Evolution-X-Tensor/device_google_gs201
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2526 commits 1 branch 0 tags 63 MiB
Commit graph

2526 commits

This branch
This branch
All branches
Author SHA1 Message Date
Android Build Coastguard Worker
f9823e70d4 Snap for 11840485 from 9d3f39622c to 24Q3-release 
Change-Id: I477aa614a0de18418ec642ee22f1a29d6da07695
 2024-05-14 23:02:25 +00:00
Chaitanya Cheemala
9d3f39622c Revert "SELinux: fix avc denials" 
This reverts commit d1fe9f8f80.

Reason for revert: Likely culprit for b/340511525  - verifying through ABTD before revert submission. This is part of the standard investigation process, and does not mean your CL will be reverted.

Change-Id: I65790202886298f9862d68d65cf794e67db5a878
 2024-05-14 15:07:58 +00:00
Ken Yang
d1fe9f8f80 SELinux: fix avc denials 
Bug: 338332877
Change-Id: I5fb0a73cdc0d276ec14e55906c9bbd9c6875c786
Signed-off-by: Ken Yang <yangken@google.com>
 2024-05-14 05:14:55 +00:00
Android Build Coastguard Worker
646fe3ea09 Snap for 11816316 from 5a1bb0df6e to 24Q3-release 
Change-Id: I69c6b434a460c817506ceccaccf850ae20ab257e
 2024-05-08 23:02:20 +00:00
chenkris
5a1bb0df6e Allow fingerprint to access the folder /data/vendor/fingerprint 
Fix the following avc denial:
android.hardwar: type=1400 audit(0.0:20): avc:  denied  { write } for  name="fingerprint" dev="dm-56" ino=36703 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir permissive=0

Bug: 267766859
Test: Tested fingerprint under enforcing mode
Change-Id: I11c465fe89fcbfa7d9132ccee1c7666d1cd75a24
 2024-05-08 08:46:26 +00:00
Android Build Coastguard Worker
2d8eb423ca Snap for 11772614 from a4536fa426 to 24Q3-release 
Change-Id: Ic1b989030256ea24ecf73ffb81b47b282b01a9a0
 2024-04-27 01:02:15 +00:00
Enzo Liao
a4536fa426 [automerger skipped] Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common. am: ceab5d1740 -s ours 
am skip reason: Merged-In I57f9b8b77aa070ad2216cae1e84630a26a03618d with SHA-1 66254ad14d is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/27046444

Change-Id: Ic36d68f2a6402a9d8c16b12fb0157b7c591000e4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-26 08:08:35 +00:00
Enzo Liao
ceab5d1740 Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common. 
New paths (ag/26620507):
  RamdumpService: device/google/gs-common/ramdump_app
  SSRestartDetector: device/google/gs-common/ssr_detector_app

Bug: 298102808
Design: go/sys-software-logging
Test: Manual
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:66254ad14d1401cb3992b64352efa5c243203bc3)
Merged-In: I57f9b8b77aa070ad2216cae1e84630a26a03618d
Change-Id: I57f9b8b77aa070ad2216cae1e84630a26a03618d
 2024-04-26 07:54:29 +00:00
Android Build Coastguard Worker
c630a18c35 Snap for 11766482 from c5ef94d21e to 24Q3-release 
Change-Id: Ic60009046c44edb304b39aab00b2a318f154d4e6
 2024-04-25 23:02:21 +00:00
Spade Lee
c5ef94d21e [automerger skipped] pixelstats_vendor: add logbuffer_device r_file_perms am: 9a131d961b -s ours 
am skip reason: Merged-In Ia591a091fe470c2c367b80b8f1ef9eea6002462c with SHA-1 596f6ab199 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/27095520

Change-Id: I09614fa5b620f5fc95d98f7d4edad19d0241939d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-25 08:20:29 +00:00
Spade Lee
9a131d961b pixelstats_vendor: add logbuffer_device r_file_perms 
avc: denied { read } for name="logbuffer_maxfg_monitor" dev="tmpfs" ino=1034 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:logbuffer_device:s0 tclass=chr_file permissive=0

Bug: 329174074
Test: no denied log, and able to read logbuffer in pixelstats_vendor
Signed-off-by: Spade Lee <spadelee@google.com>
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:596f6ab1998c584fc2a223831f6f59202e9ad4c5)
Merged-In: Ia591a091fe470c2c367b80b8f1ef9eea6002462c
Change-Id: Ia591a091fe470c2c367b80b8f1ef9eea6002462c
 2024-04-25 06:10:52 +00:00
Android Build Coastguard Worker
41e4bef097 Snap for 11753769 from b826a9bf8e to 24Q3-release 
Change-Id: I75905f76fe7f717edd245f7b40884b0b3d40adff
 2024-04-23 23:02:42 +00:00
Wilson Sung
b826a9bf8e Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 336451433
Bug: 336451874
Bug: 336451113
Bug: 336451787
Change-Id: I5124448d8e35615da861011235a45ce890297564
 2024-04-23 06:53:55 +00:00
Android Build Coastguard Worker
0bbef9a436 Snap for 11710546 from 0095106594 to 24Q3-release 
Change-Id: I5469bfc8f89226f22dcfc7cdce9267da451d0cdf
 2024-04-13 01:02:30 +00:00
Wilson Sung
0095106594 [automerger skipped] Update SELinux error am: 768c83d78c -s ours 
am skip reason: Merged-In I604c091a24f3f13f7a354c08c210deeaa9ac9cb1 with SHA-1 2747579f1e is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/26926463

Change-Id: I95252fcc33f74640531163720b0ea768e80b414e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-11 23:35:19 +00:00
Wilson Sung
4f4241e64c [automerger skipped] Update SELinux error am: db99d33eb7 am: 8379633fd2 -s ours 
am skip reason: Merged-In I604c091a24f3f13f7a354c08c210deeaa9ac9cb1 with SHA-1 2747579f1e is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/3038851

Change-Id: I2a0eef20fe26eeaf50bfc9a6a4c64c0740fabfc6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-11 23:35:05 +00:00
Wilson Sung
768c83d78c Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 329380891
Test: scanBugreport
Bug: 329381126
Test: scanAvcDeniedLogRightAfterReboot
Bug: 329380363
Merged-In: I604c091a24f3f13f7a354c08c210deeaa9ac9cb1
Change-Id: I604c091a24f3f13f7a354c08c210deeaa9ac9cb1
 2024-04-11 23:27:38 +00:00
Wilson Sung
8379633fd2 Update SELinux error am: db99d33eb7 
Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/3038851

Change-Id: I594e8d4c0c404a3d5af25ea98d6e56db88171b6f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-11 23:18:29 +00:00
Android Build Coastguard Worker
6eb2cfbd4a Snap for 11704135 from 66254ad14d to 24Q3-release 
Change-Id: I733a6e86a3dd10ec59e4937ed313f6f2234805d1
 2024-04-11 23:02:16 +00:00
Wilson Sung
db99d33eb7 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 329380891
Test: scanBugreport
Bug: 329381126
Test: scanAvcDeniedLogRightAfterReboot
Bug: 329380363
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:7f8de02b7c75ddc3fa0a5873b3b36128cde15d6f)
Merged-In: I604c091a24f3f13f7a354c08c210deeaa9ac9cb1
Change-Id: I604c091a24f3f13f7a354c08c210deeaa9ac9cb1
 2024-04-11 22:29:08 +00:00
Enzo Liao
66254ad14d Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common. 
New paths (ag/26620507):
  RamdumpService: device/google/gs-common/ramdump_app
  SSRestartDetector: device/google/gs-common/ssr_detector_app

Bug: 298102808
Design: go/sys-software-logging
Test: Manual
Change-Id: I57f9b8b77aa070ad2216cae1e84630a26a03618d
 2024-04-11 02:03:11 +00:00
Android Build Coastguard Worker
585c01604c Snap for 11666018 from 8d9a941f43 to 24Q3-release 
Change-Id: Ia2183042796e20b45f4719938f141c94e966f09d
 2024-04-03 23:02:09 +00:00
Spade Lee
8d9a941f43 sepolicy: allow kernel to search vendor debugfs am: 17ab68a5ac 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs201-sepolicy/+/26793540

Change-Id: Iebcb71b3121e90acb4c1744f6b3eb6ca1db7206f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-03 04:24:44 +00:00
Spade Lee
17ab68a5ac sepolicy: allow kernel to search vendor debugfs 
audit: type=1400 audit(1710259012.824:4): avc:  denied  { search } for  pid=128 comm="kworker/3:1" name="max77779fg" dev="debugfs" ino=24204 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_maxfg_debugfs:s0 tclass=dir permissive=0
audit: type=1400 audit(1710427790.680:2): avc:  denied  { search } for  pid=10 comm="kworker/u16:1" name="gvotables" dev="debugfs" ino=10582 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_votable_debugfs:s0 tclass=dir permissive=1
audit: type=1400 audit(1710427790.680:3): avc:  denied  { search } for  pid=211 comm="kworker/u16:4" name="google_charger" dev="debugfs" ino=16673 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_charger_debugfs:s0 tclass=dir permissive=1

Bug: 328016570
Bug: 329317898
Test: check all debugfs folders are correctly mounted
Change-Id: I7ca3804056bbfd8459bac2c029a494767f3ae1a6
Signed-off-by: Spade Lee <spadelee@google.com>
 2024-04-02 07:35:39 +00:00
Android Build Coastguard Worker
53ec29b4ab Snap for 11654651 from 60c66448ef to 24Q3-release 
Change-Id: Ia3e4a4de979d4794a88cda931795d17eb8f0be6d
 2024-04-01 23:02:00 +00:00
kadirpili
60c66448ef gs201: telephony property for cbd 
Bug: 315104803
Change-Id: I2560871e9477a5f8dcd9519b6c60353e89c5df82
 2024-04-01 05:12:58 +00:00
Android Build Coastguard Worker
1d6a2716bf Snap for 11619294 from 2b9b7cc688 to 24Q3-release 
Change-Id: I8a4ca7264b820802acb74b8c3b4c247922d7cb84
 2024-03-23 21:01:54 +00:00
Android Build Coastguard Worker
4a08590c62 Snap for 11617975 from 596f6ab199 to 24Q3-release 
Change-Id: Ib8ecb6cac024d03a91615e5b4ace5e66d9dc4230
 2024-03-23 01:01:54 +00:00
Hungyen Weng
2b9b7cc688 Allow modem_svc to access modem files and perfetto 
Bug: 330730987

Test: Confirmed that modem_svc is able to access token db files in modem partition
Test: Confiemed that modem_svc can send traces to perfetto

Change-Id: Id50a1fc3b343be9eec834418638c689d8ea56b35
 2024-03-22 23:53:34 +00:00
Spade Lee
596f6ab199 pixelstats_vendor: add logbuffer_device r_file_perms 
avc: denied { read } for name="logbuffer_maxfg_monitor" dev="tmpfs" ino=1034 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:logbuffer_device:s0 tclass=chr_file permissive=0

Bug: 329174074
Test: no denied log, and able to read logbuffer in pixelstats_vendor
Change-Id: Ia591a091fe470c2c367b80b8f1ef9eea6002462c
Signed-off-by: Spade Lee <spadelee@google.com>
 2024-03-22 07:30:26 +00:00
Android Build Coastguard Worker
c9b03707e2 Snap for 11610847 from 269f1640d8 to 24Q3-release 
Change-Id: I9448601862609ae9c1d729a7d376a7e02a9c3313
 2024-03-21 23:02:01 +00:00
Spade Lee
269f1640d8 sepolicy: allow kernel to search vendor debugfs 
audit: type=1400 audit(1710259012.824:4): avc:  denied  { search } for  pid=128 comm="kworker/3:1" name="max77779fg" dev="debugfs" ino=24204 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_maxfg_debugfs:s0 tclass=dir permissive=0
audit: type=1400 audit(1710427790.680:2): avc:  denied  { search } for  pid=10 comm="kworker/u16:1" name="gvotables" dev="debugfs" ino=10582 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_votable_debugfs:s0 tclass=dir permissive=1
audit: type=1400 audit(1710427790.680:3): avc:  denied  { search } for  pid=211 comm="kworker/u16:4" name="google_charger" dev="debugfs" ino=16673 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_charger_debugfs:s0 tclass=dir permissive=1

Bug: 328016570
Bug: 329317898
Test: check all debugfs folders are correctly mounted
Change-Id: I7ca3804056bbfd8459bac2c029a494767f3ae1a6
Signed-off-by: Spade Lee <spadelee@google.com>
 2024-03-20 18:17:15 +00:00
Android Build Coastguard Worker
4be3c5082f Snap for 11571437 from 2747579f1e to 24Q3-release 
Change-Id: I36fd5548fa045008aca2579f23919b11648c3457
 2024-03-13 23:02:06 +00:00
Wilson Sung
2747579f1e Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 329380891
Test: scanBugreport
Bug: 329381126
Test: scanAvcDeniedLogRightAfterReboot
Bug: 329380363
Change-Id: I604c091a24f3f13f7a354c08c210deeaa9ac9cb1
 2024-03-13 09:28:36 +00:00
Android Build Coastguard Worker
fb3267e969 Snap for 11565217 from d01ca34870 to 24Q3-release 
Change-Id: Ice5f115a9a32c94c5b58b1785afabfc7e0616160
 2024-03-12 23:02:22 +00:00
Thiébaud Weksteen
d01ca34870 [automerger skipped] Remove persist.bootanim.color property definitions am: ece5909d1c am: e1d9702dad -s ours 
am skip reason: Merged-In I9d92456d7e790398a79a941738e3290975f7b659 with SHA-1 4baa59a176 is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2995061

Change-Id: Ifb107af725886c5c99d4c4d37224e712bdb87913
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-03-12 06:40:18 +00:00
Thiébaud Weksteen
e1d9702dad Remove persist.bootanim.color property definitions am: ece5909d1c 
Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2995061

Change-Id: I63f41da6a07965a0a4584a27a386fd736e42721d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-03-12 05:57:14 +00:00
Thiébaud Weksteen
ece5909d1c Remove persist.bootanim.color property definitions 
These now belong to the platform policy.

Bug: 321088135
Test: build
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:4baa59a176f6c4d287871f297b1d6481c8882379)
Merged-In: I9d92456d7e790398a79a941738e3290975f7b659
Change-Id: I9d92456d7e790398a79a941738e3290975f7b659
 2024-03-08 01:38:12 +00:00
Android Build Coastguard Worker
8c9b7435e5 Snap for 11545716 from 002d891a05 to 24Q3-release 
Change-Id: I1e9bd99e914a6b99204e0859bf8b90f179d27b79
 2024-03-08 00:01:56 +00:00
Xin Li
002d891a05 [automerger skipped] Merge Android 14 QPR2 to AOSP main am: a4ca12105a -s ours am: 5fc9504894 -s ours 
am skip reason: Merged-In I75fb73fcb7f1adbcc511fec0e64c9fbd311e5e0c with SHA-1 0395eebcad is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2989097

Change-Id: I28dd491e45593d69fa8a4679bd4905bb76980731
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-03-07 10:46:21 +00:00
Xin Li
5fc9504894 [automerger skipped] Merge Android 14 QPR2 to AOSP main am: a4ca12105a -s ours 
am skip reason: Merged-In I75fb73fcb7f1adbcc511fec0e64c9fbd311e5e0c with SHA-1 0395eebcad is already in history

Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2989097

Change-Id: I3978083a92f1c630eedbf1d293fc19c0485dac0c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-03-07 09:54:55 +00:00
Xin Li
a4ca12105a Merge Android 14 QPR2 to AOSP main 
Bug: 319669529
Merged-In: I75fb73fcb7f1adbcc511fec0e64c9fbd311e5e0c
Change-Id: I1f1180e489bba5e4f74339bc7b1f076c4efb52e3
 2024-03-06 09:29:48 -08:00
Android Build Coastguard Worker
88f1ffda41 Snap for 11533280 from 9088b1a9be to 24Q3-release 
Change-Id: I48154565ccdce3ce0db7b98d8b9823d07f9961e0
 2024-03-06 00:02:05 +00:00
Sungtak Lee
9088b1a9be Add AIDL media.c2 into service_contexts 
Bug: 321808716
Change-Id: Ib2426b1997517b23d1301f3a1a30d9029d129971
 2024-03-05 06:16:54 +00:00
Android Build Coastguard Worker
7a6395dde5 Snap for 11526283 from 1c7d8f80f2 to 24Q3-release 
Change-Id: Ia8ee5c75f662e087055fe161d28e8098252b3d87
 2024-03-05 00:26:05 +00:00
Peter Lin
1c7d8f80f2 add dsim wakeup labels 
Bug: 322035303
Bug: 321733124
test: ls sys/devices/platform/1c2c0000.drmdsim/1c2c0000.drmdsim.0/wakeup -Z
Change-Id: Ifcf73176620f44743a8aa252f8afed85c3af475c
 2024-03-04 03:02:14 +00:00
Android Build Coastguard Worker
a94b81f42a Snap for 11504269 from 1e0e9963e3 to 24Q3-release 
Change-Id: Ic15394d37eefad92f0bdc9143119684f946102e1
 2024-02-28 00:02:51 +00:00
Nathan Kulczak
1e0e9963e3 Remove SELinux exception 
Remove SELinux dontaudit section after cl to fix race condition was merged.

Bug: 306344298
Test: Passed on local and automated SELinuxUncheckedDenialBootTest
Change-Id: I5b17c49d47775253491c61e54f1a268fd16081a1
Signed-off-by: Nathan Kulczak <nathankulczak@google.com>
 2024-02-27 05:27:01 +00:00
Thiébaud Weksteen
988131fe3d Revert^2 "Remove persist.bootanim.color property definitions" 
d9b51a61ce

Change-Id: I18c3a290947c21a572754eeecd1d5204c2cbe523
 2024-02-25 23:58:59 +00:00
Android Build Coastguard Worker
cec3e4ccf3 Snap for 11492556 from d9b51a61ce to 24Q3-release 
Change-Id: If2b481ec36dcb7a1efd9e35c3b7bcbfe3172e991
 2024-02-24 02:16:48 +00:00