Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
654 commits 1 branch 0 tags 63 MiB
Commit graph

654 commits

This branch
This branch
All branches
Author SHA1 Message Date
Konstantin Vyshetsky
a16b2ac404 convert_to_ext4.sh: add sepolicy am: 07af2808d5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19391424

Change-Id: I19364ae4fa02a74996d14eeadf3f6ee89311bfc9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-01 18:17:39 +00:00
Konstantin Vyshetsky
07af2808d5 convert_to_ext4.sh: add sepolicy 
Add entries for convert_to_ext4.sh executable.

Bug: 239632964
Signed-off-by: Konstantin Vyshetsky <vkon@google.com>
Change-Id: I0d89aa88dab0ae5a4cf3d7b2e4423d1761868bea
 2022-08-01 18:00:49 +00:00
lucaslin
e798862ff6 Add sepolicy for dumpstate to zip tcpdump into bugreport am: 81616f3ad0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19466304

Change-Id: I97d34e9e6d64f470e79d33bd0d277d9f3694d03a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-01 12:46:32 +00:00
lucaslin
81616f3ad0 Add sepolicy for dumpstate to zip tcpdump into bugreport 
Bug: 239634976
Test: 1. Enable tcpdump_logger always-on function
      2. Dump bugreport
      3. Pull dumpstate_board.bin and chagne it to zip
      4. Unzip dumpstate_board.zip and check if tcpdump files
         are there.
Change-Id: I01b9b25a6236bcfa1ce2b89afb3ed1bc2ef49cae
Merged-In: I01b9b25a6236bcfa1ce2b89afb3ed1bc2ef49cae
(cherry picked from commit ee1b7d6bb4)
 2022-08-01 03:00:17 +00:00
Steven Moreland
82c366063e Remove vendor_service. am: f10b9bf2cd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19441143

Change-Id: Ib8a9d7fec295cdc8a9581f042bc082d83612d33a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-28 01:07:53 +00:00
Steven Moreland
f10b9bf2cd Remove vendor_service. 
We want to avoid associating types with where they can be used.

Bug: 237115222
Test: build
Change-Id: I6795d960aa2a3b3832be8e0f6a11cb0fc3337982
 2022-07-26 23:53:54 +00:00
Adam Shih
fcb18faeb1 sync bug_map with downstream am: b34d1c1ed0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19349280

Change-Id: Id6d9092dd4f1e1b59b911a4bba12aca4f238248e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-25 21:32:08 +00:00
Adam Shih
b34d1c1ed0 sync bug_map with downstream 
Bug: 239403666
Test: boot
Change-Id: I7e95cc5169ce56f1bba031b4d8a83ab1d5c80b26
Merged-In: If07a3611f40324d985a387c6dd7f2570c90c7c11
 2022-07-25 21:05:38 +00:00
Edmond Chung
ed1f75b8aa Allow vendor_init to set camera properties am: c09b0f9873 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19381316

Change-Id: I6dd674a0a9dfde23a38137d67a4db4437395600a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-22 01:46:05 +00:00
Edmond Chung
c09b0f9873 Allow vendor_init to set camera properties 
Bug: 239368308
Test: Camera CTS
Change-Id: Ia34804235729d5230123431a4b315bb2967c4cc8
 2022-07-22 01:44:15 +00:00
Robb Glasser
76ff3ba367 Remove HAL sensors dontaudits. am: 46c4571485 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19281889

Change-Id: I003515c35a34416c0c49fe1267ba9ed54c9e2f8c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-14 02:07:43 +00:00
Robb Glasser
46c4571485 Remove HAL sensors dontaudits. 
Sensors HAL sepolicy is written, but the dontaudit parts were not
cleaned up at the time. Removing these as they are no longer needed.

Bug: 227695036
Test: No denials as expected.
Change-Id: Idc0ed7f380cb07bfc7695ef3019f335fd8fad0a2
 2022-07-13 11:06:04 -07:00
Star Chang
932cf00952 wifi_sniffer: Add policy to allow wifi sniffer to access wifi firmware am: c466a68305 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19132092

Change-Id: If9f48a717ec9ae82dda176dfcd1a5b26651028ab
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-07 06:51:32 +00:00
Star Chang
c466a68305 wifi_sniffer: Add policy to allow wifi sniffer to access wifi firmware 
related files.

Add policy to allow wifi_sniffer daemon to access wifi firmware related
files.

To fix the denial message:
[85544.205505] type=1400 audit(1656381950.486:90): avc: denied { search
} for comm="wifi_sniffer" name="wifi" dev="sysfs" ino=97256
scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0
tclass=dir permissive=1
[85544.206027] type=1400 audit(1656381950.486:91): avc: denied { write }
for comm="wifi_sniffer" name="firmware_path" dev="sysfs" ino=97268
scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0
tclass=file permissive=1
[85544.206206] type=1400 audit(1656381950.486:92): avc: denied { open }
for comm="wifi_sniffer" path="/sys/wifi/firmware_path" dev="sysfs"
ino=97268 scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0
tclass=file permissive=1
[85544.206349] type=1400 audit(1656381950.486:93): avc: denied { getattr
} for comm="wifi_sniffer" path="/sys/wifi/firmware_path" dev="sysfs"
ino=97268 scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:sysfs_wifi:s0
tclass=file permissive=1

Bug: 237465412
Test: wifi_sniffer is workable
Change-Id: I5500be87d2b670e29c08d026872a6b304109f7a3
 2022-07-07 06:15:48 +00:00
Adam Shih
2fc31f23a8 Update error on ROM 8765438 am: 74ff6db973 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19174387

Change-Id: I3ecdc79d72c83e9ec7496303f054da857a3b0cad
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-06 00:37:16 +00:00
Adam Shih
74ff6db973 Update error on ROM 8765438 
Bug: 238037492
Bug: 237093466
Test: SELinuxUncheckedDenialBootTest
Change-Id: I4b067085dc0c9f79b715505a5831cab63fda6381
Merged-In: I4b067085dc0c9f79b715505a5831cab63fda6381
 2022-07-05 03:11:33 +00:00
SalmaxChang
69172f08c9 ssr_detector_app: remove tracking denials am: a7127617ba 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18992387

Change-Id: Ib3fb750345c86fc2c8f66ad27a73cec264884c3c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-29 16:10:28 +00:00
SalmaxChang
a7127617ba ssr_detector_app: remove tracking denials 
Avc errors already fixed. Remove tracking denials.

Bug: 207571417
Bug: 205202542
Change-Id: I97d5f732e038dbdaf7885bdb9ca63bc518a97d51
 2022-06-29 15:52:43 +00:00
Sam Ou
30d46d274b sepolicy: fix odpm avc denials am: 65bdbc4862 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19035052

Change-Id: Ieb89884ee444ba9eb06e23f8ab4d20a96fa8c323
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-27 06:48:52 +00:00
Sam Ou
65bdbc4862 sepolicy: fix odpm avc denials 
add wakeup permissions for odpm driver
since we update acc_data based on alarmtimer

Bug: 236798116
Change-Id: Ib898eeebf0e26a723f260a2a8ddb5e5f64d255ed
Signed-off-by: Sam Ou <samou@google.com>
 2022-06-27 06:29:03 +00:00
sukiliu
9eadb411f8 [Do not merge] Remove regmap from list am: 1f681630c4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18845251

Change-Id: I16cbf31a5f95822ad89b4622e18a015f63875f7e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-27 03:55:38 +00:00
sukiliu
1f681630c4 [Do not merge] Remove regmap from list 
Bug: 227286343
Test: PtsSELinuxTestCases
Change-Id: If32c472dcd6c0e0b83008a660ca6bbe6d79f44e3
 2022-06-27 03:33:16 +00:00
Jinting Lin
f099a07968 Remove obsolete sepolicy of silentlogging am: d3d4af1aac am: 6769f9e352 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: I153545fae767387a65fd5d7a0cce7a0c15eeb58b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:56:54 +00:00
Jinting Lin
5d40c0ab34 Remove obsolete sepolicy of silentlogging am: d3d4af1aac am: b924e94b8e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: Ib995967d386d737a905142dbb69ce2f88fe29c83
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:47:04 +00:00
Jinting Lin
6769f9e352 Remove obsolete sepolicy of silentlogging am: d3d4af1aac 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: I7fbe60eee731c910d75113b2b7b1de9f10b227ba
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:28:50 +00:00
Jinting Lin
b924e94b8e Remove obsolete sepolicy of silentlogging am: d3d4af1aac 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: I76365c02940cad7c9495ffa3b98e974ed3e51111
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:27:24 +00:00
Jinting Lin
d3d4af1aac Remove obsolete sepolicy of silentlogging 
Bug: 221384996

Test: adb bugreport
Change-Id: I35a9dae665f11196ec900346c41a3c786bfdf5fa
 2022-06-20 05:48:22 +00:00
Siarhei Vishniakou
1fa5ab3ecc Allow InputProcessor HAL to read display resolution am: 8b103bff07 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18962799

Change-Id: I56cd9e5dcd25278448c7cd864cf3b023c343cc20
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-17 20:58:50 +00:00
Siarhei Vishniakou
8b103bff07 Allow InputProcessor HAL to read display resolution 
Currently, there's no API to read the resolution from the system domain,
so the HAL has to read this from the sysprop provided by the display
code.

Allow the HAL to do so in this CL.

Bug: 236200710
Test: adb shell dmesg | grep input_processor
Change-Id: I23285c21a82748c63fbe20988af42884b9261b66
Merged-In: I23285c21a82748c63fbe20988af42884b9261b66
 2022-06-17 20:31:42 +00:00
Lawrence Huang
8810a2f193 Add network permissions for google camera am: 2c5af2b633 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18803934

Change-Id: I779fe88a1361b51118d95e2af6da595dff8cf2c7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-17 19:38:42 +00:00
Lawrence Huang
2c5af2b633 Add network permissions for google camera 
Investigation here:
https://docs.google.com/document/d/1dARYZBxeJFPTEIMr-0U80Ka68BoPY6-h9VcBDZ8Uon8/edit#

Bug: 230434151
Change-Id: I9b37906ba4c7ba2cdbb23fc7a07f1e9e2aa8d1ab
Test: no more avc errors
 2022-06-17 18:59:12 +00:00
Automerger Merge Worker
c4a80436a0 Merge "allow rlsservice read vendor camera property am: f90d992b0c am: f41b4005dd" into tm-d1-dev-plus-aosp 2022-06-16 12:36:58 +00:00
JimiChen
3ab0915765 allow rlsservice read vendor camera property am: f90d992b0c am: f41b4005dd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18844687

Change-Id: I97e1cc94ceacca9ab0da5fce8b051017cdaec65c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 12:36:44 +00:00
JimiChen
e8a19311d5 allow rlsservice read vendor camera property am: f90d992b0c am: 7e79f7639d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18844687

Change-Id: Ifeac7cc60bcd91c0c8018626a1499b0fca6c4282
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 12:36:43 +00:00
JimiChen
f41b4005dd allow rlsservice read vendor camera property am: f90d992b0c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18844687

Change-Id: Id9857d0edc1f34c53a1af86f7bcb16a17e69dc99
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 12:19:33 +00:00
JimiChen
7e79f7639d allow rlsservice read vendor camera property am: f90d992b0c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18844687

Change-Id: Ie8ff6714c0cf09bb94c462836d5329bd0c0705f3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 12:18:03 +00:00
JimiChen
f90d992b0c allow rlsservice read vendor camera property 
Bug: 233020488
Test: no avc denied
Change-Id: Ie7e68a6e18ba64c18e90e39cadacea5a15364eff
 2022-06-16 12:02:26 +00:00
sukiliu
4296484403 [Do not merge]Update avc error on ROM 8732242 am: c25afee26a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18911481

Change-Id: I7f9d305c7e08f1db8e54625da80b1205b04f3964
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-16 07:10:11 +00:00
sukiliu
c25afee26a [Do not merge]Update avc error on ROM 8732242 
Bug: 236200710
Test: PtsSELinuxTestCases
Merged-In: I9b4b487aa78a69fe981a542aef1a7dbe368a30ce
Change-Id: I9b4b487aa78a69fe981a542aef1a7dbe368a30ce
 2022-06-16 03:24:58 +00:00
Robb Glasser
fdab89cb53 Allow sensors HAL to rw the sensors registry. am: 31981dfaea 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18801904

Change-Id: Iae2c15d00f64e01312332f0cd446e2bb9692d053
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-14 20:00:17 +00:00
Robb Glasser
31981dfaea Allow sensors HAL to rw the sensors registry. 
The sensors HAL needs full permissions to read and write the sensors
registry for things like runtime calibration.

Bug: 227695036
Test: Denial goes away.
Change-Id: I5ccec3497219acca7c172c1cb0cf1d070996b42b
 2022-06-14 19:20:32 +00:00
Minchan Kim
5f60efbda2 allow hal_dumpstate_default to access cma debugfs am: 4bc7128afe 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18843535

Change-Id: I6537bd75541c64c27f17beef2bb2efbcc798756e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-13 23:04:12 +00:00
Minchan Kim
4bc7128afe allow hal_dumpstate_default to access cma debugfs 
It's useful for CMA memory debugging.

Bug: 233535442
Test: adb bugreport contains cma information in dumpstate_board.txt
Signed-off-by: Minchan Kim <minchan@google.com>
Change-Id: I65170d6b84f642e038a7901427c3673b40832af9
 2022-06-13 22:35:38 +00:00
Oleg Matcovschi
910d7ed141 sepolicy: add sscoredump mali genfs rule am: c7bcfba2cb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18839008

Change-Id: Idf09c36426159f8fe5f24e4a64faa93a364b7f7f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-13 19:48:24 +00:00
Oleg Matcovschi
c7bcfba2cb sepolicy: add sscoredump mali genfs rule 
Bug: 235492324
Signed-off-by: Oleg Matcovschi <omatcovschi@google.com>
Change-Id: I8a5db9b4d0a6f63819820213e20165dbe920ab07
 2022-06-13 18:08:04 +00:00
Krzysztof Kosiński
4e0e696557 Add dontaudit statements to camera HAL policy. am: 2d44b5d5d0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18806796

Change-Id: I3edd95cc19e0a2270be25ed8624bc9baa453480b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-10 21:04:44 +00:00
Krzysztof Kosiński
2d44b5d5d0 Add dontaudit statements to camera HAL policy. 
The autogenerated dontaudit statements in tracking_denials are
actually the correct policy. Move them to the correct file and
add comments.

Bug: 218585004
Test: build & camera check
Change-Id: Ie0338f0d2a6fd0c589777a82c22a014e462bd5c2
(cherry picked from commit 26b2d2e33e)
 2022-06-10 20:19:12 +00:00
Myung-jong Kim
01870d5731 sepolicy: add net_domain macro for vendor_rcs_app am: e2b042c307 am: 0d81b693cf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18799291

Change-Id: I0bd3765e66d9949fcb30692d5294a90f7dfe16b2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-10 15:27:33 +00:00
Myung-jong Kim
a057381a7d sepolicy: add net_domain macro for vendor_rcs_app am: e2b042c307 am: b022c79b96 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18799291

Change-Id: I5a38963dcaac5334603090efc5401472a0595873
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-10 15:20:00 +00:00
Myung-jong Kim
0d81b693cf sepolicy: add net_domain macro for vendor_rcs_app am: e2b042c307 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18799291

Change-Id: I9095a0759ca94fe8a55f8bc64c7f4eb8b82f1379
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-10 15:02:25 +00:00