Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2474 commits 1 branch 0 tags 63 MiB
Commit graph

324 commits

Author SHA1 Message Date
Wilson Sung
dcc7112f6f Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 275001783
Change-Id: I6514b7efbd02a5ddcb65ab329f0f01cc2d61e50a
 2023-03-24 11:11:48 +08:00
Krzysztof Kosiński
0a472be148 Clean up Google Camera App tracking_denials. am: 3758cdb733 am: aabbf32bdd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/21938179

Change-Id: I267b5fee06f77d08648e759babcb64b3b45c1819
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-10 02:17:35 +00:00
Krzysztof Kosiński
3758cdb733 Clean up Google Camera App tracking_denials. 
EdgeTPU access is already allowed. Vendor property access should
be denied and is not an error (most likely from library code
that tries to access nonexistent Mediatek-specific properties).

Fix: 209889068
Test: presubmit, run GCA
Change-Id: Id200da6627ceae1ca6315ea9b4473f61fdc285d0
 2023-03-10 01:00:44 +00:00
leochuang
62eebf952f Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 270079857
Change-Id: I1755253d915e7d9ff1fe624ecf8e6439f7a1bcd6
 2023-02-21 08:49:55 +08:00
Adam Shih
8c4ca7b5a4 remove same_process_hal access from gxp firmware 
Bug: 246218258
Test: boot with no relevant SELinux errors
Change-Id: I52c82ff4c70cb16057cf719059f63c3f9c381c46
 2023-02-16 00:02:13 +00:00
Jeffrey Kardatzke
d1daf18a6a tracking_denials: Remove b/237492145 
Bug: 237492145
Test: TreeHugger
Change-Id: I2874665d4166e951de6b9f6ab15be62a35777ad2
 2023-02-15 19:21:56 +00:00
Thiébaud Weksteen
1a72a34a91 Remove bug_map entry for incident 
hal_input_processor_default was fixed in b/219172252

Bug: 239632439
Test: presubmit
Change-Id: Idaa9bff7130d54bf24260e26b43605a60dcb7525
 2023-02-15 00:50:55 +00:00
sukiliu
4c372ff5cd Update SELinux error 
Test: scanBugreport
Bug: 268147113
Bug: 268566483
Bug: 268147092
Change-Id: Ia0755baf0d2b9cd02e9d69da29cf87120ae13bbe
 2023-02-10 10:20:48 +08:00
Jack Wu
7e6dc0eabb ignore shell access on wlc 
Bug: 238260741
Test: boot
Change-Id: I5f1d321df2daa2ec785e2ad1ac2e02478568b688
Signed-off-by: Jack Wu <wjack@google.com>
 2022-10-29 05:44:27 +00:00
Ted Lin
7c6154bdce Remove the tracking denials code. 
Bug: 213817227
Test: Check the bugreport
Signed-off-by: Ted Lin <tedlin@google.com>
Change-Id: I94a64f6ea05757b9c74657647ef7f0d14fa34c55
 2022-09-16 14:00:24 +08:00
Adam Shih
9c9ae24f64 remove global access to firmware mali 
Bug: 220801802
Test: device can resume
Change-Id: Idf0fd84c2efa37c94e30c3f682a09e6546f50235
 2022-09-12 12:58:29 +08:00
Jack Wu
81ed5058d8 remove selinux avc error am: c252f3ffa8 am: 980e37d3df 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19880471

Change-Id: Ie2e2563755ca25085cca72438b92743e43c53dc1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-09-08 03:16:34 +00:00
Jack Wu
c252f3ffa8 remove selinux avc error 
Bug: 238398889
Test: no avc denied in TreeHugger verified
Signed-off-by: Jack Wu <wjack@google.com>
Change-Id: Icf2a89462574e2f0eea29d0601e77728d67e6e0d
 2022-09-07 11:57:09 +08:00
Thiébaud Weksteen
8deeec1a30 Revert "Update SELinux error" 
This reverts commit 03f0070359.
Remove duplicate entry for dumpstate. These are ignored by auditd.

Bug: 241172220
Bug: 241172186
Test: TH
Change-Id: Ia72eecbb6055876aa7903e13cd4dc72952d3125e
 2022-08-22 04:32:32 +00:00
Adam Shih
2e4daadb2e Update error on ROM 8892407 
Bug: 241714943
Bug: 241714944
Bug: 240297563
Test: SELinuxUncheckedDenialBootTest
Change-Id: I0aab196ab21ec411540b7a033578a1670e83187a
Merged-In: I38e6cc9da23c72aed05e79346a3a6c8188fc8556
 2022-08-08 07:08:17 +00:00
Adam Shih
17659673a4 Update error on ROM 8892407 
Bug: 241714943
Bug: 241714944
Test: SELinuxUncheckedDenialBootTest
Change-Id: I38e6cc9da23c72aed05e79346a3a6c8188fc8556
 2022-08-08 02:17:22 +00:00
Adam Shih
03f0070359 Update SELinux error 
Test: checkSensors
Bug: 241172220
Test: checkLockScreen
Bug: 241172220
Test: scanBugreport
Bug: 241172220
Test: testAtomicWrite
Bug: 241172220
Test: testConfigMaxSectorsKB
Bug: 241172186
Test: testConfigReadAhead
Bug: 241172220
Test: testInvalidWrite
Bug: 241172220
Test: testLoopMaxPartDefined
Bug: 241172220
Test: testPinFile
Bug: 241172220
Test: testSysfsHealth
Bug: 241172220
Change-Id: I1e8e927e6850bf03f7d62774e979c0e26551b9a6
 2022-08-03 02:39:18 +00:00
Adam Shih
613f6bf6af Update error on ROM 8846993 
Bug: 241050831
Test: SELinuxUncheckedDenialBootTest
Change-Id: I6517ffc33ccea453b796fd1ebaee687516de8b5c
 2022-08-02 14:14:19 +08:00
Adam Shih
89781162e9 Update SELinux error 
Test: testAtomicWrite
Bug: 240653918
Test: testCheckSQLiteJournalMode
Bug: 240653918
Test: testConfigMaxSectorsKB
Bug: 240653918
Test: testConfigReadAhead
Bug: 240653918
Test: testDirectWrite
Bug: 240653918
Test: testDirectWriteDirectReadInEncryptedDir
Bug: 240653918
Test: testDirectWriteDirectReadInNonEncryptedDir
Bug: 240653918
Test: testDirectWriteDirectReadInPerBootEncryptedDir
Bug: 240653918
Test: testDirectWriteNormalReadInEncryptedDir
Bug: 240653918
Test: testDirectWriteNormalReadInNonEncryptedDir
Bug: 240653918
Test: testDirectWriteNormalReadInPerBootEncryptedDir
Bug: 240653918
Test: testInvalidWrite
Bug: 240653918
Test: testLargeReadRequestSize
Bug: 240653918
Test: testLoopMaxPartDefined
Bug: 240653918
Test: testMetadataEncryptionEnabled
Bug: 240653918
Test: testNormalWrite
Bug: 240653918
Test: testNormalWriteDirectReadInEncryptedDir
Bug: 240653918
Test: testNormalWriteDirectReadInNonEncryptedDir
Bug: 240653918
Test: testNormalWriteDirectReadInPerBootEncryptedDir
Bug: 240653918
Test: testNormalWriteNormalReadInPerBootEncryptedDir
Bug: 240653918
Test: testPinFile
Bug: 240653918
Test: testPtssBashToolFindBdevOfData
Bug: 240653918
Test: testPtssBashToolFindRawBdevOfData
Bug: 240653918
Test: testPtssBashToolGetDevNameOnlyOfData
Bug: 240653918
Test: testPtssBashToolGetFsOfData
Bug: 240653918
Test: testPtssBashToolGetMaxSectorsOfData
Bug: 240653918
Test: testPtssBashToolGetReadAheadOfData
Bug: 240653918
Test: testPtssBashToolStorageModel
Bug: 240653918
Test: testPtssBashToolUsagePercentOfData
Bug: 240653918
Test: testPxlIOCreateLargeFile
Bug: 240653918
Test: testSmallFileInEncryptedDir
Bug: 240653918
Test: testSmallFileInPerBootEncryptedDir
Bug: 240653918
Test: testStorageTestUtilGetReqStatPath
Bug: 240653918
Change-Id: I40c87c191644238e81516555f73aeebcd1abf0f6
 2022-07-29 15:38:05 +08:00
Adam Shih
813e69784d sync bug_map with downstream am: b34d1c1ed0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19349280

Change-Id: I11105def02ffc78d663ebfdf9548cf111429120b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-25 21:31:56 +00:00
Adam Shih
b34d1c1ed0 sync bug_map with downstream 
Bug: 239403666
Test: boot
Change-Id: I7e95cc5169ce56f1bba031b4d8a83ab1d5c80b26
Merged-In: If07a3611f40324d985a387c6dd7f2570c90c7c11
 2022-07-25 21:05:38 +00:00
Stephane Lee
aacf5c43fc Bug fixed in ag/19153533 
Bug: 238260742
Test: N/A
Change-Id: I4f7494eb37b04f994e14b7ff418bc9e2819e25cb
 2022-07-22 16:59:10 -07:00
Tri Vo
13f3fdc8ff storageproxyd: Remove setuid/setgid SELinux permissions 
Bug: 205904330
Test: fingerprint enrollment/authentication
Change-Id: Ied64163f1142c1dd05274867c2863592e49042f3
 2022-07-22 17:30:42 +00:00
sukiliu
eabd743991 Remove regmap from list 
Bug: 227286343
Test: PtsSELinuxTestCases
Change-Id: I0df048e6944623d992f66688550e534c038714d9
 2022-07-22 04:19:13 +00:00
Jack Wu
49b9a9a859 Update SELinux error am: c50018a543 am: fb3b2b7988 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19379646

Change-Id: I2319322791af38d9d4e44591a18f56d1a8f6dd3b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-21 18:42:52 +00:00
Jack Wu
c50018a543 Update SELinux error 
Bug: 238398889
Test: no avc denied in TreeHugger verified
Signed-off-by: Jack Wu <wjack@google.com>
Change-Id: Ia18714461cb9f30fe110917489adddee98de194f
 2022-07-21 21:44:03 +08:00
Adam Shih
ebd7170495 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 239632439
Change-Id: I42608d6fc5b3128915f7801e9000548a12ce7efa
 2022-07-20 09:12:17 +08:00
Adam Shih
2c3812aac3 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 239484651
Bug: 239484612
Change-Id: If07a3611f40324d985a387c6dd7f2570c90c7c11
 2022-07-19 09:07:27 +08:00
Adam Shih
52ec99ce41 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 239364360
Change-Id: I6ea0b1a4fabd7ac29470afa48a0d84beccf0af28
 2022-07-18 10:55:53 +08:00
Adam Shih
5eda61d1e0 Update SELinux error 
Bug: 234547283
Change-Id: I81b2885e2b7c7f77f76bc6048c901dfc4226a4fb
 2022-07-15 00:30:06 +00:00
Robb Glasser
6652430fc4 Remove HAL sensors dontaudits. am: 46c4571485 am: b93c3b981b am: 5325bbdf2f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/19281889

Change-Id: Ifed619dba499bd940ff2c7019b7c3d6ef6e5998e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-14 02:53:05 +00:00
Robb Glasser
46c4571485 Remove HAL sensors dontaudits. 
Sensors HAL sepolicy is written, but the dontaudit parts were not
cleaned up at the time. Removing these as they are no longer needed.

Bug: 227695036
Test: No denials as expected.
Change-Id: Idc0ed7f380cb07bfc7695ef3019f335fd8fad0a2
 2022-07-13 11:06:04 -07:00
Adam Shih
9899069adb Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 238705599
Change-Id: Ia78ce7f5b2adc41f7d64b99279681acce647e8bb
 2022-07-12 12:49:17 +08:00
Adam Shih
1e606d96f1 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 238571150
Change-Id: Idb8c4f3e99d23e73fe2e63beec1142d1207c0a05
 2022-07-11 10:24:25 +08:00
Daniel Angell
3adb31f004 Remove dontaudit rules related to storageproxyd's /data access. 
Removing dontaudits for both tracking_denials/tee.te and
whitechapel_pro/tee.te results in no new audit log messages related to
storageproxyd, so they can both be removed.

Bug: 215649571
Test: adb logcat | grep -iE 'storageproxyd'

Change-Id: I8dc735bcaf0725c8d4eab4587f7a7fce21f4e25c
 2022-07-07 18:37:23 +00:00
Jenny Ho
eeced97ca9 fix avc error for fg_model/registers 
remove tracking with fix http://ag/19145061

Bug: 226271913
Signed-off-by: Jenny Ho <hsiufangho@google.com>
Change-Id: Idaa9e75a013dc7c78234bff041819c3c131f3793
 2022-07-07 06:14:42 +00:00
Adam Shih
e87fbe539d Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 238260726
Bug: 238260742
Bug: 238260741
Change-Id: Ia3796d62a044b6c0e55c280918251f48143cfd0f
 2022-07-07 10:23:05 +08:00
Adam Shih
2bd613cfe6 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 227121550
Change-Id: I3e5c653a63b099aa44a880c4d1b2a327415f4d97
 2022-07-06 01:24:15 +00:00
Denny cy Lee
7bb9a6aaf4 HwInfo: remove -sepolicy/tracking_denials/hardware_info_app.te 
Bug: 208909060
Test: not avc log for hardware_info_app
Change-Id: I52dd55bcea0dd70f60d9156937861ef2036dc46d
Signed-off-by: Denny cy Lee <dennycylee@google.com>
 2022-07-06 01:24:08 +00:00
Adam Shih
74ff6db973 Update error on ROM 8765438 
Bug: 238037492
Bug: 237093466
Test: SELinuxUncheckedDenialBootTest
Change-Id: I4b067085dc0c9f79b715505a5831cab63fda6381
Merged-In: I4b067085dc0c9f79b715505a5831cab63fda6381
 2022-07-05 03:11:33 +00:00
Adam Shih
c0ec14b9b1 Update error on ROM 8765438 
Bug: 238037492
Bug: 237093466
Test: SELinuxUncheckedDenialBootTest
Change-Id: I4b067085dc0c9f79b715505a5831cab63fda6381
 2022-07-05 11:10:34 +08:00
Alex Hong
3439f51f28 Remove googlebattery from dontaduit list 
Bug: 237700766
Bug: 237491814
Test: PtsSELinuxTestCases
Change-Id: Ic4119e552827a490ba829a80cd10c5fc3ba1d35e
 2022-07-01 16:59:04 +08:00
SalmaxChang
5631fe741c ssr_detector_app: remove tracking denials 
Avc errors already fixed. Remove tracking denials.

Bug: 205202542
Change-Id: I08522d563de58e4bc2be2c4a1bea54bbeac6adb8
 2022-06-30 07:39:34 +00:00
sukiliu
b5edce085f Update avc error on ROM 8780665 
Bug: 237491813
Bug: 237492145
Bug: 237491814
Bug: 237492146
Bug: 237492091
Test: PtsSELinuxTestCases
Change-Id: I615453d58ea17306ceefe6195bc95974de0f259b
 2022-06-30 05:53:29 +00:00
SalmaxChang
a7127617ba ssr_detector_app: remove tracking denials 
Avc errors already fixed. Remove tracking denials.

Bug: 207571417
Bug: 205202542
Change-Id: I97d5f732e038dbdaf7885bdb9ca63bc518a97d51
 2022-06-29 15:52:43 +00:00
sukiliu
1f681630c4 [Do not merge] Remove regmap from list 
Bug: 227286343
Test: PtsSELinuxTestCases
Change-Id: If32c472dcd6c0e0b83008a660ca6bbe6d79f44e3
 2022-06-27 03:33:16 +00:00
jimmyshiu
ffec0c64b4 Remove dontaudit since read early_wakeup completed 
The display file node, early_wakeup, just for trigger the worker for
display and it doesn't have meaningful read function. But PowerHAL read
all nodes and try to dump their valuesi while triggering bugreport. As
the read operation has been completed, so we can remove the clause.

07-02 00:53:56.888   522   522 W android.hardwar: type=1400 audit(0.0:8): avc: denied { dac_read_search } for capability=2 scontext=u:r:hal_power_default:s0 tcontext=u:r:hal_power_default:s0 tclass=capability permissive=0
07-02 00:53:56.888   522   522 W android.hardwar: type=1400 audit(0.0:9): avc: denied { dac_override } for capability=1 scontext=u:r:hal_power_default:s0 tcontext=u:r:hal_power_default:s0 tclass=capability permissive=0

Bug: 192617242
Bug: 208909174
Bug: 221384860
Test: adb shell dumpsys android.hardware.power.IPower/default
Change-Id: Ice57c5cda51db150ec313337bb2385503f43529f
 2022-06-27 02:11:57 +00:00
Peter Csaszar
d893b6e7f8 Remove ssr_detector_app dontaudits 
Bug: 207571417
Test: pts-tradefed run pts -m PtsSELinuxTest
Signed-off-by: Peter Csaszar <pcsaszar@google.com>
Change-Id: I2e92edf4d22a142a3817b5f399edd65ebbe4b32f
 2022-06-24 04:38:18 +00:00
Jinting Lin
515e981d41 Remove obsolete sepolicy of silentlogging am: d3d4af1aac am: dad0dce95f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: Ib5d064fe80ca94ef0b1ba7b2f3712ad453066d66
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:46:34 +00:00
Jinting Lin
6769f9e352 Remove obsolete sepolicy of silentlogging am: d3d4af1aac 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/18871735

Change-Id: I7fbe60eee731c910d75113b2b7b1de9f10b227ba
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-20 06:28:50 +00:00