingerprint extension is working. Change-Id: Id5550ca770942d02ad0796ed0d4e8584c434b680	2022-04-15 21:39:58 +00:00
chungkai	beefac99c7	sepolicy: fix avc denials am: `d80900ae17` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17764688 Change-Id: Ifddf30c6372afeb5e5b36236ae4562fa8bafffda Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-15 06:39:39 +00:00
chungkai	d80900ae17	sepolicy: fix avc denials add potential paths for i2c peripheral devices sine we enable parallel module loading Bug: 228947596 Test: do bugreport without avc denials Signed-off-by: chungkai <chungkai@google.com> Change-Id: I2e9fa011c049e32011c5880218dd679e03316e24	2022-04-15 02:56:55 +00:00
chungkai	e240db0a69	sepolicy: fix avc denials am: `d37777dd33` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17755771 Change-Id: I57d7e4a7b8d5465cad4cefb72ad258f63733ec73 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-15 01:06:38 +00:00
chungkai	d37777dd33	sepolicy: fix avc denials add potential paths for i2c peripheral devices sine we enable parallel module loading Bug: 226887726 Test: do bugreport without avc denials Signed-off-by: chungkai <chungkai@google.com> Change-Id: If2ac4c137c1ea074907c363424e6018a5fd646e8	2022-04-15 01:01:47 +00:00
Harpreet Eli Sangha	559e696193	Add CccDkTimeSyncService for Digital Key Support am: `1a0b0ce0c4` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17755764 Change-Id: I14defbf1ec7ad439a1b88bc34197987e51d3aa27 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-15 00:59:54 +00:00
Harpreet Eli Sangha	1a0b0ce0c4	Add CccDkTimeSyncService for Digital Key Support Test: Build and Run Bug: 226659256 Signed-off-by: Harpreet Eli Sangha <eliptus@google.com> Change-Id: I9dd53a864d53e525282bc49c13b09157fc8d2ece	2022-04-15 00:28:13 +00:00
Anthony Stange	4e2f01d0af	Update SELinux to allow CHRE to talk to the Wifi HAL am: `403643929d` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17715921 Change-Id: I4e33045cec08c8c2a2d921fa22647ae6155a8968 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-14 16:14:07 +00:00
Anthony Stange	403643929d	Update SELinux to allow CHRE to talk to the Wifi HAL Bug: 206614765 Test: Run locally Change-Id: I2cab195d533e3e2c390094bd09b15b5e761eadf0	2022-04-14 15:23:22 +00:00
chungkai	0653304229	sepolicy: fix avc denials am: `fbdb09a2f0` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17750772 Change-Id: Ica3dbe06800cf5ce5cae0d1a6eeb1502b7d039b8 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-14 09:41:50 +00:00
chungkai	fbdb09a2f0	sepolicy: fix avc denials add potential paths for i2c peripheral devices sine we enable parallel module loading Bug: 226887726 Test: do bugreport without avc denials Signed-off-by: chungkai <chungkai@google.com> Change-Id: Ifc618e315e9d28cab6f602ce2c99ac7fe35fc189	2022-04-14 07:24:58 +00:00
TeYuan Wang	5389906449	sepolicy: label AUR as sysfs_thermal am: `951bad233c` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17731168 Change-Id: Iaee171d0fe9e2e52b32a25b4eb9bb3ceb203c63c Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-14 06:47:20 +00:00
TeYuan Wang	951bad233c	sepolicy: label AUR as sysfs_thermal Bug: 171499494 Test: adb shell ls -Z /sys/devices/platform/100b0000.AUR Change-Id: I0aa1b95c11d2af5fa2175c582068daad51360485	2022-04-14 06:23:35 +00:00
Denny cy Lee	0b28040a89	Sepolicy: Pixel stats orientationCollector sepolicy am: `d8eab32b49` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17652447 Change-Id: I06d1346a58d0a10147f121f4dd1754e354841994 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-14 02:47:56 +00:00
Denny cy Lee	d8eab32b49	Sepolicy: Pixel stats orientationCollector sepolicy Bug: 228547969 Test: adb shell cmd stats print-logs;[do wireless charge], and below log found 03-31 22:52:21.798 801 809 I statsd : { uid(1000) 1648738341 240287209019 (105009)0x10000->[S] 0x20000->0[I] } Signed-off-by: Denny cy Lee <dennycylee@google.com> Change-Id: I5ef5279ba7c8bf0fd3d4cf0155f5bcad79eeb6b2	2022-04-14 02:01:13 +00:00
Darren Hsu	5da7e0aa7c	sepolicy: lable p9412 wakeup for system suspend am: `cf2cc47e79` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17731166 Change-Id: I9699672f5daa1cfff2c3beb97d6e8a2da90ca0c7 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-13 10:18:59 +00:00
Darren Hsu	cf2cc47e79	sepolicy: lable p9412 wakeup for system suspend Bug: 226887726 Bug: 228947596 Test: do bugreport without avc denials Change-Id: Ic8eab625a20c60a4bf78403ef10465074d782821 Signed-off-by: Darren Hsu <darrenhsu@google.com>	2022-04-13 13:39:02 +08:00
Wayne Lin	d7b86828ba	gps: allow system server to send sensor data callback to GPS am: `aab4f72223` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17699754 Change-Id: I1ae99f1c010abdce511320041da894e8a9d3177a Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-13 03:13:36 +00:00
Wayne Lin	aab4f72223	gps: allow system server to send sensor data callback to GPS avc: denied { call } for scontext=u:r:system_server:s0 tcontext=u:r:gpsd:s0 tclass=binder permissive=0 Bug: 224772976 Test: build pass, verify no avc denied and gpsd can receive sensor callback Change-Id: If3b58b5527f67732ea60b3dd943ae472aebb7aed	2022-04-13 02:54:24 +00:00
Darren Hsu	8171577cf2	sepolicy: label charger wakeup for system suspend am: `68f1d4fb71` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17686708 Change-Id: I50c9b2ae060b24278b553aa6cfedc89d36629a52 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-12 04:03:49 +00:00
Darren Hsu	68f1d4fb71	sepolicy: label charger wakeup for system suspend Bug: 226887726 Test: do bugreport without avc denials Change-Id: I0b57cfdddb81c1685f6a054944c064e02c099637 Signed-off-by: Darren Hsu <darrenhsu@google.com>	2022-04-12 07:43:30 +08:00
Darren Hsu	1b64a4529a	Label AoC wakeup for system suspend am: `c750a64e4c` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17652444 Change-Id: I12f6dd9d2411ae282516eb1bcb3c4f50855aa103 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-11 08:17:17 +00:00
Darren Hsu	c750a64e4c	Label AoC wakeup for system suspend Bug: 227531769 Test: do bugreport without avc denials Change-Id: Ie3efd407ff629b583e37c0b5af430c9a9daf8691 Signed-off-by: Darren Hsu <darrenhsu@google.com>	2022-04-11 15:54:59 +08:00
Stephane Lee	5a32605710	Fix off-mode (charger) sepolicy for the health interface am: `73b95396fd` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17350882 Change-Id: Ia20811303b891d08e79f0534ee46ed4ef3934d47 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-08 03:27:47 +00:00
Stephane Lee	73b95396fd	Fix off-mode (charger) sepolicy for the health interface Bug: 223537397 Test: Ensure that there are no selinux errors for charger_vendor in off-mode charging Change-Id: I9074079a7ba67813da6b6ad7b110d964b9b7db6d	2022-04-08 03:13:51 +00:00
Stephane Lee	04f71ae091	ODPM: Add ODPM config file to be read by powerstats 2.0 am: `5ce2f99f38` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17621550 Change-Id: Ia82142dcca16e6d54a30d52dec5e5ce1817e023f Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-08 02:53:01 +00:00
chungkai	aebc5fa20e	sepolicy: ignore avc denial am: `2a3100de6e` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17617704 Change-Id: I8c8faf53f44f8bde1c43a22e3761d40904222366 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-08 02:52:52 +00:00
chungkai	d2e0a2ef5e	genfs_contexts: fix path for i2c peripheral device am: `fb466b4915` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17521224 Change-Id: Id75935027077c24888c2e168932b621dc75c0926 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-08 02:52:50 +00:00
Stephane Lee	5ce2f99f38	ODPM: Add ODPM config file to be read by powerstats 2.0 Test: Ensure that there are no sepolicy errors when /data/vendor/powerstats/odpm_config exists Bug: 228112997 Change-Id: I094c29c4d1a82bccfabde7a5511f4aa833c2cd35	2022-04-08 02:49:40 +00:00
chungkai	2a3100de6e	sepolicy: ignore avc denial dont audit since it's debugfs Bug: 228181404 Test: forrest with boot test Signed-off-by: chungkai <chungkai@google.com> Change-Id: I77a385b73b5a9edafefa8e7d34a351594cd5cd06	2022-04-08 02:20:26 +00:00
chungkai	fb466b4915	genfs_contexts: fix path for i2c peripheral device paths are changed when we enable parallel module loading and reorder the initializtaion of devices. Test: without avc denial Bug: 227541760 Signed-off-by: chungkai <chungkai@google.com> Change-Id: Icd74392e0684ac5614a83d14b936be880148f919	2022-04-08 02:20:26 +00:00
Adrian Salido	94062fcca0	allow hwc access to persistent vendor display sysprop am: `a1c2f220a7` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17226635 Change-Id: Id61b9caf74a1c05577202aa4a57010468ad9859c Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-07 16:03:26 +00:00
Adrian Salido	a1c2f220a7	allow hwc access to persistent vendor display sysprop Test: check avc denials while switching resolution Bug: 217399988 Change-Id: Ia3a3ab394ec23ea3150a8cf4638e045cd1e9cac9	2022-04-07 15:40:54 +00:00
Adam Shih	73ce03bbd9	let sensor access aoc am: `1e88b530fa` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17609183 Change-Id: Ia4534f9706a1fe8164453b8f92d5293ce62e3582 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-07 05:16:09 +00:00
Adam Shih	1e88b530fa	let sensor access aoc 04-03 05:57:12.776 859 859 I auditd : type=1400 audit(0.0:7): avc: denied { read } for comm="UsfHalWorker" name="services" dev="sysfs" ino=69355 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_aoc_dumpstate:s0 tclass=file permissive=0 04-03 05:57:12.776 859 859 I auditd : type=1400 audit(0.0:8): avc: denied { write } for comm="UsfHalWorker" name="reset" dev="sysfs" ino=69363 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_aoc_reset:s0 tclass=file permissive=0 Bug: 228030183 Bug: 228030193 Test: boot with no relevant errors Change-Id: I87fd1aa1dc9b9cf42b23fb0e7f5d4e5b6f845610	2022-04-07 04:37:49 +00:00
Siddharth Kapoor	23c89da785	Revert "Move ODPM file rule to pixel sepolicy" am: `15f80f57bf` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17609199 Change-Id: I4720884741d8e4121aa9492ff1aa66d25a39d4d5 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-07 04:22:23 +00:00
Siddharth Kapoor	15f80f57bf	Revert "Move ODPM file rule to pixel sepolicy" Revert "Move ODPM file rule to pixel sepolicy" Revert "Move ODPM file rule to pixel sepolicy" Revert submission 17215583-odpm_sepolicy_refactor-tm-dev Reason for revert: build failure tracked in b/228261711 Reverted Changes: Ic9a89950a:Move ODPM file rule to pixel sepolicy I24105669b:Move ODPM file rule to pixel sepolicy I044a285ff:Move ODPM file rule to pixel sepolicy Change-Id: Idbf5cd106f229c8a72b2ecbc6e5ffd20d9e06805	2022-04-07 04:06:29 +00:00
Mason Wang	020cb8c9de	hal_dumpstate_default: Fix avc denial of focaltech_touch. am: `882527f08b` Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/17524943 Change-Id: I3fb72c06a72b72cbb0838b6d317a74948d6163b5 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-06 10:28:19 +00:00
Mason Wang	882527f08b	hal_dumpstate_default: Fix avc denial of focaltech_touch. Fixed following avc denial: avc: denied { read } for name="focaltech_touch" dev="proc" ino=4026535419 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc_touch:s0 tclass=dir permissive=0 Bug: 199105131 Test: Verify pass by checking device log are w/o above errors when trigger bugreport. Change-Id: Id2af1f59cd397f0332fba94f68d9940f612a8e81	2022-04-06 10:03:14 +00:00

1 2 3 4 5 ...

594 commits