From 92ddcc44aca8dfb6c045b62d9de8730a9d08ac65 Mon Sep 17 00:00:00 2001 From: Umer Abdullah Date: Thu, 15 Sep 2022 18:21:17 +0000 Subject: [PATCH 01/15] Initial empty repository From 0578047397a711328e6daf141eff391039b222db Mon Sep 17 00:00:00 2001 From: Robin Peng Date: Fri, 23 Sep 2022 03:54:47 +0000 Subject: [PATCH 02/15] Add OWNERS file before open for change Bug: 248399843 Change-Id: I4534d38316b35fade684f644079fc53428cf3b7e --- OWNERS | 2 ++ 1 file changed, 2 insertions(+) create mode 100644 OWNERS diff --git a/OWNERS b/OWNERS new file mode 100644 index 0000000..64ca3e6 --- /dev/null +++ b/OWNERS @@ -0,0 +1,2 @@ +aaronding@google.com +robinpeng@google.com From e533e18f617575cbdf8d4612439f69df57a90caf Mon Sep 17 00:00:00 2001 From: Robin Peng Date: Sun, 30 Oct 2022 15:38:55 +0000 Subject: [PATCH 03/15] Initialize device folder from: e9419111f49c3305cbf35b4bfb709d986ece96a8 with updated device path Bug: 248399843 Change-Id: I409445ad16bb30d0ac9ccd18618df5826c963e62 --- OWNERS | 5 +++-- husky-sepolicy.mk | 3 +++ husky/README.txt | 2 ++ husky/file_contexts | 4 ++++ husky/genfs_contexts | 3 +++ ripcurrent-sepolicy.mk | 3 +++ ripcurrent/README.txt | 2 ++ ripcurrent/file_contexts | 4 ++++ ripcurrent/genfs_contexts | 20 ++++++++++++++++++++ shiba-sepolicy.mk | 3 +++ shiba/README.txt | 2 ++ shiba/file_contexts | 4 ++++ shiba/genfs_contexts | 3 +++ vibrator/cs40l26/file_contexts | 2 ++ 14 files changed, 58 insertions(+), 2 deletions(-) create mode 100644 husky-sepolicy.mk create mode 100644 husky/README.txt create mode 100644 husky/file_contexts create mode 100644 husky/genfs_contexts create mode 100644 ripcurrent-sepolicy.mk create mode 100644 ripcurrent/README.txt create mode 100644 ripcurrent/file_contexts create mode 100644 ripcurrent/genfs_contexts create mode 100644 shiba-sepolicy.mk create mode 100644 shiba/README.txt create mode 100644 shiba/file_contexts create mode 100644 shiba/genfs_contexts create mode 100644 vibrator/cs40l26/file_contexts diff --git a/OWNERS b/OWNERS index 64ca3e6..791abb4 100644 --- a/OWNERS +++ b/OWNERS @@ -1,2 +1,3 @@ -aaronding@google.com -robinpeng@google.com +include platform/system/sepolicy:/OWNERS + +rurumihong@google.com diff --git a/husky-sepolicy.mk b/husky-sepolicy.mk new file mode 100644 index 0000000..1a8c79b --- /dev/null +++ b/husky-sepolicy.mk @@ -0,0 +1,3 @@ +# sepolicy exclusively for husky. +BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/husky + diff --git a/husky/README.txt b/husky/README.txt new file mode 100644 index 0000000..67a320f --- /dev/null +++ b/husky/README.txt @@ -0,0 +1,2 @@ +This folder holds sepolicy exclusively for one device. For example, genfs_contexts +paths that are affected by device tree. diff --git a/husky/file_contexts b/husky/file_contexts new file mode 100644 index 0000000..cae0049 --- /dev/null +++ b/husky/file_contexts @@ -0,0 +1,4 @@ +# Bluetooth +/dev/ttySAC18 u:object_r:hci_attach_dev:s0 +/dev/logbuffer_btlpm u:object_r:logbuffer_device:s0 +/dev/logbuffer_tty18 u:object_r:logbuffer_device:s0 diff --git a/husky/genfs_contexts b/husky/genfs_contexts new file mode 100644 index 0000000..11e438e --- /dev/null +++ b/husky/genfs_contexts @@ -0,0 +1,3 @@ +# Haptics +genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 diff --git a/ripcurrent-sepolicy.mk b/ripcurrent-sepolicy.mk new file mode 100644 index 0000000..4207725 --- /dev/null +++ b/ripcurrent-sepolicy.mk @@ -0,0 +1,3 @@ +# sepolicy that are shared among devices using whitechapel +BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/ripcurrent + diff --git a/ripcurrent/README.txt b/ripcurrent/README.txt new file mode 100644 index 0000000..67a320f --- /dev/null +++ b/ripcurrent/README.txt @@ -0,0 +1,2 @@ +This folder holds sepolicy exclusively for one device. For example, genfs_contexts +paths that are affected by device tree. diff --git a/ripcurrent/file_contexts b/ripcurrent/file_contexts new file mode 100644 index 0000000..cae0049 --- /dev/null +++ b/ripcurrent/file_contexts @@ -0,0 +1,4 @@ +# Bluetooth +/dev/ttySAC18 u:object_r:hci_attach_dev:s0 +/dev/logbuffer_btlpm u:object_r:logbuffer_device:s0 +/dev/logbuffer_tty18 u:object_r:logbuffer_device:s0 diff --git a/ripcurrent/genfs_contexts b/ripcurrent/genfs_contexts new file mode 100644 index 0000000..7d417dc --- /dev/null +++ b/ripcurrent/genfs_contexts @@ -0,0 +1,20 @@ +# Haptics +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-1/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-2/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-3/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-7/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-8/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 + +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-1/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-2/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-3/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-7/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-8/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 diff --git a/shiba-sepolicy.mk b/shiba-sepolicy.mk new file mode 100644 index 0000000..23f811f --- /dev/null +++ b/shiba-sepolicy.mk @@ -0,0 +1,3 @@ +# sepolicy exclusively for shiba. +BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/shiba + diff --git a/shiba/README.txt b/shiba/README.txt new file mode 100644 index 0000000..67a320f --- /dev/null +++ b/shiba/README.txt @@ -0,0 +1,2 @@ +This folder holds sepolicy exclusively for one device. For example, genfs_contexts +paths that are affected by device tree. diff --git a/shiba/file_contexts b/shiba/file_contexts new file mode 100644 index 0000000..cae0049 --- /dev/null +++ b/shiba/file_contexts @@ -0,0 +1,4 @@ +# Bluetooth +/dev/ttySAC18 u:object_r:hci_attach_dev:s0 +/dev/logbuffer_btlpm u:object_r:logbuffer_device:s0 +/dev/logbuffer_tty18 u:object_r:logbuffer_device:s0 diff --git a/shiba/genfs_contexts b/shiba/genfs_contexts new file mode 100644 index 0000000..11e438e --- /dev/null +++ b/shiba/genfs_contexts @@ -0,0 +1,3 @@ +# Haptics +genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 diff --git a/vibrator/cs40l26/file_contexts b/vibrator/cs40l26/file_contexts new file mode 100644 index 0000000..5f517cf --- /dev/null +++ b/vibrator/cs40l26/file_contexts @@ -0,0 +1,2 @@ +/vendor/bin/hw/android\.hardware\.vibrator-service\.cs40l26-shusky u:object_r:hal_vibrator_default_exec:s0 +/vendor/bin/hw/android\.hardware\.vibrator-service\.cs40l26-dual-shusky u:object_r:hal_vibrator_default_exec:s0 From beb210db1679d8b18f0dc3fd8709540c6c6d2972 Mon Sep 17 00:00:00 2001 From: Ken Yang Date: Fri, 16 Dec 2022 05:55:26 +0000 Subject: [PATCH 04/15] WLC: Add device specific sepolicy for wireless_charger Bug: 237600973 Change-Id: Iacbc5566e86360ab2d99a4742263876b1da18704 Signed-off-by: Ken Yang --- husky/platform_app.te | 2 ++ husky/system_app.te | 2 ++ ripcurrent/platform_app.te | 2 ++ ripcurrent/system_app.te | 2 ++ shiba/platform_app.te | 2 ++ shiba/system_app.te | 2 ++ 6 files changed, 12 insertions(+) create mode 100644 husky/platform_app.te create mode 100644 husky/system_app.te create mode 100644 ripcurrent/platform_app.te create mode 100644 ripcurrent/system_app.te create mode 100644 shiba/platform_app.te create mode 100644 shiba/system_app.te diff --git a/husky/platform_app.te b/husky/platform_app.te new file mode 100644 index 0000000..6ac0514 --- /dev/null +++ b/husky/platform_app.te @@ -0,0 +1,2 @@ +allow platform_app hal_wireless_charger_service:service_manager find; +binder_call(platform_app, hal_wireless_charger) diff --git a/husky/system_app.te b/husky/system_app.te new file mode 100644 index 0000000..ca56668 --- /dev/null +++ b/husky/system_app.te @@ -0,0 +1,2 @@ +allow system_app hal_wireless_charger_service:service_manager find; +binder_call(system_app, hal_wireless_charger) diff --git a/ripcurrent/platform_app.te b/ripcurrent/platform_app.te new file mode 100644 index 0000000..6ac0514 --- /dev/null +++ b/ripcurrent/platform_app.te @@ -0,0 +1,2 @@ +allow platform_app hal_wireless_charger_service:service_manager find; +binder_call(platform_app, hal_wireless_charger) diff --git a/ripcurrent/system_app.te b/ripcurrent/system_app.te new file mode 100644 index 0000000..ca56668 --- /dev/null +++ b/ripcurrent/system_app.te @@ -0,0 +1,2 @@ +allow system_app hal_wireless_charger_service:service_manager find; +binder_call(system_app, hal_wireless_charger) diff --git a/shiba/platform_app.te b/shiba/platform_app.te new file mode 100644 index 0000000..6ac0514 --- /dev/null +++ b/shiba/platform_app.te @@ -0,0 +1,2 @@ +allow platform_app hal_wireless_charger_service:service_manager find; +binder_call(platform_app, hal_wireless_charger) diff --git a/shiba/system_app.te b/shiba/system_app.te new file mode 100644 index 0000000..ca56668 --- /dev/null +++ b/shiba/system_app.te @@ -0,0 +1,2 @@ +allow system_app hal_wireless_charger_service:service_manager find; +binder_call(system_app, hal_wireless_charger) From 476d3d19251d55b5681666881068d0bd3981546f Mon Sep 17 00:00:00 2001 From: Denny cylee Date: Tue, 20 Dec 2022 04:26:13 +0000 Subject: [PATCH 05/15] Sepolicy: Pixelstats: Sepolicy init avc: denied { open } for path="/sys/devices/platform/10c90000.hsi2c/i2c-7/7-003c/charge_stats" dev="sysfs" ino=71508 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=1 Bug: 260366322 Test: No more battery seplocy error found Change-Id: Ia0e2a6ad7d62f7f4895182627b0147db2f60993e Signed-off-by: Denny cylee --- husky/pixelstats_vendor.te | 3 +++ shiba/pixelstats_vendor.te | 3 +++ 2 files changed, 6 insertions(+) create mode 100644 husky/pixelstats_vendor.te create mode 100644 shiba/pixelstats_vendor.te diff --git a/husky/pixelstats_vendor.te b/husky/pixelstats_vendor.te new file mode 100644 index 0000000..cc2bd92 --- /dev/null +++ b/husky/pixelstats_vendor.te @@ -0,0 +1,3 @@ +# Wireless charge +allow pixelstats_vendor sysfs_wlc:dir search; +allow pixelstats_vendor sysfs_wlc:file rw_file_perms; diff --git a/shiba/pixelstats_vendor.te b/shiba/pixelstats_vendor.te new file mode 100644 index 0000000..cc2bd92 --- /dev/null +++ b/shiba/pixelstats_vendor.te @@ -0,0 +1,3 @@ +# Wireless charge +allow pixelstats_vendor sysfs_wlc:dir search; +allow pixelstats_vendor sysfs_wlc:file rw_file_perms; From 7f4cb6885f9398b56b4553769ad3ab5040714d50 Mon Sep 17 00:00:00 2001 From: Ken Yang Date: Thu, 5 Jan 2023 23:49:43 +0000 Subject: [PATCH 06/15] WLC: Cleanup the sysfs_wlc policies Bug: 263830018 Change-Id: I49cda67298164ffa162481a28b7197c4772eeacb Signed-off-by: Ken Yang --- husky/genfs_contexts | 12 ++++++++++++ husky/pixelstats_vendor.te | 3 --- husky/platform_app.te | 2 -- husky/system_app.te | 2 -- ripcurrent/genfs_contexts | 12 ++++++++++++ ripcurrent/platform_app.te | 2 -- ripcurrent/system_app.te | 2 -- shiba/genfs_contexts | 12 ++++++++++++ shiba/pixelstats_vendor.te | 3 --- shiba/platform_app.te | 2 -- shiba/system_app.te | 2 -- 11 files changed, 36 insertions(+), 18 deletions(-) delete mode 100644 husky/pixelstats_vendor.te delete mode 100644 husky/platform_app.te delete mode 100644 husky/system_app.te delete mode 100644 ripcurrent/platform_app.te delete mode 100644 ripcurrent/system_app.te delete mode 100644 shiba/pixelstats_vendor.te delete mode 100644 shiba/platform_app.te delete mode 100644 shiba/system_app.te diff --git a/husky/genfs_contexts b/husky/genfs_contexts index 11e438e..d4641bf 100644 --- a/husky/genfs_contexts +++ b/husky/genfs_contexts @@ -1,3 +1,15 @@ # Haptics genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 + +# WLC +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 diff --git a/husky/pixelstats_vendor.te b/husky/pixelstats_vendor.te deleted file mode 100644 index cc2bd92..0000000 --- a/husky/pixelstats_vendor.te +++ /dev/null @@ -1,3 +0,0 @@ -# Wireless charge -allow pixelstats_vendor sysfs_wlc:dir search; -allow pixelstats_vendor sysfs_wlc:file rw_file_perms; diff --git a/husky/platform_app.te b/husky/platform_app.te deleted file mode 100644 index 6ac0514..0000000 --- a/husky/platform_app.te +++ /dev/null @@ -1,2 +0,0 @@ -allow platform_app hal_wireless_charger_service:service_manager find; -binder_call(platform_app, hal_wireless_charger) diff --git a/husky/system_app.te b/husky/system_app.te deleted file mode 100644 index ca56668..0000000 --- a/husky/system_app.te +++ /dev/null @@ -1,2 +0,0 @@ -allow system_app hal_wireless_charger_service:service_manager find; -binder_call(system_app, hal_wireless_charger) diff --git a/ripcurrent/genfs_contexts b/ripcurrent/genfs_contexts index 7d417dc..0ccb3b3 100644 --- a/ripcurrent/genfs_contexts +++ b/ripcurrent/genfs_contexts @@ -18,3 +18,15 @@ genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/i2c-cs40l26a-dual u genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-7/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-8/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 + +# WLC +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 diff --git a/ripcurrent/platform_app.te b/ripcurrent/platform_app.te deleted file mode 100644 index 6ac0514..0000000 --- a/ripcurrent/platform_app.te +++ /dev/null @@ -1,2 +0,0 @@ -allow platform_app hal_wireless_charger_service:service_manager find; -binder_call(platform_app, hal_wireless_charger) diff --git a/ripcurrent/system_app.te b/ripcurrent/system_app.te deleted file mode 100644 index ca56668..0000000 --- a/ripcurrent/system_app.te +++ /dev/null @@ -1,2 +0,0 @@ -allow system_app hal_wireless_charger_service:service_manager find; -binder_call(system_app, hal_wireless_charger) diff --git a/shiba/genfs_contexts b/shiba/genfs_contexts index 11e438e..d4641bf 100644 --- a/shiba/genfs_contexts +++ b/shiba/genfs_contexts @@ -1,3 +1,15 @@ # Haptics genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 + +# WLC +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 diff --git a/shiba/pixelstats_vendor.te b/shiba/pixelstats_vendor.te deleted file mode 100644 index cc2bd92..0000000 --- a/shiba/pixelstats_vendor.te +++ /dev/null @@ -1,3 +0,0 @@ -# Wireless charge -allow pixelstats_vendor sysfs_wlc:dir search; -allow pixelstats_vendor sysfs_wlc:file rw_file_perms; diff --git a/shiba/platform_app.te b/shiba/platform_app.te deleted file mode 100644 index 6ac0514..0000000 --- a/shiba/platform_app.te +++ /dev/null @@ -1,2 +0,0 @@ -allow platform_app hal_wireless_charger_service:service_manager find; -binder_call(platform_app, hal_wireless_charger) diff --git a/shiba/system_app.te b/shiba/system_app.te deleted file mode 100644 index ca56668..0000000 --- a/shiba/system_app.te +++ /dev/null @@ -1,2 +0,0 @@ -allow system_app hal_wireless_charger_service:service_manager find; -binder_call(system_app, hal_wireless_charger) From 64170f1eb390f6fe407631eda4e51ed1e91706f9 Mon Sep 17 00:00:00 2001 From: Tai Kuo Date: Thu, 5 Jan 2023 17:14:30 +0800 Subject: [PATCH 07/15] Update vibrator SEPolicy for possible paths Bug: 264625320 Test: Check sysfs path with ls -Z. Change-Id: Ieaa9e915901d7b8791ec50bae91c8d25f1e3db0f --- husky/genfs_contexts | 5 +++-- ripcurrent/genfs_contexts | 25 ++++++------------------- shiba/genfs_contexts | 5 +++-- vibrator/cs40l26/file_contexts | 2 -- 4 files changed, 12 insertions(+), 25 deletions(-) delete mode 100644 vibrator/cs40l26/file_contexts diff --git a/husky/genfs_contexts b/husky/genfs_contexts index d4641bf..8fd5af8 100644 --- a/husky/genfs_contexts +++ b/husky/genfs_contexts @@ -1,6 +1,7 @@ # Haptics -genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/6-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/5-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/4-0043 u:object_r:sysfs_vibrator:s0 # WLC genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 diff --git a/ripcurrent/genfs_contexts b/ripcurrent/genfs_contexts index 0ccb3b3..a46cc21 100644 --- a/ripcurrent/genfs_contexts +++ b/ripcurrent/genfs_contexts @@ -1,23 +1,10 @@ # Haptics -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-1/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-2/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-3/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-7/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-8/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 - -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-1/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-2/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-3/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-7/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-8/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/6-0042 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/5-0042 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/4-0042 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/6-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/5-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/4-0043 u:object_r:sysfs_vibrator:s0 # WLC genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 diff --git a/shiba/genfs_contexts b/shiba/genfs_contexts index d4641bf..8fd5af8 100644 --- a/shiba/genfs_contexts +++ b/shiba/genfs_contexts @@ -1,6 +1,7 @@ # Haptics -genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a-dual u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/6-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/5-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/4-0043 u:object_r:sysfs_vibrator:s0 # WLC genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 diff --git a/vibrator/cs40l26/file_contexts b/vibrator/cs40l26/file_contexts deleted file mode 100644 index 5f517cf..0000000 --- a/vibrator/cs40l26/file_contexts +++ /dev/null @@ -1,2 +0,0 @@ -/vendor/bin/hw/android\.hardware\.vibrator-service\.cs40l26-shusky u:object_r:hal_vibrator_default_exec:s0 -/vendor/bin/hw/android\.hardware\.vibrator-service\.cs40l26-dual-shusky u:object_r:hal_vibrator_default_exec:s0 From a6d059a84f06e32fb3517b09044ffcb7f0a075f8 Mon Sep 17 00:00:00 2001 From: Alice Sheng Date: Thu, 9 Mar 2023 14:35:19 -0800 Subject: [PATCH 08/15] Add sepolicy related to RA9530 Bug: 270440233 Test: No selinux denials related to wireless Change-Id: I3ca5cbe6ed312ce404a25f2fda254001a3e6795b --- ripcurrent/genfs_contexts | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/ripcurrent/genfs_contexts b/ripcurrent/genfs_contexts index a46cc21..ba056b0 100644 --- a/ripcurrent/genfs_contexts +++ b/ripcurrent/genfs_contexts @@ -17,3 +17,16 @@ genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 + +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003b u:object_r:sysfs_wlc:s0 + + From 7abfb1174b69daf485527ce5f06203fbc406516c Mon Sep 17 00:00:00 2001 From: joenchen Date: Wed, 21 Dec 2022 02:29:52 +0000 Subject: [PATCH 09/15] RRS: allow init to set display properties Test: Boot w/ and w/o user selected configs and check the resolution Bug: 243689199 Change-Id: I9dc9f98e880bf88c52de3a17d27d338cdf65f61f --- husky/vendor_init.te | 2 ++ 1 file changed, 2 insertions(+) create mode 100644 husky/vendor_init.te diff --git a/husky/vendor_init.te b/husky/vendor_init.te new file mode 100644 index 0000000..3f4df0e --- /dev/null +++ b/husky/vendor_init.te @@ -0,0 +1,2 @@ +# Display +set_prop(vendor_init, vendor_display_prop) From 30661fe08c165f5a9866d325b4f440cd1c1bc6e1 Mon Sep 17 00:00:00 2001 From: Adam Shih Date: Fri, 12 May 2023 02:28:03 +0000 Subject: [PATCH 10/15] introduce a new sepolicy owner Bug: 281631102 Test: N/A Change-Id: Ic5ea569372bc31b6469cfb29fcfe918d25659c6c --- OWNERS | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/OWNERS b/OWNERS index 791abb4..5232bc3 100644 --- a/OWNERS +++ b/OWNERS @@ -1,3 +1,4 @@ -include platform/system/sepolicy:/OWNERS +include device/google/gs-common:/sepolicy/OWNERS + +adamshih@google.com -rurumihong@google.com From db0953db645327f80788417ae34ecc7a5979e7dd Mon Sep 17 00:00:00 2001 From: Alice Sheng Date: Thu, 9 Mar 2023 14:35:19 -0800 Subject: [PATCH 11/15] Add sepolicy related to RA9530 Bug: 270440233 Test: No selinux denials related to wireless Change-Id: I3ca5cbe6ed312ce404a25f2fda254001a3e6795b (cherry picked from commit a6d059a84f06e32fb3517b09044ffcb7f0a075f8) --- ripcurrent/genfs_contexts | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/ripcurrent/genfs_contexts b/ripcurrent/genfs_contexts index a46cc21..ba056b0 100644 --- a/ripcurrent/genfs_contexts +++ b/ripcurrent/genfs_contexts @@ -17,3 +17,16 @@ genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 + +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003b u:object_r:sysfs_wlc:s0 +genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003b u:object_r:sysfs_wlc:s0 + + From ae8f93dfb9f7b402c2f68430d15baf0deab24e45 Mon Sep 17 00:00:00 2001 From: Cheng Chang Date: Mon, 31 Jul 2023 02:27:24 +0000 Subject: [PATCH 12/15] gps: maintain one solution Bug: 288813677 Test: compile for different devices and check binary. Test: verification test at b/288813677. Change-Id: Ie82ccd2570c36a7fe65a3d7148fa438b736a7261 --- husky/genfs_contexts | 3 +++ ripcurrent/genfs_contexts | 3 ++- shiba/genfs_contexts | 3 +++ 3 files changed, 8 insertions(+), 1 deletion(-) diff --git a/husky/genfs_contexts b/husky/genfs_contexts index 8fd5af8..be36a68 100644 --- a/husky/genfs_contexts +++ b/husky/genfs_contexts @@ -14,3 +14,6 @@ genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 + +# GPS +genfscon sysfs /devices/platform/111e0000.spi/spi_master/spi21/spi21.0/nstandby u:object_r:sysfs_gps:s0 diff --git a/ripcurrent/genfs_contexts b/ripcurrent/genfs_contexts index ba056b0..5bae1c3 100644 --- a/ripcurrent/genfs_contexts +++ b/ripcurrent/genfs_contexts @@ -29,4 +29,5 @@ genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003b genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003b u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003b u:object_r:sysfs_wlc:s0 - +# GPS +genfscon sysfs /devices/platform/111e0000.spi/spi_master/spi21/spi21.0/nstandby u:object_r:sysfs_gps:s0 diff --git a/shiba/genfs_contexts b/shiba/genfs_contexts index 8fd5af8..be36a68 100644 --- a/shiba/genfs_contexts +++ b/shiba/genfs_contexts @@ -14,3 +14,6 @@ genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 + +# GPS +genfscon sysfs /devices/platform/111e0000.spi/spi_master/spi21/spi21.0/nstandby u:object_r:sysfs_gps:s0 From ab8704311758d52659c0a34bd1dc3779af3c7f2b Mon Sep 17 00:00:00 2001 From: Steve Pfetsch Date: Wed, 20 Sep 2023 13:05:11 -0700 Subject: [PATCH 13/15] DiagnosticsTool permissions for accessing touch calibration interface Grant the DiagnosticsTool (priv_app domain) access to the GTI touch driver's interactive_calibration interface. This patch does not create a domain for the DaignosticsTool (see b/301300623). Fixes these denials: avc: denied { write } for comm="diagnosticstool" name="interactive_calibrate" dev="sysfs" ino=105273 scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:sysfs_touch_gti:s0 tclass=file permissive=1 app=com.google.android.apps.diagnosticstool avc: denied { open } for comm="diagnosticstool" path="/sys/devices/virtual/goog_touch_interface/gti.0/interactive_calibrate" dev="sysfs" ino=105273 scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:sysfs_touch_gti:s0 tclass=file permissive=1 app=com.google.android.apps.diagnosticstool avc: denied { getattr } for comm="diagnosticstool" path="/sys/devices/virtual/goog_touch_interface/gti.0/interactive_calibrate" dev="sysfs" ino=105273 scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:sysfs_touch_gti:s0 tclass=file permissive=1 app=com.google.android.apps.diagnosticstool avc: denied { read } for comm="diagnosticstool" name="interactive_calibrate" dev="sysfs" ino=105273 scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:sysfs_touch_gti:s0 tclass=file permissive=1 app=com.google.android.apps.diagnosticstool Without mlstrustedobject, this denial occurs: avc: denied { write } for comm="diagnosticstool" name="interactive_calibrate" dev="sysfs" ino=106943 scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:sysfs_touch_gti:s0 tclass=file permissive=0 app=com.google.android.apps.diagnosticstool Bug: 230050981 Change-Id: I6acbb83c5b4100cb1ae332412b2e4d7f163d300a Signed-off-by: Steve Pfetsch --- husky-sepolicy.mk | 2 ++ shiba-sepolicy.mk | 2 ++ tracking_denials/file.te | 2 ++ tracking_denials/priv_app.te | 4 ++++ 4 files changed, 10 insertions(+) create mode 100644 tracking_denials/file.te create mode 100644 tracking_denials/priv_app.te diff --git a/husky-sepolicy.mk b/husky-sepolicy.mk index 1a8c79b..73742a8 100644 --- a/husky-sepolicy.mk +++ b/husky-sepolicy.mk @@ -1,3 +1,5 @@ # sepolicy exclusively for husky. BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/husky +# unresolved SELinux error log with bug tracking +BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/tracking_denials diff --git a/shiba-sepolicy.mk b/shiba-sepolicy.mk index 23f811f..114c114 100644 --- a/shiba-sepolicy.mk +++ b/shiba-sepolicy.mk @@ -1,3 +1,5 @@ # sepolicy exclusively for shiba. BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/shiba +# unresolved SELinux error log with bug tracking +BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/tracking_denials diff --git a/tracking_denials/file.te b/tracking_denials/file.te new file mode 100644 index 0000000..e348a15 --- /dev/null +++ b/tracking_denials/file.te @@ -0,0 +1,2 @@ +# b/301300623 +typeattribute sysfs_touch_gti mlstrustedobject; diff --git a/tracking_denials/priv_app.te b/tracking_denials/priv_app.te new file mode 100644 index 0000000..6e25d2e --- /dev/null +++ b/tracking_denials/priv_app.te @@ -0,0 +1,4 @@ +# b/301300623 +allow priv_app app_api_service:service_manager find; +allow priv_app sysfs_touch_gti:file rw_file_perms; +allow priv_app sysfs_touch_gti:file { getattr open read write }; From b60e65b48c60ffd5541b13fa2d94be7877f4a611 Mon Sep 17 00:00:00 2001 From: Jacky Liu Date: Thu, 19 Oct 2023 17:39:29 +0800 Subject: [PATCH 14/15] Update sepolicy for new static i2c bus numbers Bug: 305242309 Test: Boot to home Change-Id: I0cf68195432a65270a5f72eda2c97eeca82fc08e --- husky/genfs_contexts | 13 +------------ ripcurrent/genfs_contexts | 27 ++------------------------- shiba/genfs_contexts | 13 +------------ 3 files changed, 4 insertions(+), 49 deletions(-) diff --git a/husky/genfs_contexts b/husky/genfs_contexts index be36a68..632676b 100644 --- a/husky/genfs_contexts +++ b/husky/genfs_contexts @@ -1,18 +1,7 @@ # Haptics -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/6-0043 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/5-0043 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/4-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/0-0043 u:object_r:sysfs_vibrator:s0 # WLC -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 # GPS diff --git a/ripcurrent/genfs_contexts b/ripcurrent/genfs_contexts index 5bae1c3..ffff32a 100644 --- a/ripcurrent/genfs_contexts +++ b/ripcurrent/genfs_contexts @@ -1,32 +1,9 @@ # Haptics -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/6-0042 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/5-0042 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/4-0042 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/6-0043 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/5-0043 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/4-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/0-0042 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/0-0043 u:object_r:sysfs_vibrator:s0 # WLC -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 - -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003b u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003b u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003b u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003b u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003b u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003b u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003b u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003b u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003b u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003b u:object_r:sysfs_wlc:s0 # GPS diff --git a/shiba/genfs_contexts b/shiba/genfs_contexts index be36a68..632676b 100644 --- a/shiba/genfs_contexts +++ b/shiba/genfs_contexts @@ -1,18 +1,7 @@ # Haptics -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-6/6-0043 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-5/5-0043 u:object_r:sysfs_vibrator:s0 -genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-4/4-0043 u:object_r:sysfs_vibrator:s0 +genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/0-0043 u:object_r:sysfs_vibrator:s0 # WLC -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-0/0-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-1/1-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-2/2-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-3/3-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-4/4-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-5/5-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-6/6-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-7/7-003c u:object_r:sysfs_wlc:s0 -genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-8/8-003c u:object_r:sysfs_wlc:s0 genfscon sysfs /devices/platform/10c90000.hsi2c/i2c-9/9-003c u:object_r:sysfs_wlc:s0 # GPS From a468ce1cf4707d17ba65508b3f28c93a562fc94d Mon Sep 17 00:00:00 2001 From: Avinash Malipatil Date: Mon, 6 Nov 2023 05:13:50 +0000 Subject: [PATCH 15/15] SEPolicy change to allow ImsMedia to set priority of audio threads. Setting real-time thread priority for audio threads is a must to handle voice stream during vowifi calls. AVC Error: auditd : avc: denied { find } for pid=9346 uid=1001 name=scheduling_policy scontext=u:r:radio:s0 tcontext=u:object_r:scheduling_policy_service:s0 tclass=service_manager permissive=0 Bug: 308517246 Test: adb shell 'ps -Tl -p ' Change-Id: I5feff99d17e7933ff1a463900d43c14754f6cd26 --- husky/radio.te | 1 + shiba/radio.te | 1 + 2 files changed, 2 insertions(+) create mode 100644 husky/radio.te create mode 100644 shiba/radio.te diff --git a/husky/radio.te b/husky/radio.te new file mode 100644 index 0000000..a2c40a1 --- /dev/null +++ b/husky/radio.te @@ -0,0 +1 @@ +allow radio scheduling_policy_service:service_manager find; diff --git a/shiba/radio.te b/shiba/radio.te new file mode 100644 index 0000000..a2c40a1 --- /dev/null +++ b/shiba/radio.te @@ -0,0 +1 @@ +allow radio scheduling_policy_service:service_manager find;