Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1828 commits 1 branch 0 tags 63 MiB
Commit graph

1828 commits

This branch
This branch
All branches
Author SHA1 Message Date
eddielan
234029f1cf fingerprint: Allow fingerprint to access thermal hal am: ba0eb551e9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19694493

Change-Id: I4f916181746334cc68e8ed0778e95e56e427294d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-28 16:46:11 +00:00
eddielan
ba0eb551e9 fingerprint: Allow fingerprint to access thermal hal 
SELinux : avc:  denied  { find } for interface=android.hardware.thermal::IThermal
sid=u:r:hal_fingerprint_default:s0 pid=1064
scontext=u:r:hal_fingerprint_default:s0
tcontext=u:object_r:hal_thermal_hwservice:s0
tclass=hwservice_manager permissive=0

Bug: 243115023
Test: make selinux_policy -j128
Test: Check avc log on device
Change-Id: Ida1b18536468df11be5bf44fb6fb79b03a35f4b9
 2022-10-28 15:14:35 +00:00
Adam Shih
7c683d8496 move brcm gps solution to gs-common 
Bug: 254758553
Test: google map can locate on pixel
Change-Id: I2c97ac6c327a0c32dbc9223597758bbceb72d2a3
 2022-10-28 05:33:37 +00:00
Lucas Wei
c21e91d211 [automerger skipped] SEPolicy: Don't audit search regmap by kernel am: 939d05cbf8 am: 5db7e8bdef -s ours 
am skip reason: Merged-In I8886b5c3790036a9fe2d1ed8f524a0555b900dbb with SHA-1 3805fb1895 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20108831

Change-Id: I2d3b61f11b6865dbc49ebf653bd9b6f1899c800d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-24 10:24:05 +00:00
Lucas Wei
5db7e8bdef SEPolicy: Don't audit search regmap by kernel am: 939d05cbf8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20108831

Change-Id: I890491b2994a2b703f8e85346191d9f4baf08eab
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-24 09:53:52 +00:00
Lucas Wei
939d05cbf8 SEPolicy: Don't audit search regmap by kernel 
Bug: 247948906
Signed-off-by: Lucas Wei <lucaswei@google.com>
Change-Id: I8886b5c3790036a9fe2d1ed8f524a0555b900dbb
Merged-In: I8886b5c3790036a9fe2d1ed8f524a0555b900dbb
 2022-10-24 09:07:14 +00:00
Lucas Wei
3805fb1895 SEPolicy: Don't audit search regmap by kernel 
Bug: 247948906
Signed-off-by: Lucas Wei <lucaswei@google.com>
Change-Id: I8886b5c3790036a9fe2d1ed8f524a0555b900dbb
 2022-10-23 23:12:56 +08:00
Adam Shih
91b093f51e move aoc settings to gs-common 
Bug: 248426917
Test: boot with aoc launched
Change-Id: Icf7e819e7e0a25695a2fb7b05d08273918e19823
 2022-10-20 11:24:07 +08:00
Martin Liu
92bb9d7445 allow vendor_init to acces watermark_scale_factor am: 19419cbdb3 am: 0a8aa66a1d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20189607

Change-Id: Ia89bb182634992a68b08a67db5b00b5e6511ce85
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-19 21:48:19 +00:00
Martin Liu
0a8aa66a1d allow vendor_init to acces watermark_scale_factor am: 19419cbdb3 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20189607

Change-Id: Ie052c7b8c7a34ea7bd652fa56a1563506592f814
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-19 21:15:14 +00:00
Martin Liu
19419cbdb3 allow vendor_init to acces watermark_scale_factor 
Bug: 251881967
Test: boot
Signed-off-by: Martin Liu <liumartin@google.com>
Change-Id: I0840cf19f9c3120aaacc49de751fdd0a55aebf5f
 2022-10-19 20:33:22 +00:00
Krzysztof Kosiński
b84bba204b Use generic wildcard for vendor libprotobuf. am: 36df3f715f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20190509

Change-Id: I2921fea6a332de2feca478b2365fe6dc29a9658a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-14 17:25:19 +00:00
George Lee
cefb0cf2ca pixelstats: add bcl directory permission am: 5c48a90285 am: 31783a9f98 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20192928

Change-Id: Iafc2a2d89110b9a101286a2f27d9ddea0ee825c9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-14 17:24:45 +00:00
Krzysztof Kosiński
36df3f715f Use generic wildcard for vendor libprotobuf. 
The suffix changes on each upgrade and the newest release uses
a two-part version number instead of a three-part one. Use a regex
that will match any suffix.

Bug: 203713560
Test: presubmit, log check
Change-Id: I7a3357d11c162a9bc24196bb232f58be9ba062ec
 2022-10-14 17:18:38 +00:00
George Lee
31783a9f98 pixelstats: add bcl directory permission am: 5c48a90285 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20192928

Change-Id: Ibf3a806221d01fc7ccfd0dcf16ca933b40e4e78f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-14 16:51:47 +00:00
George Lee
5c48a90285 pixelstats: add bcl directory permission 
Bug: 253522156
Test: Local test
$>cmd stats print-logs
$>logcat | grep <atom id>

Signed-off-by: George Lee <geolee@google.com>
Change-Id: I934f6efb043893666dac88257619556e30d82751
 2022-10-14 15:57:59 +00:00
George Lee
23d095da01 betterbug: Add selinux policy for betterbug am: 39ffb227b3 am: 87e5ce6250 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20188753

Change-Id: I8b049af986af7c8ab44791a8e9c515a489ebd87e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-14 06:28:01 +00:00
George Lee
87e5ce6250 betterbug: Add selinux policy for betterbug am: 39ffb227b3 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20188753

Change-Id: Ifda87221614295b1bd9aafafa78c212cdd49a358
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-14 05:55:15 +00:00
Adam Shih
e2ad2a0fd9 remove redundant permission that has moved to gs-common 
Bug: 248426917
Test: adb bugreport
Change-Id: I8df8d6197aea78caf6f9903e7fd7953eab567e8c
 2022-10-14 00:38:24 +00:00
George Lee
6c2da109f8 bcl: Remove unused brownout boot reason sepolicy am: 083ba62902 am: 7bdbe0b215 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20191486

Change-Id: I17b3998db65accc57097dac0dfde7cf139013b7c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-13 23:56:30 +00:00
George Lee
39ffb227b3 betterbug: Add selinux policy for betterbug 
Enable Betterbug to read reboot reason such that Betterbug can file
bugreport when *uvlo* or *ocp* is found within reboot reason.

Bug: 237287659
Test: Load Betterbug for accessing boot reason property
Signed-off-by: George Lee <geolee@google.com>
Change-Id: Id699be34d2e060ee7827737982403fd58f133c4a
 2022-10-13 23:44:06 +00:00
George Lee
7bdbe0b215 bcl: Remove unused brownout boot reason sepolicy am: 083ba62902 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20191486

Change-Id: I7028903ecaac63a7579b0dcc1415076e0d0412df
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-13 23:25:35 +00:00
George Lee
083ba62902 bcl: Remove unused brownout boot reason sepolicy 
vendor_brownout_boot_reason was added under previous change.  It should
be added as part of follow on change to enable metric collection.

Bug: 246817058
Test: Confirm brownout_boot_reason non existent
Signed-off-by: George Lee <geolee@google.com>
Change-Id: I1fed12e851750314f53a0d6517a9eff92c44e247
 2022-10-13 12:52:20 -07:00
George Lee
9d07c520b5 bcl: Add brownout boot reason sepolicy am: b72e47e1b0 am: 2c91c54d7b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20152240

Change-Id: Ia0758fbbbbaea7eed44f7a9dc5e3f33f7bf8c90c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-13 19:49:08 +00:00
George Lee
2c91c54d7b bcl: Add brownout boot reason sepolicy am: b72e47e1b0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20152240

Change-Id: Ieefdd8f7a446e51854835ae3bcfd0607f86ae49f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-13 18:31:54 +00:00
George Lee
b72e47e1b0 bcl: Add brownout boot reason sepolicy 
Lastmeal.txt may be generated from after device rebooted from IRQ
triggering.  By applying limit on the time when it generates,
lastmeal.txt will not be generated after device rebooted.

Bug: 246817058
Test: Confirm lastmeal.txt generation
Signed-off-by: George Lee <geolee@google.com>
Change-Id: I02515fc452dbfa5c8a40041cbb8731664dace62e
 2022-10-12 19:59:58 -07:00
George Lee
52ff289b2c bcl: Add mitigation ready device sepolicy am: 2260099ad3 am: ae51ebfd98 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20123277

Change-Id: I6b937ab9105b79c2ed1f5d1a10c04ca878d57865
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-10 20:48:21 +00:00
George Lee
ae51ebfd98 bcl: Add mitigation ready device sepolicy am: 2260099ad3 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20123277

Change-Id: I5b1cd5209a52bacd524e2489bef2af866a258f4f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-10-10 20:15:58 +00:00
George Lee
2260099ad3 bcl: Add mitigation ready device sepolicy 
Instead of relying on vendor.thermal.link_ready property to gate write
to BCL's SYSFS node, adding mitigation ready SYSFS so that writes to
BCL's SYSFS node would not cause NULL pointer dereference.

Bug: 249130916
Test: Confirm property vendor.brownout.mitigation.ready is set
Signed-off-by: George Lee <geolee@google.com>
Change-Id: I1b21a1c745e7e17f78e9d4c001032dd2c46673cf
 2022-10-10 19:49:34 +00:00
Adam Shih
b47db82964 move modem dump to gs-common 
Bug: 250475732
Test: adb bugreport
Change-Id: I8f7f1538b5e236a2c6e0ff5a1d9224c539ef9836
 2022-10-07 09:31:29 +08:00
Adam Shih
455201b20d move soc dump to gs-common 
Bug: 248428203
Test: adb bugreport
Change-Id: I225029624d4bd254dee3997b80ff322bacd07b23
 2022-10-05 02:14:13 +00:00
Adam Shih
d03b6f3be2 move ramdump relate dumpstate to gs-common 
Bug: 248428203
Test: adb bugreport
Change-Id: I40d9aff0e8069acc5d5ecbd0a596a850315e0b22
 2022-10-04 04:59:49 +00:00
Adam Shih
8902c457d7 move trusty device to gs-common 
Bug: 244504232
Test: adb bugreport
Change-Id: If0df8122e5655b659ac001d42b9a6cf28a59a627
 2022-10-03 09:21:03 +08:00
Vova Sharaienko
c87f573dec [automerger skipped] hal_health_default: updated sepolicy am: bdf3d6abcc am: ac2e9dd662 -s ours 
am skip reason: Merged-In I71013c0b17ee5e526387efa0afb823f97775e572 with SHA-1 87bc6d189d is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20041334

Change-Id: I2eedec23df2f9e52ba9c470104d705bdfe4ac3cf
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-30 17:50:02 +00:00
Vova Sharaienko
ac2e9dd662 hal_health_default: updated sepolicy am: bdf3d6abcc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20041334

Change-Id: I83ea07dbbc51fe7729172ff7e688795df312c25d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-30 17:17:27 +00:00
Vova Sharaienko
bdf3d6abcc hal_health_default: updated sepolicy 
This allows the android.hardware.health service to access
AIDL Stats service

Bug: 237639591
Bug: 249827340
Test: Build, flash, boot & and logcat | grep "avc"
Change-Id: I71013c0b17ee5e526387efa0afb823f97775e572
(cherry picked from commit 87bc6d189d)
Merged-In: I71013c0b17ee5e526387efa0afb823f97775e572
 2022-09-30 16:43:46 +00:00
Kyle Tso
a71da6c26c [automerger skipped] Set sepolicy for shell script of disabling contaminant detection am: c18eea71d7 am: e9137ca867 -s ours 
am skip reason: Merged-In Idbfa55d4c7091ce2861600ff3881fcc7217ec662 with SHA-1 9bb5e3e05b is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20064568

Change-Id: I70ccac11eb822437f879cbbe852b5a4e67632bbf
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-30 09:50:46 +00:00
Kyle Tso
e9137ca867 Set sepolicy for shell script of disabling contaminant detection am: c18eea71d7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/20064568

Change-Id: I910ec6dd06d432adb2de2f28cb49a663416b9b4b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-30 09:04:31 +00:00
Kyle Tso
c18eea71d7 Set sepolicy for shell script of disabling contaminant detection 
(ported from Ib2e3cf498851c0c9e5e74aacc9bf391549c0ad1a)

Bug: 244658328
Signed-off-by: Kyle Tso <kyletso@google.com>
Change-Id: Idbfa55d4c7091ce2861600ff3881fcc7217ec662
Merged-In: Idbfa55d4c7091ce2861600ff3881fcc7217ec662
 2022-09-29 13:33:28 +00:00
Kyle Tso
9bb5e3e05b Set sepolicy for shell script of disabling contaminant detection 
(ported from Ib2e3cf498851c0c9e5e74aacc9bf391549c0ad1a)

Bug: 244658328
Signed-off-by: Kyle Tso <kyletso@google.com>
Change-Id: Idbfa55d4c7091ce2861600ff3881fcc7217ec662
 2022-09-29 03:10:51 +00:00
Adam Shih
df53edb110 move UFS dump to gs-common 
Bug: 248143736
Test: adb bugreport
Change-Id: I06374e41f2e4c4695780d7f1f2ff12d27f77351f
 2022-09-28 13:27:03 +08:00
Adam Shih
6580ccce50 dump f2fs in gs-common 
Bug: 248143736
Test: adb bugreport
Change-Id: Id3b62464fb80cb6178e5b8fc4a53c8c3dfe1b27e
 2022-09-27 03:06:43 +00:00
Sayanna Chandula
d4440cb19e thermal: enable pixelstats access to thermal metrics am: cbb62de10c am: 560dbcff4b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19706085

Change-Id: I444fb2e8e93683ac9db6bba1a85f95dbab8bd4b2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-23 20:48:29 +00:00
Sayanna Chandula
560dbcff4b thermal: enable pixelstats access to thermal metrics am: cbb62de10c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19706085

Change-Id: I9c3b9a0a241dd0584bbcf8eb8ad1176526052d84
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-23 20:17:52 +00:00
Sayanna Chandula
cbb62de10c thermal: enable pixelstats access to thermal metrics 
Allow pixelstats daemon to access thermal metric nodes

Bug: 228247740
Test: Build and boot on device. Check thermal stats
Change-Id: Iada717b92782bc9c085928462b2e06d2db136cab
Signed-off-by: Sayanna Chandula <sayanna@google.com>
 2022-09-23 19:48:41 +00:00
timmyli
7054110441 Allow camera_hal to access always on compute device 
As a part of RLSRefactor efforst, we need to access libusf
from within camera_hal.

Bug: 248089742
Test: Compiles, Manual test that we can access aoc device
Change-Id: Ie79a2ee544067de69f402e2dd5ce6e55c200be13
 2022-09-23 04:17:18 +00:00
jintinglin
047656d92e Allows modem_svc to read the logging related properties am: 5acc68de3b am: b49b1ca9a7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19981021

Change-Id: I90f08ab30819ba7b7a0085a0657c70b4351a616a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-22 16:12:41 +00:00
jintinglin
b49b1ca9a7 Allows modem_svc to read the logging related properties am: 5acc68de3b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19981021

Change-Id: I53be3006909eeb6fa4938ceecca1299c1905412c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-22 15:35:43 +00:00
jintinglin
5acc68de3b Allows modem_svc to read the logging related properties 
avc: denied { read } for comm="modem_svc_sit" name="u:object_r:vendor_logger_prop:s0" dev="tmpfs" ino=347 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:vendor_logger_prop:s0 tclass=file permissive=0

Bug: 243039758
Change-Id: Ib3031552faf03771f86e72e7dbd81c3610c518cc
 2022-09-22 08:15:23 +00:00
Jinhee.k
9841567e5f sepolicy: allowed permissions required for network access am: 37c32d672f am: 324f9b569d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19968207

Change-Id: Ic2a4516c0e3e572c59dc80afdef13fdb3b311122
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-20 01:32:07 +00:00