Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2474 commits 1 branch 0 tags 63 MiB
Commit graph

2474 commits

This branch
This branch
All branches
Author SHA1 Message Date
TeYuan Wang
213dbe2a39 Add sepolicy for thermalHAL power link feature 
Bug: 204522993
Test: thermalHAL can read ODPM data under enforcing mode
Change-Id: I58ad63003a68421b25b65fe5c43fa2c3a50696c4
 2022-01-25 09:37:14 +00:00
Jinting Lin
6c24e3f9ba sepolicy: fix avc denied for logger app 
Bug: 205202541
Bug: 205779798
Bug: 207062780
Bug: 206045604
Bug: 207571546
Bug: 207431041
Bug: 208721679

Test: flash forrest build, no avc denied log on logger app

Change-Id: I6be694f727d619ba89eaa4d006c74ba4dc582095
 2022-01-25 08:16:48 +00:00
Ted Lin
9748ae74c2 Using dontaudit to fix the avc on boot test 
[    1.950092] audit: type=1400 audit(1641787406.988:2): avc:  denied  { search } for  pid=49 comm="kworker/7:0" name="google_battery" dev="debugfs" ino=36095 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_battery_debugfs:s0 tclass=dir permissive=1

Bug: 213817227
Test: check bugreport
Change-Id: Ia056856476a17feb40c20c21cf1515e0feddfc17
Signed-off-by: Ted Lin <tedlin@google.com>
 2022-01-25 05:18:18 +00:00
Ray Chi
6733f9667d add sepolicy for set_usb_irq.sh 
Bug: 202103325
Test: build pass
(synced from commit 714075eba72067489d08c36b87bfed9656092b2c)

Change-Id: I309e24a5084ed33278d3fbe49e4ad1cc91b1255a
 2022-01-25 03:28:35 +00:00
Stephen Crane
019c8e6fcf Allow TEE storageproxyd permissions needed for DSU handling 
Allows the vendor TEE access to GSI metadata files (which are publicly
readable). Storageproxyd needs access to this metadata to determine if a
GSI image is currently booted. Also allows the TEE domain to make new
directories in its data path.

Test: access /metadata/gsi/dsu/booted from storageproxyd
Bug: 203719297
Change-Id: Ief6166aaa20ccab27dc7864373722383efae0718
 2022-01-24 23:23:04 +00:00
Adam Shih
c050b66976 update error on ROM 8101782 
Bug: 215649341
Bug: 215649571
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I1469117c6b9479fe40aa16975b00bcbe23ced015
 2022-01-24 03:56:22 +00:00
Jagadeesh Pakaravoor
a846416750 camera_hal: allow changing kthread priority 
Allow changing kthread priority during insmod for camera-hal/LWIS.

Bug: 199950581
Test: boot, local camera testing
Change-Id: If59bfe101cab17854a5472ef388411bd19ef0a68
 2022-01-24 03:17:16 +00:00
Darren Hsu
89f14a9496 sepolicy: allow PowerStats HAL to access below sysfs 
aoc, acpm_stats, cpu, edgetpu, iio_devices, odpm, wifi and ufs

(All avc logs are listed in b/207598247#comment2)

Bug: 207062210
Bug: 207571335
Bug: 207720720
Bug: 207598247
Test: dump power stats with no relevant avc error
Change-Id: I9c99af2d06461a2f86ef02d76b3aa8ea669e58e9
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-01-24 02:05:11 +00:00
Darren Hsu
a7e3b39ca4 sepolicy: allow PowerStats HAL to call BT HAL 
Bug: 205904367
Test: dump power stats with no relevant avc error
Change-Id: Idc7ecbc7e3571011c8c12c421bdce0015e78135f
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-01-24 02:04:21 +00:00
Adam Shih
13bd5ff5df let vendor_init set usb property 
[    6.419785] type=1107 audit(1642741073.304:7): uid=0 auid=4294967295 ses=4294967295 subj=u:r:init:s0 msg='avc: denied { set } for property=vendor.usb.rndis.config pid=352 uid=0 gid=0 scontext=u:r:vendor_init:s0 tcontext=u:object_r:vendor_usb_config_prop:s0 tclass=property_service permissive=0'
Bug: 205214899
Test: unplug and plug in usb with no relevant error
Change-Id: I8104ba9f0e0cb5b8b0d5e66964d9306d39d4c296

Change-Id: Ib76f7cae9015bcbd255d79edc099072a58860028
 2022-01-21 07:03:22 +00:00
Adam Shih
cf275e10c6 fix sim card related permission 
[   21.176786] type=1107 audit(1642737478.108:25): uid=0 auid=4294967295 ses=4294967295 subj=u:r:init:s0 msg='avc: denied { set } for property=vendor.radio.allowed_types_loaded0 pid=1931 uid=10205 gid=10205 scontext=u:r:oemrilservice_app:s0:c205,c256,c512,c768 tcontext=u:object_r:vendor_rild_prop:s0 tclass=property_service permissive=1'
[   32.319439] type=1400 audit(1642737489.248:28): avc: denied { read } for comm="pool-4-thread-1" name="u:object_r:vendor_rild_prop:s0" dev="tmpfs" ino=321 scontext=u:r:vendor_ims_app:s0:c212,c256,c512,c768 tcontext=u:object_r:vendor_rild_prop:s0 tclass=file permissive=1 app=com.shannon.imsservice
Bug: 205214899
Test: boot to home with sim card inserted

Change-Id: Id54441adc109d6977013abdc94c31d9b46bc203b
 2022-01-21 07:03:02 +00:00
William Tai
492f8a39f4 allow android.hardware.power.stats-service.pixel to access sysfs_leds 
01-20 15:26:18.272   760   760 I android.hardwar: type=1400 audit(0.0:8): avc: denied { search } for name="backlight" dev="sysfs" ino=69387 scontext=u:r:hal_power_stats_default:s0 tcontext=u:object_r:sysfs_leds:s0 tclass=dir permissive=1
01-20 15:26:18.272   760   760 I android.hardwar: type=1400 audit(0.0:9): avc: denied { read } for name="state" dev="sysfs" ino=69419 scontext=u:r:hal_power_stats_default:s0 tcontext=u:object_r:sysfs_leds:s0 tclass=file permissive=1
01-20 15:26:18.272   760   760 I android.hardwar: type=1400 audit(0.0:10): avc: denied { open } for path="/sys/devices/platform/1c2c0000.drmdsim/1c2c0000.drmdsim.0/backlight/panel0-backlight/state" dev="sysfs" ino=69419 scontext=u:r:hal_power_stats_default:s0 tcontext=u:object_r:sysfs_leds:s0 tclass=file permissive=1

Bug: 214473005
Test: no avc denied error during bootup
Change-Id: I5b8a232202a8f1c5b10878c10be9bec3329fb7ad
 2022-01-21 06:14:32 +00:00
Devika Krishnadas
35abe98124 Edit vframe-secure policy 
Bug: 215417614
Test: GL2SecureRendering.apk
Signed-off-by: Devika Krishnadas <kdevika@google.com>
Change-Id: Ief75b8581887d28916d512ec90acc575311276db
 2022-01-21 04:47:21 +00:00
Adam Shih
3062ac34cd allow storageproxyd to set itself to system 
Bug: 205904330
Test: boot to home under enforcing mode
Change-Id: I48272f6507f6cdb930f734b86d3b21b0e553cac0
 2022-01-20 14:48:49 +08:00
Adam Shih
26778aff7b be able to dump camera info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I90a4c971c50290c38f7913dc18404daf0270b907
 2022-01-20 14:17:00 +08:00
Adam Shih
f56dba1b24 be able to dump CPU info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I14abe138b6ad4a842edb143318cc5d867d575ec3
 2022-01-20 14:11:25 +08:00
Adam Shih
36dc06e08a be able to dump debugfs info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I4f7fc7a8f0029f1c1f398403d938bd6b7b96a43e
 2022-01-20 11:12:06 +08:00
Adam Shih
8209221242 be able to run usf dump binary 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I83687a284c4a27e723e31ce19edd2cbceaa69ab8
 2022-01-20 11:12:06 +08:00
Adam Shih
f6dd48e07b be able to dump modem silent log 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Iec520b21d904fa4119a4111fe4de659c28634826
 2022-01-20 11:12:06 +08:00
Adam Shih
0e96eb0865 be able to dump rfsd info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Idbe125d76392a8c04b3fa5f475e0c3aa2f9a199c
 2022-01-20 11:12:06 +08:00
Adam Shih
43d7a148d5 be able to dump GPS 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Ied6d86090e3ae29c0b49c4880a515669940c5706
 2022-01-20 11:12:06 +08:00
Adam Shih
bfe1d014a2 be able to dump chip id 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Ie539ab9afac80ea58e418a6fbe503ad822299b3f
 2022-01-20 11:12:06 +08:00
Adam Shih
8518e2e1ce be able to dump wireless charging info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Ie4e19a322a312e183e23197f600a527ee5ceed4d
 2022-01-20 11:12:06 +08:00
Adam Shih
75ad9a3fcc be able to dump exynos info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I72ca4c8715130558d8dd3dccbf941dde6b9f064e
 2022-01-20 11:12:05 +08:00
Adam Shih
93000fdd06 be able to dump aoc info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I60cb5cce8b6cb7e417ee3efdeceeaafc2f071dfa
 2022-01-20 11:12:05 +08:00
Adam Shih
2417726674 be able to dump crashinfo 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Id01348da754d39f36262a7757d8c65ee746032c3
 2022-01-20 11:12:05 +08:00
Adam Shih
dee839cecd be able to dump thermal 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I6f8e2ce3b64220efba4172ef6fe05cc3fdbb6cf3
 2022-01-20 11:12:05 +08:00
Adam Shih
f884bc1f19 be able to dump wifi info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I3d0c257a20cfd6da6572cd01e76416dfa56c3c23
 2022-01-20 11:12:05 +08:00
Adam Shih
e8da0e146f be able to dump bcl in userdebug ROM only 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Id8127d495ff1b332284beda1e411b2327ec8625f
 2022-01-20 11:12:05 +08:00
Adam Shih
db22459b69 be able to dump battery info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I3705ee59b37d34c7d676943ca8f0c9995ef0262e
 2022-01-20 11:12:05 +08:00
Adam Shih
7717461bb2 be able to dump acpm 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I2435fea779977313e2f731733463c5c4313fda3c
 2022-01-20 11:12:05 +08:00
Adam Shih
7897e0f6ca Be able to dump ramdump info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I0cd8ca483df669505f11ff6fdd19cc15cb9959e1
 2022-01-19 05:38:52 +00:00
Adam Shih
03fbacc6ac Be able to dump radio info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I6a83029e9e0d0c42892b64a8acfa60cc514efba9
 2022-01-19 05:38:52 +00:00
Adam Shih
f72d021bd0 Be able to dump modem info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I0b9384ec4ddda5d3d49a451c529c03fc4d53da8f
 2022-01-19 05:38:52 +00:00
Adam Shih
5b00a6c8a2 Be able to dump logbuffer 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Ieae4d64b497e911a6c8048f789e364cd1b9d2f4b
 2022-01-19 05:38:52 +00:00
Adam Shih
b8053f6b6e Be able to dump citadel info 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: I4f76a17004b81adbddeb7557e50f488b471aa3c7
 2022-01-19 05:38:52 +00:00
Adam Shih
11d9e265ee be able to dump aoc device 
Bug: 208721677
Bug: 208909124
Test: do adb bugreport with no relevant error log
Change-Id: Icbb2364638dbabe9bcccd744413d5c679b35d058
 2022-01-19 05:38:52 +00:00
Chris Lu
ca13b6a9bf hardwareinfo: add sepolicy for display 
Bug: 203593024
Test: 1. rm -r /data/data/com.google.android.hardwareinfo/
      2. Connect wifi and reboot
      3. Check hardwareinfo, there is no avc denied logs
Change-Id: I44db881286946a283f320302efd6e662fcdae683
 2022-01-19 04:27:22 +00:00
Adam Shih
b2f810f9dd sort tracking file to review it easily 
Bug: 208909124
Bug: 208721677
Test: boot with no relevant error when taking a bugreport
Change-Id: I5dc5d5cdbae329372f58f056dcf10e205ee7e02a
 2022-01-18 08:30:45 +00:00
Adam Shih
72a1bebd3d update error on ROM 8088139 
Bug: 215042694
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I741e1e101f050fe915142ec1699d2bbc553f14d7
 2022-01-18 05:42:55 +00:00
Matt Buckley
59a7bf0bb7 SEPolicy access issue for hal_graphics_composer_default should be fixed 
with ag/16631829

Bug: b/214473134
Test: pts-tradefed run pts -m PtsSELinuxTest

Change-Id: Id790bbfb9db534b86c4c5ae4564cfb2d5771ec4b
 2022-01-17 20:51:58 +00:00
joenchen
dd55e32ba1 Label min_vrefresh and idle_delay_ms as sysfs_display 
Bug: 213299701
Test: Check the files label by "adb shell ls -Z"
Change-Id: I4c10582ec7dee516b54fb8aac77dafa825aaa93d
 2022-01-17 10:21:16 +00:00
Adam Shih
56df08e495 fix dumpstate permission 
Bug: 208721809
Test: run bugreport under enforcing mode and found  no relevant errors
Change-Id: I106d95fd01b321af815ef8e580305702be716021
 2022-01-17 14:54:54 +08:00
Adam Shih
d9a2fb8506 grant systemui app access to touch service 
Bug: 204718221
Test: boot with no relevant error
Change-Id: Ic320cf682e481522ef9acad6c4eb63891c84c80c
 2022-01-17 11:20:07 +08:00
linjoey
42ac322b3d Add vulkan and gralloc sepolicy. 
Bug: 206891640
Test: Test CTS testVulkanHardwareFeatures passed.
Change-Id: Ia14aa691d6dbfad40344895c9e6a63a267754864
 2022-01-17 02:21:04 +00:00
Adam Shih
0b322cac3d make GPU mali firmware accessible 
Bug: 205779849
Test: boot with no relevant log.

Change-Id: I0cc1c1f84df44b5fbed239d6771937f62861bdb2
 2022-01-17 02:11:39 +00:00
Matt Buckley
5bf8862b01 Allow HWC to get device_config_surface_flinger_native_boot_prop for adpf flags 
For the hardware composer and surfaceflinger to coordinate on certain features, it is necessary for the hardware composer to be able to read the surface_flinger_native_boot_prop to know what should be enabled.

Bug: b/214473134
Test: None
Change-Id: If03dae54ea17a8131c489f56092c0edd974ea41b
 2022-01-14 20:20:24 +00:00
Xu Han
9633922461 Fix rlsserive selinux denials 
Bug: 213817228
Test: check "avc denied" log with camera streaming.
Change-Id: Id255ffab3ca145cb0708b701e2afccdcd76ef4ea
 2022-01-14 10:22:40 -08:00
Adam Shih
22786d49a4 update error on ROM 8078837 
Bug: 214473134
Bug: 214473005
Bug: 214473093
Bug: 214472867
Bug: 214472869
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I8a84883655b6b259b0079d947496616974beb944
 2022-01-14 05:44:13 +00:00
Siddharth Kapoor
8b241f5c35 Update selinux for init-insmod-sh needed for gpu probe 
Bug: 207062151
Test: related avc denials not noticed in the device logs
Change-Id: I87ff2251fd7d92f8b0eb3fac43889758788b702f
Signed-off-by: Siddharth Kapoor <ksiddharth@google.com>
 2022-01-14 04:24:52 +00:00