Evolution-X-Tensor/device_google_lynx
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
177 commits 1 branch 0 tags 6.1 MiB
Commit graph

177 commits

This branch
This branch
All branches
Author SHA1 Message Date
Hsiu-Chang Chen
6122c700d7 Add sepolicy for wifi_sniffer and wifi_perf_diag am: e465f1a856 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19738530

Change-Id: I84dc888428a7ce086b342b4f91c8300b001bc964
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-25 08:56:12 +00:00
Hsiu-Chang Chen
e465f1a856 Add sepolicy for wifi_sniffer and wifi_perf_diag 
avc: denied { search } for name="wifi" dev="dm-38" ino=329 scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:vendor_wifi_vendor_data_file:s0 tclass=dir
avc: denied { setuid } for capability=7 scontext=u:r:wifi_sniffer:s0 tcontext=u:r:wifi_sniffer:s0 tclass=capability
avc: denied { setgid } for capability=6 scontext=u:r:wifi_sniffer:s0 tcontext=u:r:wifi_sniffer:s0 tclass=capability
avc: denied { search } for comm="wifi_perf_diag" name="wifi" dev="dm-38" ino=329 scontext=u:r:wifi_perf_diag:s0 tcontext=u:object_r:vendor_wifi_vendor_data_file:s0 tclass=dir

Bug: 243727673
Test: PixelLogger works normally
Change-Id: Idd0bb1ffeb198eea855b717a745fd93fecfe2251
 2022-08-25 08:21:16 +00:00
Aaron Tsai
867fb0a6d8 Fix avc denied for hal_radioext_default am: 11348d7e76 am: 282e204a94 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19515072

Change-Id: Ideea35242707bee69695b03c8f2db22aa171953e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-15 04:46:02 +00:00
Aaron Tsai
282e204a94 Fix avc denied for hal_radioext_default am: 11348d7e76 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19515072

Change-Id: I5dcb726d8e8bf6cdb5d86d5485f3a48555490657
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-15 03:48:37 +00:00
Aaron Tsai
11348d7e76 Fix avc denied for hal_radioext_default 
05-30 13:13:30.868   867   867 I auditd  : type=1400 audit(0.0:21): avc: denied { call } for comm="HwBinder:867_1" scontext=u:r:hal_radioext_default:s0 tcontext=u:r:hal_bluetooth_default:s0 tclass=binder permissive=0

Bug: 234311798
Test: verified with the forrest ROM and error log gone
Change-Id: I0195fe2d8e81ea0149255524cfc047540159281b
 2022-08-04 07:19:10 +08:00
Hsiu-Chang Chen
412d4909c5 wifi: correct label wlan0/p2p0/wifi-aware0 device as sysfs_net am: 9ac637312b am: ccea61be5a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19493414

Change-Id: Id224eb65a530ba1cd6a4b5896b67e55e0b434c07
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-03 00:09:17 +00:00
Hsiu-Chang Chen
ccea61be5a wifi: correct label wlan0/p2p0/wifi-aware0 device as sysfs_net am: 9ac637312b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19493414

Change-Id: Ib49c753a7f85a1f49ae5f8641fe39f0cfd6ade98
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-08-02 23:43:15 +00:00
Hsiu-Chang Chen
9ac637312b wifi: correct label wlan0/p2p0/wifi-aware0 device as sysfs_net 
Bug: 239657967
Test: NetdSELinuxTest#CheckProperMTULabels
Change-Id: I31db1d2110b2c18cf12a5cfa9b13e8c6dff09d59
 2022-08-02 08:54:18 +00:00
chungkai
f2a7632106 genfs_contexts: fix path for i2c peripheral device 
paths are changed when we enable parallel module loading and
reorder the initializtaion of devices.

Test: without avc denial on L10 when booting
Bug: 240641235
Signed-off-by: chungkai <chungkai@google.com>
Change-Id: I411ceaa02cb6fb36fc767937a62f945685c4a019
 2022-08-02 08:51:28 +00:00
Darren Hsu
4deea18f30 sepolicy: allow hal_power_stats to read wifi sysfs and property am: 4e2b651fdc am: 73723cd920 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19453449

Change-Id: I14108fb80af8e3502c91a9ffd31c54c46031e18a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-29 04:27:38 +00:00
Darren Hsu
73723cd920 sepolicy: allow hal_power_stats to read wifi sysfs and property am: 4e2b651fdc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19453449

Change-Id: I7d57b3c5a4e0db4b87f135b114fd29489b84c7f4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-29 04:01:22 +00:00
Darren Hsu
4e2b651fdc sepolicy: allow hal_power_stats to read wifi sysfs and property 
avc: denied { read } for name="power_stats" dev="sysfs"
ino=114517 scontext=u:r:hal_power_stats_default:s0
tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

avc: denied { read } for name="u:object_r:wifi_hal_prop:s0"
dev="tmpfs" ino=371 scontext=u:r:hal_power_stats_default:s0
tcontext=u:object_r:wifi_hal_prop:s0 tclass=file permissive=0

Bug: 240391946
Test: get bugreport and make sure no avc denials related to
Test: hal_power_stats
Change-Id: I3be32eb4e61926c3abd24c67e7dab9b4056bf00a
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2022-07-28 15:48:41 +08:00
Hsiu-Chang Chen
840fdf2d5f Add sepolicy for hal_wifi_ext am: 0c59021e58 am: 0e5e41f7cd 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19429449

Change-Id: Ib3a82241f866de668880393e4a17e54ac4d07829
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-27 09:20:52 +00:00
Hsiu-Chang Chen
0e5e41f7cd Add sepolicy for hal_wifi_ext am: 0c59021e58 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19429449

Change-Id: I408de5e4f42976fadc6c7bc2418e21e6ccc51564
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-27 08:56:27 +00:00
Hsiu-Chang Chen
0c59021e58 Add sepolicy for hal_wifi_ext 
07-27 11:58:09.569   869   869 I auditd  : type=1400 audit(0.0:2682598):
avc: denied { read } for comm="wifi_ext@1.0-se" name="driverdump" dev="proc"
ino=4026535980 scontext=u:r:hal_wifi_ext:s0 tcontext=u:object_r:proc:s0
tclass=file permissive=0

Bug: 239656339
Test: avc error is gone
Change-Id: Icf816897780fecc1bb35696e492e6fa2661abc20
 2022-07-27 08:27:21 +00:00
Adam Shih
8181c4b5a8 Update SELinux error am: 20deb31861 am: 9d6f14ddee 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19378710

Change-Id: I5cd7eb7d38c74564c1ed14187364def665cb1417
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-22 04:40:32 +00:00
Adam Shih
9d6f14ddee Update SELinux error am: 20deb31861 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19378710

Change-Id: I68d81a43a344c43bd725b95f0fc15dda8e90b842
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-22 04:13:00 +00:00
Adam Shih
20deb31861 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 239887174
Change-Id: I4034d5ae64004142e312fd534d436014bfc0fe5b
 2022-07-22 10:34:53 +08:00
Cheney Ni
50589bd0fb Bluetooth: Allow QTI HAL service to access its logbuffer am: 49a3cfae3a am: 749b8b461c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19321140

Change-Id: I207e3dc337055c3d1834426eba94032ea7d94ef9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-21 03:30:28 +00:00
Cheney Ni
749b8b461c Bluetooth: Allow QTI HAL service to access its logbuffer am: 49a3cfae3a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19321140

Change-Id: I9eee87934ce2db6b5a05098f977a83b2f5deb209
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-21 02:43:00 +00:00
Cheney Ni
49a3cfae3a Bluetooth: Allow QTI HAL service to access its logbuffer 
Bug: 229691092
Test: Pass file permission check
Change-Id: Ic97bf3b23c452d20e5e32f3bafe2f6b2c5d2be3b
 2022-07-20 19:05:20 +00:00
Robin Peng
02d993c00f Revert "Update SELinux error" am: b51016a53f am: b0cce19f45 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19321139

Change-Id: I4fc6cc0e54cb66fbd2b15edc63cd92b3ca3b284a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-19 01:55:14 +00:00
Robin Peng
b0cce19f45 Revert "Update SELinux error" am: b51016a53f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19321139

Change-Id: Idb65cad0d77e120d560d295d192ff18f9a7a9ede
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-19 01:36:08 +00:00
Robin Peng
b51016a53f Revert "Update SELinux error" 
This reverts commit 74af0fe9e6.

Reason to revert: issue has been fixed
Bug: 239364576
Bug: 239364745
Signed-off-by: Robin Peng <robinpeng@google.com>
Change-Id: Iaef3454b376a7d5266b72f242b0ca94c77e1c1fe
 2022-07-18 22:28:45 +08:00
Adam Shih
c8cb1782e0 Update SELinux error am: 74af0fe9e6 am: 0d7906333b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19320248

Change-Id: If1871a5348c14123d549535c74fd7c2a985eef87
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-18 08:04:42 +00:00
Adam Shih
0d7906333b Update SELinux error am: 74af0fe9e6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19320248

Change-Id: I670ce952cb2a6afeadad4d03899d2381be8ef32f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-18 07:45:48 +00:00
Adam Shih
74af0fe9e6 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 239364745
Change-Id: I65e5ac420fe7c94cfb08d4a9e1f1191152b49754
 2022-07-18 10:55:40 +08:00
Adam Shih
41e929eb7b Update SELinux error am: c6daa1aa2e am: 7d65c8faf0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19279864

Change-Id: Idccc95df63bcb37661ff53ad5021b7be7235dd42
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-15 01:20:48 +00:00
Adam Shih
7d65c8faf0 Update SELinux error am: c6daa1aa2e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19279864

Change-Id: I6c68684be7ab31b5621c32ddabc3cc1b33ea68f0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-15 01:01:45 +00:00
Adam Shih
c6daa1aa2e Update SELinux error 
Bug: 234547283
Change-Id: I9caeeee12b5c8f29d9962cfc93d4902115c99b90
 2022-07-15 00:30:34 +00:00
Adam Shih
bdf96fa6ad Update SELinux error am: 683104a6a8 am: 4aa0579e61 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19266001

Change-Id: I0c0c5f6adc9ab9b8e5163be70d31f7d5f49ac7a2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-13 12:16:46 +00:00
Adam Shih
4aa0579e61 Update SELinux error am: 683104a6a8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19266001

Change-Id: I6b6f39a51d34f43698db1ce68de357ff3b3eec23
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-13 11:53:39 +00:00
Adam Shih
683104a6a8 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 238837168
Change-Id: Ic852fa8e8c1a8832699bc7f001abc7769ba67394
 2022-07-13 14:37:17 +08:00
Adam Shih
01ed337d75 Update SELinux error am: d734865c1b am: c048370daa 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19180811

Change-Id: Ice952c496648cda65ee604e4771c2c8bd79e9707
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-06 09:52:54 +00:00
Adam Shih
c048370daa Update SELinux error am: d734865c1b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19180811

Change-Id: I41655f2b3ceb341aa7c9d4a25283c99ace9f7da3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-07-06 09:34:02 +00:00
Adam Shih
d734865c1b Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 238143398
Change-Id: Ic30fa2201c37296a031d0e9ddc518c47c49ccaa2
 2022-07-06 02:58:26 +00:00
Hsiu-Chang Chen
3689b206c9 Add sepolicy for vendor_location am: 4d4fd451a6 am: cf74d79ff1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19114548

Change-Id: I890219f232706b613a6ef8924605b2f9db341d5b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-30 02:53:44 +00:00
Hsiu-Chang Chen
cf74d79ff1 Add sepolicy for vendor_location am: 4d4fd451a6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19114548

Change-Id: Ib403808d56903d1468be780537c671cd9f6cfa36
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-30 02:35:05 +00:00
Adam Shih
4d3aba4ef1 update error on ROM 8769316 am: b9be0516dc am: d971b50566 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19114547

Change-Id: I4aad0ddaf30b2ccd6a36a6160cefb4051c3f7718
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-29 07:42:02 +00:00
Adam Shih
d971b50566 update error on ROM 8769316 am: b9be0516dc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19114547

Change-Id: I17fcaeb5444ba24b6d83f7b5c3c43646c8ee6664
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-29 07:22:38 +00:00
Hsiu-Chang Chen
4d4fd451a6 Add sepolicy for vendor_location 
06-25 21:59:57.532  3922  3922 I auditd  : type=1400 audit(0.0:11):
avc: denied { sendto } for comm="loc_mq_clnt"
path="/dev/socket/location/mq/LOWI-SERVER"
scontext=u:r:vendor_location:s0 tcontext=u:r:lowi_server:s0
tclass=unix_dgram_socket permissive=0
06-29 04:30:11.188  8182  8182 I auditd  : type=1400 audit(0.0:1517):
avc: denied { sendto } for comm="loc_mq_clnt"
path="/dev/socket/location/mq/7b2e9924f8-LC"
scontext=u:r:vendor_location:s0 tcontext=u:r:hal_wifi_ext:s0
tclass=unix_dgram_socket permissive=0

Bug: 237467750
Test: avc error is gone
Change-Id: Ic4ff2bdf30b042c08c38b134c6af086d7033511f
 2022-06-29 15:01:15 +08:00
Adam Shih
b9be0516dc update error on ROM 8769316 
Bug: 237467750
Test: SELinuxUncheckedDenialBootTest
Change-Id: I0ad1b8cc2f0d298143de177f49e45418dfd857ac
 2022-06-29 09:50:58 +08:00
Hsiu-Chang Chen
8a7986278e Add sepolicy for lowi-server am: 101db9756d am: 7b4068ae7f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19035012

Change-Id: Ief36ae3ac70083b0502a2b56435a52488d6e7210
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-28 02:20:36 +00:00
Hsiu-Chang Chen
7b4068ae7f Add sepolicy for lowi-server am: 101db9756d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/19035012

Change-Id: I246208d36558ff5c1e18f3d635d0e9b2ce8294d4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-28 01:46:49 +00:00
Hsiu-Chang Chen
101db9756d Add sepolicy for lowi-server 
06-24 16:58:55.724  9519  9519 I lowi-server: type=1400 audit(0.0:1980):
avc: denied { read write } for path="socket:[69473]" dev="sockfs" ino=69473
scontext=u:r:lowi_server:s0 tcontext=u:r:vendor_location:s0
tclass=unix_dgram_socket permissive=1

Bug: 235281415
Test: avc error is gone
Change-Id: I93615b98c08f6e6e5c3cc182bddcff30e452e103
 2022-06-24 17:07:25 +08:00
timothywang
09693514fd Add sepolicy to enable camera vendor property am: 9a67905169 am: 08847036fe 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/18880808

Change-Id: I57838fd103ab8a2910453c248a025ac3788f7c9c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-15 05:35:30 +00:00
timothywang
08847036fe Add sepolicy to enable camera vendor property am: 9a67905169 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/18880808

Change-Id: Ib5edd089f801cd56b4686ef0dc5d1d23354dc38e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-15 05:07:05 +00:00
timothywang
9a67905169 Add sepolicy to enable camera vendor property 
Bug: 234324271
Test: adb shell getprop
Change-Id: I6a0b344880deeb767df97136c42b2fb86668f39d
 2022-06-14 10:30:10 +08:00
Adam Shih
5ab177e482 Update error on ROM 8693966 am: d4e9442a2e am: 1a1922dad5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/18771008

Change-Id: I37cc94ccd8216eabb8140648205a20087fee061c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-08 02:42:18 +00:00
Adam Shih
1a1922dad5 Update error on ROM 8693966 am: d4e9442a2e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/lynx-sepolicy/+/18771008

Change-Id: I6aa4ef97fa8f9aed1a0774747e9be02bcbe110fc
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-06-08 02:15:26 +00:00