Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2281 commits 1 branch 0 tags 18 MiB
Commit graph

2281 commits

This branch
This branch
All branches
Author SHA1 Message Date
Dinesh Yadav
1b7a5a0078 Allow tachyon service to make binder calls to GCA 
This permission is needed for tachyon service to call callbacks.

AVC Error seen when tachyon tries accessing GCA:
12-02 11:40:03.212  6987  6987 W com.google.edge: type=1400 audit(0.0:17): avc:  denied  { call } for  scontext=u:r:edgetpu_tachyon_server:s0 tcontext=u:r:google_camera_app:s0:c145,c256,c512,c768 tclass=binder permissive=0
12-03 07:12:26.424  4166  4166 W com.google.edge: type=1400 audit(0.0:254): avc:  denied  { call } for  scontext=u:r:edgetpu_tachyon_server:s0 tcontext=u:r:debug_camera_app:s0:c67,c257,c512,c768 tclass=binder permissive=0

Bug: 381787911
Flag: EXEMPT updates device sepolicy only
Change-Id: I5544fbc11cea0d98dfdeffd9d2871fc037d87c61
 2024-12-06 04:13:42 +00:00
Xin Li
e547b08ebd [automerger skipped] Merge 24Q4 (ab/12406339) into aosp-main-future am: cf6b23c473 -s ours 
am skip reason: Merged-In I1c2fb12e09ffe8083d6b14b0ee5aa957e031ddf3 with SHA-1 f03cc7ce1c is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/30283793

Change-Id: I064b667d35ba392523f55d4a00ef31ffa462cad9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-11-14 00:31:46 +00:00
Xin Li
cf6b23c473 Merge 24Q4 (ab/12406339) into aosp-main-future 
Bug: 370570306
Merged-In: I1c2fb12e09ffe8083d6b14b0ee5aa957e031ddf3
Change-Id: Ic9f5cbcae1fdd40d57ca6d958adeb4b355339f68
 2024-11-06 11:19:03 -08:00
Nina Chen
6f1672a387 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 376602341
Flag: EXEMPT NDK
Change-Id: I6b3a9d802022ace579de13dc03e1738ee31f7b6f
 2024-11-01 08:13:03 +00:00
Roy Luo
841ad6da33 Merge "Revert^3 "Add udc sysfs to udc_sysfs fs context"" into main 2024-10-30 18:51:30 +00:00
Roy Luo
139f5304a3 Revert^3 "Add udc sysfs to udc_sysfs fs context" 
371f678632

Bug: 339241080
Change-Id: Ia1355fca00339bce7ba5554680b62509558c2b4f
 2024-10-29 21:36:05 +00:00
Thiébaud Weksteen
d46376319b Merge "Remove duplicate service entries" into main 2024-10-17 02:59:51 +00:00
Treehugger Robot
d3a5c9f8d8 Merge "Revert "Update SELinux error"" into main 2024-10-16 11:04:36 +00:00
Krzysztof Kosiński
bf1d975910 Revert "Update SELinux error" 
This reverts commit a6eb3139fe.

Reason for revert: Caused by b/372273614, relevant CL was reverted

Fix: 372348756
Change-Id: I1ca54668c33b80d5139526f6ecf8dd65864787e4
 2024-10-15 06:31:33 +00:00
Eileen Lai
bc3e73c6b5 Merge "modem_svc: use shared_modem_platform to replace all modem_svc_sit" into main 2024-10-14 07:27:51 +00:00
Eileen Lai
c2660d9ba4 modem_svc: use shared_modem_platform to replace all modem_svc_sit 
Bug: 368257019

Flag: NONE local testing only
Change-Id: I9a9ff83d2bf3cf55b4c8806d808efde03ca2de70
 2024-10-09 08:34:45 +00:00
Nina Chen
a6eb3139fe Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 372348756
Bug: 372348383
Bug: 372348502
Flag: EXEMPT NDK
Change-Id: I126496a25529a73293430c9a1e7009e82b161331
 2024-10-09 03:24:11 +00:00
Nina Chen
d898a7a787 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 372121912
Test: scanBugreport
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I88cf70ace59b6ca4cf66a4b0ffaf3bc8220f932b
 2024-10-08 03:31:04 +00:00
Ben Murdoch
ce7cdaa39f Allow systemui_app to set 'debug.tracing.desktop_mode_visible_tasks' system property 
See also: Iad8dc7a66765856ee7affb707f2dba6c1bbfbf49

Bug: 363893429
Flag: EXEMPT, SEPolicy
Test: Verified on device.
Change-Id: I4916370be55d4d5fd5c53ac5418b8a2bd99e9b37
 2024-10-03 15:01:54 +00:00
Thiébaud Weksteen
f688a56d8e Remove duplicate service entries 
These entries are defined in the platform policy.

Flag: EXEMPT bugfix
Bug: 367832910
Test: TH
Change-Id: I34e04111d74d0b7b4d9e3e4e359feb1b92b40593
 2024-10-01 14:48:00 +10:00
Treehugger Robot
bab0ee8b25 Merge "Fix error in systemui when toggling airplane mode" into main 2024-09-26 16:11:38 +00:00
Wilson Sung
c6822be533 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 369540836
Test: scanBugreport
Bug: 369540673
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I096e8d513a393d70fc70edf658dcdf7650072c9a
 2024-09-25 12:46:23 +00:00
Wilson Sung
e40a281856 Fix error in systemui when toggling airplane mode 
avc:  denied  { read } for  name="u:object_r:radio_cdma_ecm_prop:s0" dev="tmpfs" ino=321 scontext=u:r:systemui_app:s0:c3,c257,c512,c768 tcontext=u:object_r:radio_cdma_ecm_prop:s0 tclass=file

Bug: 197722115
Bug: 359381748
Test: make selinux_policy
Flag: EXEMPT bugfix
Change-Id: I96d17e562ac1cc0e0e0597ce332e94be95652026
 2024-09-25 08:40:47 +00:00
Nina Chen
e6639e9e9f Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 369475700
Test: scanBugreport
Bug: 369475363
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 369475225
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I154c0c347aa62a5eb262c2a8174ad3b3f2ba03aa
 2024-09-25 06:30:51 +00:00
Treehugger Robot
cd06811f33 Merge "Update sepolicy for nfc antenna selftest values" into main 2024-09-24 07:34:38 +00:00
Tej Singh
f03cc7ce1c Make android.framework.stats-v2-ndk app reachable 
For libedgetpu

Test: TH
Bug: 354763040
Flag: EXEMPT bugfix
Change-Id: I1c2fb12e09ffe8083d6b14b0ee5aa957e031ddf3
 2024-09-20 21:39:59 -07:00
Nina Chen
438d6d7c70 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 367943515
Test: scanBugreport
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I06481594dae66cb89f8b3ac8be6d254760771f61
 2024-09-18 11:56:11 +00:00
Prochin Wang
9ba73f1d79 Change vendor_fingerprint_prop to vendor_restricted_prop 
This is to allow the fingerprint HAL to access the property.

Bug: 366105474
Flag: build.RELEASE_PIXEL_BOOST_DATALAYER_PSA_ENABLED
Test: mm
Change-Id: I021c004ca0153d2995fae6b3d6208d6cd6c799ef
 2024-09-16 01:45:31 +00:00
Nina Chen
4bb5ee3796 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 366116488
Test: scanBugreport
Bug: 359428180
Bug: 364446415
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I0c808f3c6aa441c0bfad23e0d8d2f0b987d09ed7
 2024-09-13 06:45:09 +00:00
Nattharat Jariyanuntanaet
1492b4913a Update sepolicy for nfc antenna selftest values 
Allow persist.vendor.nfc.antenna. to be vendor public values for NFC
companion app to access from userdebug or eng builds

avc:  denied  { read } for  name="u:object_r:vendor_nfc_antenna_prop:s0" dev="tmpfs" ino=414 scontext=u:r:untrusted_app:s0:c79,c257,c512,c768 tcontext=u:object_r:vendor_nfc_antenna_prop:s0 tclass=file permissive=0 app=com.google.android.apps.internal.nfcassistancetool

Bug: 361050657
Test: m selinux_policy
Flag: NONE add permission
Change-Id: I47c54642dbc801dfcaee8330e75a29d11030337c
 2024-09-12 20:17:39 +00:00
Xin Li
5b80168d54 [automerger skipped] Merge 24Q3 to AOSP main am: 39d96988e3 -s ours am: d1f03df8fc -s ours 
am skip reason: Merged-In I9181b2344f2448b9debe1522528545ce90de8768 with SHA-1 fb98394c54 is already in history

Original change: https://android-review.googlesource.com/c/device/google/zuma-sepolicy/+/3258561

Change-Id: I411d96644364dcb9efdea5c1fe708b9651f8c12d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-09-07 03:29:31 +00:00
Xin Li
d1f03df8fc [automerger skipped] Merge 24Q3 to AOSP main am: 39d96988e3 -s ours 
am skip reason: Merged-In I9181b2344f2448b9debe1522528545ce90de8768 with SHA-1 fb98394c54 is already in history

Original change: https://android-review.googlesource.com/c/device/google/zuma-sepolicy/+/3258561

Change-Id: Iedc2cb039f534e4d1e7b873bec0f4f4d41fb4ab6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-09-07 02:51:35 +00:00
Xin Li
39d96988e3 Merge 24Q3 to AOSP main 
Bug: 357762254
Merged-In: I9181b2344f2448b9debe1522528545ce90de8768
Change-Id: Ic5351ce6b46a46820c6d73d4f924c6b92d30b06d
 2024-09-05 17:02:39 -07:00
Randall Huang
a73414799e storage: move storage related device type to common folder 
Bug: 364225000
Test: forrest build
Change-Id: I60597a3ad6f674b93267f41b3a27fdee6e923e59
Signed-off-by: Randall Huang <huangrandall@google.com>
 2024-09-04 10:44:21 +08:00
Attis Chen
8297fee02b Merge "Label sysfs node power_mode as sysfs_display." into main 2024-09-02 04:54:18 +00:00
Wilson Sung
432980a323 Update SELinux error 
Test: scanBugreport
Bug: 361725982
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT bugFix
Change-Id: I7e3ce34fdc02932250bcbd71e0a8864cfffaadff
 2024-08-23 09:46:52 +00:00
Roy Luo
371f678632 Revert^2 "Add udc sysfs to udc_sysfs fs context" 
This reverts commit 66ba3214b8.

Reason for revert: fix breakage in next build with build-time flag in
selinux policy.

Fixed the following audit logs:
[  285.983545] type=1400 audit(1724270284.724:31): avc:  denied  { read } for  comm="android.hardwar" name="state" dev="sysfs" ino=85740 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_udc:s0 tclass=file permissive=0

Bug: 339241080
Test: tested on Shiba trunk_staging and next builds
Flag: build.RELEASE_USB_UDC_SYSFS_SELINUX_POLICY_ENABLED
Change-Id: Ie4979f408a5bca0bb9b9762048ab716ddeeb4d2f
 2024-08-21 22:15:22 +00:00
attis
5bf0b2bd07 Label sysfs node power_mode as sysfs_display. 
Label power_mode to sysfs_panel to let it be allowed in dumpstate.

avc log:
08-20 20:24:11.292  9339  9339 W dump_display: type=1400 audit(0.0:2372): avc:  denied  { read } for  name="power_mode" dev="sysfs" ino=85501 scontext=u:r:dump_display:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Test: ls -Z, adb bugreport.
Flag: EXEMPT bugfix
Bug: 358505990
Change-Id: I7b6051de3e8f1b2813c681a176266fe3c7518991
Signed-off-by: attis <attis@google.com>
 2024-08-21 17:08:49 +08:00
Wilson Sung
22ca32df91 Merge "Update SELinux error" into main 2024-08-19 06:14:28 +00:00
Xiaofan Jiang
390674b749 Merge "Revert^2 "zuma: update modem_svc sepolicy for UMI"" into main 2024-08-15 20:44:27 +00:00
Xiaofan Jiang
515a102ac8 Revert^2 "zuma: update modem_svc sepolicy for UMI" 
c653101290

Change-Id: Ib1d18e33b87f03ee52bcbdff129c6d56b8a63a61
 2024-08-15 19:25:35 +00:00
Priyanka Advani (xWF)
61ddb69d2c Merge "Revert "zuma: update modem_svc sepolicy for UMI"" into main 2024-08-15 18:30:35 +00:00
Priyanka Advani (xWF)
c653101290 Revert "zuma: update modem_svc sepolicy for UMI" 
Revert submission 28762313

Reason for revert: Droidmonitor created revert due to b/360059249.

Reverted changes: /q/submissionid:28762313

Change-Id: I88cd8603351f5c5e1a546872f4f3aa1cae75dcd5
 2024-08-15 16:14:57 +00:00
Wilson Sung
e24c2a8265 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 360060606
Test: scanBugreport
Bug: 360060992
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 360060606
Bug: 359428180
Flag: EXEMPT bugFix
Change-Id: I3dfb16fdb309f01f543c826b155fc774b76faade
 2024-08-15 09:25:35 +00:00
Xiaofan Jiang
dac2c5438b Merge "zuma: update modem_svc sepolicy for UMI" into main 2024-08-15 04:01:13 +00:00
Xiaofan Jiang
08b3cf20a7 zuma: update modem_svc sepolicy for UMI 
Bug: 357139752

Flag: EXEMPT sepolicy

[   68.189198] type=1400 audit(1722986580.568:59): avc:  denied  { unlink } for  comm="binder:892_2" name="modem_svc_socket" dev="dm-52" ino=20239 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=1
[   68.189448] type=1400 audit(1722986580.568:60): avc:  denied  { create } for  comm="binder:892_2" name="modem_svc_socket" scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=1

Change-Id: I7cccb22ef31e88eebae664dcd937553c7ed9428f
 2024-08-15 03:53:07 +00:00
Gil Liu
cab53ff9d9 Merge "add hal_graphics_composer to access thermal temperature" into main 2024-07-29 06:10:29 +00:00
Treehugger Robot
6dd8b82b22 Merge "Correct the path of tcpm-source-psy device" into main 2024-07-26 02:04:31 +00:00
Mike Wang
a689f70d3c Merge "Add the selinux policy to allow the gril get/set vendor log properties." into main 2024-07-26 01:15:34 +00:00
Manali Bhutiyani
faaaf11fd9 Merge "DisplayPort Stats: add sysfs access permission on Zuma devices" into main 2024-07-25 15:46:01 +00:00
Carlos Rodriguez
6e54536670 DisplayPort Stats: add sysfs access permission on Zuma devices 
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:48): avc:  denied  { read } for  name="fec_dsc_supported" dev="sysfs" ino=71618 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:49): avc:  denied  { read } for  name="fec_dsc_not_supported" dev="sysfs" ino=71619 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:50): avc:  denied  { read } for  name="max_res_other" dev="sysfs" ino=71617 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:51): avc:  denied  { read } for  name="max_res_1366_768" dev="sysfs" ino=71607 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:52): avc:  denied  { read } for  name="max_res_1440_900" dev="sysfs" ino=71608 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:53): avc:  denied  { read } for  name="max_res_1600_900" dev="sysfs" ino=71609 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:54): avc:  denied  { read } for  name="max_res_1920_1080" dev="sysfs" ino=71610 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:55): avc:  denied  { read } for  name="max_res_2560_1080" dev="sysfs" ino=71611 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:56): avc:  denied  { read } for  name="max_res_2560_1440" dev="sysfs" ino=71612 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
.....

Bug: 343602691
Bug: 317486088

Flag: EXEMPT bugfix
Test: Built and flashed, errors are gone.

Change-Id: I49d177d2a997698b05f27bd4c448847ed3110e59
 2024-07-24 23:49:52 +00:00
Daniel Chapin
cfbbd040df Merge "Revert "trusty: storageproxy: add fs_ready_rw property context"" into main 2024-07-24 21:48:57 +00:00
Daniel Chapin
6d6f71b74a Revert "trusty: storageproxy: add fs_ready_rw property context" 
Revert submission 28318041-rw_storage

Reason for revert: Droidfood blocking bug b/355163562

Reverted changes: /q/submissionid:28318041-rw_storage

Change-Id: I0fa3edda88677966d42576d76616b837a4bbe70b
 2024-07-24 20:17:33 +00:00
Kyle Tso
4358dc4f7e Correct the path of tcpm-source-psy device 
Bug: 353804370
Flag: EXEMPT bugfix
Change-Id: I059a652d13ffdf186fb36edb11ef4c1dc6ac8648
Signed-off-by: Kyle Tso <kyletso@google.com>
 2024-07-24 02:13:54 +00:00
Mike McTernan
b188015fba Merge "trusty: storageproxy: add fs_ready_rw property context" into main 2024-07-23 10:02:28 +00:00