Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2235 commits 1 branch 0 tags 18 MiB
Commit graph

2235 commits

This branch
This branch
All branches
Author SHA1 Message Date
gilliu
22c17673b0 add hal_graphics_composer to access thermal temperature 
type=1400 audit(0.0:77): avc:  denied  { search } for  name="thermal"
dev="tmpfs" ino=1618 scontext=u:r:hal_graphics_composer_default:s0
tcontext=u:object_r:thermal_link_device:s0 tclass=dir permissive=0

type=1400 audit(0.0:74): avc:  denied  { search } for  name="thermal"
dev="sysfs" ino=21594 scontext=u:r:hal_graphics_composer_default:s0
tcontext=u:object_r:sysfs_thermal:s0 tclass=dir permissive=0

type=1400 audit(0.0:74): avc:  denied  { read } for  name="temp"
dev="sysfs" ino=73536 scontext=u:r:hal_graphics_composer_default:s0
tcontext=u:object_r:sysfs_thermal:s0 tclass=file permissive=0

type=1400 audit(0.0:74): avc:  denied  { getattr } for
path="/sys/devices/virtual/thermal/thermal_zone12/temp" dev="sysfs"
ino=73537 scontext=u:r:hal_graphics_composer_default:s0
tcontext=u:object_r:sysfs_thermal:s0 tclass=file permissive=0

Bug: 343141590
Test: check no avc pattern on logcat from test image
Flag: NONE add permission
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:1dde3ea2ff33bdf253fbbfb609ec21eaccffeaf4)
Cherry-pick temp_rr_regamma to 24Q3
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:c0fa5fcc6da5545982c8293c644aa1adccbc270f)
Merged-In: I87fce47644b07342d756e7594685eea0dded1926
Change-Id: I87fce47644b07342d756e7594685eea0dded1926
 2024-09-20 18:35:27 +00:00
Android Build Coastguard Worker
8c9dd0dbcd Snap for 11959661 from 7969077e3b to 24Q3-release 
Change-Id: I01c3e835b1a3e15068320f89aa7ec3d0460ff794
 2024-06-12 23:03:51 +00:00
Cheng Chang
7969077e3b gps: Move hal_gnss_pixel declaration to device folder am: 5ff76196c8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/27576137

Change-Id: Ic16f628926a47350f0e0caf7293e1cfa4521a7fe
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-06-12 07:27:17 +00:00
Cheng Chang
5ff76196c8 gps: Move hal_gnss_pixel declaration to device folder 
Bug: 343280252
Test: b/343280252 compile and abtd test
Change-Id: Ief591d28aaea4223f05917d29bc896edec065613
 2024-06-11 06:23:21 +00:00
Android Build Coastguard Worker
f82350775f Snap for 11931036 from 667f2a4670 to 24Q3-release 
Change-Id: Ic2fcc14b412ecc37c4af6ebece36aac9be32843f
 2024-06-05 23:08:22 +00:00
Kelvin Zhang
667f2a4670 Allow copy_efs_files_to_data to read efs block devices 
Previously, we rely on mount points to copy files out of
efs partitions. Switch over to dump.f2fs to read directly
from block device without mounting. This allows us to copy
files out of efs partition in both 4K and 16K mode.

Test: Boot ext4 device with dev option enabled
Bug: 340965747
Change-Id: Ie3108319cfdb5d922a18863de7431c3cfcc4cf16
 2024-06-04 16:49:42 -07:00
Android Build Coastguard Worker
2a661c558a Snap for 11908474 from 79e1531622 to 24Q3-release 
Change-Id: I38da6fde5b6332366a927e30ed83a61081cf3cb6
 2024-05-30 23:03:35 +00:00
Android Build Coastguard Worker
e3a178da81 Snap for 11902131 from 090928722e to 24Q3-release 
Change-Id: Ic24673ab0c63239952bf61b92e634b8b7fdb9cce
 2024-05-29 23:03:42 +00:00
Xin Li
79e1531622 [automerger skipped] Merge Android 24Q2 Release (ab/11526283) to aosp-main-future am: 42aa8de219 -s ours 
am skip reason: Merged-In I56143303453cce01d812997ed4a06d815f2a6859 with SHA-1 97a16aff57 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/27273322

Change-Id: Ib48cb1570130e89e98ce755f22b4b222be981e69
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-05-29 19:46:13 +00:00
chenkris
090928722e Add sepolicy for fingerprint HAL to check NSP file 
Fix the following avc denials:
avc:  denied  { search } for  name="copied" dev="dm-58" ino=428
scontext=u:r:hal_fingerprint_default:s0
tcontext=u:object_r:modem_efs_image_file:s0 tclass=dir

avc:  denied  { search } for  name="persist" dev="dm-58" ino=443
scontext=u:r:hal_fingerprint_default:s0
tcontext=u:object_r:persist_file:s0 tclass=dir

avc:  denied  { search } for  name="ss" dev="dm-58" ino=445
scontext=u:r:hal_fingerprint_default:s0
tcontext=u:object_r:persist_ss_file:s0 tclass=dir

avc:  denied  { read } for  name="nsp" dev="dm-58" ino=15500
scontext=u:r:hal_fingerprint_default:s0
tcontext=u:object_r:persist_ss_file:s0 tclass=file

avc:  denied  { open } for  path="/data/vendor/copied/persist/ss/nsp"
dev="dm-58" ino=15500
scontext=u:r:hal_fingerprint_default:s0
tcontext=u:object_r:persist_ss_file:s0 tclass=file

Bug: 335525798
Test: Use UDFPS repair tool to update calibration files
Change-Id: Ic233a07ced8fd828c0e4b4ae1cffa93763a83b42
 2024-05-29 04:39:37 +00:00
Android Build Coastguard Worker
5ddd7b5615 Snap for 11847214 from cdc4acc647 to 24Q3-release 
Change-Id: I92a3c51fda5a9033640caa6fdfecd5577b58a8f9
 2024-05-16 01:03:55 +00:00
Wilson Sung
cdc4acc647 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 340722729
Change-Id: I8f11ea5848724f18765cca2dda91a7d916b82f72
 2024-05-15 03:50:08 +00:00
Android Build Coastguard Worker
3cf66743b8 Snap for 11822896 from 0455a656b7 to 24Q3-release 
Change-Id: I0fde4ac1f034c84f2816e6a93e1b2fb149bdbeeb
 2024-05-09 23:08:20 +00:00
Shiyong Li
0455a656b7 Merge "Add sepolicy for power_state node" into 24D1-dev am: 7107af6af0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/27057168

Change-Id: Iebbdf2275b4d0460ac58100db1ab1b865ed63d04
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-05-09 05:21:38 +00:00
Shiyong Li
7107af6af0 Merge "Add sepolicy for power_state node" into 24D1-dev 2024-05-09 05:16:16 +00:00
Android Build Coastguard Worker
484aa51f46 Snap for 11816316 from 3cbe2de42c to 24Q3-release 
Change-Id: Ie8473a1799c576146469fb16e1b69fee74368d13
 2024-05-08 23:03:38 +00:00
Treehugger Robot
bc68fdd684 Merge "Reland: Add necessary sepolicy for convert_modem_to_ext4" into main 2024-05-08 16:13:27 +00:00
KRIS CHEN
3cbe2de42c Merge "Allow fingerprint to access the folder /data/vendor/fingerprint" into main 2024-05-08 08:46:30 +00:00
chenkris
4035d467ad Allow fingerprint to access the folder /data/vendor/fingerprint 
Fix the following avc denial:
android.hardwar: type=1400 audit(0.0:20): avc:  denied  { write } for  name="fingerprint" dev="dm-56" ino=36703 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir permissive=0

Bug: 267766859
Test: Tested fingerprint under enforcing mode
Change-Id: Iadd058432b7db8c20a949aeda1df5f8309663004
 2024-05-08 06:48:41 +00:00
Android Build Coastguard Worker
285014e29f Snap for 11811809 from 7c7e028271 to 24Q3-release 
Change-Id: Ibab44877c605889491073f4547e5ccd70ded8270
 2024-05-07 23:03:59 +00:00
Kelvin Zhang
be41aa688e Reland: Add necessary sepolicy for convert_modem_to_ext4 
The original CL was reverted because it references
enable_16k_pages_prop, which is only available on board API level >
202504.

This reland removes enable_16k_pages_prop usage, and worked around it by
reading PRODUCT_16K_DEVELOPER_OPTION at build time.

Test: reformat data as ext4, reboot
Bug: 293313353
Change-Id: Ibd8f57d1ef4fd2b0fd8b4170153d57fe9a9cefc2
 2024-05-07 13:24:15 -07:00
Pechetty Sravani
7c7e028271 Merge "Revert "Add necessary sepolicy for convert_modem_to_ext4"" into main 2024-05-07 13:08:44 +00:00
Pechetty Sravani
2bf59857da Revert "Add necessary sepolicy for convert_modem_to_ext4" 
Revert submission 26822004

Reason for revert: <Potential culprit for b/339099720- verifying through ABTD before revert submission. This is part of the standard investigation process, and does not mean your CL will be reverted.>

Reverted changes: /q/submissionid:26822004

Change-Id: I90e3bf5ecbdf6c058c56293cfba59c628ccc7aba
 2024-05-07 08:50:45 +00:00
Treehugger Robot
20f1383abd Merge "Add necessary sepolicy for convert_modem_to_ext4" into main 2024-05-06 23:19:28 +00:00
Xin Li
42aa8de219 Merge Android 24Q2 Release (ab/11526283) to aosp-main-future 
Bug: 337098550
Merged-In: I56143303453cce01d812997ed4a06d815f2a6859
Change-Id: I61f611a2fcb900fcb4bb035c2abfbb19a840fddb
 2024-05-06 12:09:17 -07:00
Android Build Coastguard Worker
bf1b178808 Snap for 11766482 from 2247b84115 to 24Q3-release 
Change-Id: Iaf95c2df7159aac26fbfb251c75fb9d784e4ded5
 2024-04-25 23:03:42 +00:00
Enzo Liao
2247b84115 [automerger skipped] Merge "Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common." into 24D1-dev am: c3c5b0fb90 -s ours 
am skip reason: Merged-In Id42c4de6c29d4a95f8a68a5732c4732edfb71da8 with SHA-1 df85139d17 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/27046738

Change-Id: I74a2603921e024818214cdd40206f83cadcb6b40
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-25 08:31:17 +00:00
Enzo Liao
146d62c821 [automerger skipped] Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common. am: 7c420c0703 -s ours 
am skip reason: Merged-In Id42c4de6c29d4a95f8a68a5732c4732edfb71da8 with SHA-1 df85139d17 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/27046738

Change-Id: Ic8c15dba652af326c8860b4de81f42ea204c93b0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-25 08:31:13 +00:00
Enzo Liao
c3c5b0fb90 Merge "Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common." into 24D1-dev 2024-04-25 08:22:06 +00:00
Spade Lee
9d059a073d [automerger skipped] pixelstats_vendor: add logbuffer_device r_file_perms am: 52df1a478b -s ours 
am skip reason: Merged-In Ieca53f3092355c72784d4216c138cbb7cc9c7fa4 with SHA-1 3f707d13c2 is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/27094861

Change-Id: I27d28e4e8b14f71a16aba5f7de9b8874d205e708
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-25 08:20:29 +00:00
Spade Lee
52df1a478b pixelstats_vendor: add logbuffer_device r_file_perms 
avc: denied { read } for name="logbuffer_maxfg_monitor" dev="tmpfs" ino=1034 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:logbuffer_device:s0 tclass=chr_file permissive=0

Bug: 329174074
Test: no denied log, and able to read logbuffer in pixelstats_vendor
Signed-off-by: Spade Lee <spadelee@google.com>
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:3f707d13c29300fab31a1ba6a8657771ba4946a8)
Merged-In: Ieca53f3092355c72784d4216c138cbb7cc9c7fa4
Change-Id: Ieca53f3092355c72784d4216c138cbb7cc9c7fa4
 2024-04-25 06:11:20 +00:00
Kevin Ying
a78ae51ef1 Add sepolicy for power_state node 
Bug: 329703995
Test: manual - used camera
Change-Id: I1f156fe7f10210b933f360fef771cb37ff3cbedb
Signed-off-by: Kevin Ying <kevinying@google.com>
 2024-04-24 19:10:19 +00:00
Android Build Coastguard Worker
5030b5c5eb Snap for 11753769 from c1341de4c3 to 24Q3-release 
Change-Id: I6c311ef3f98c6606be02e00a72754bfb027ecfbf
 2024-04-23 23:03:53 +00:00
Kelvin Zhang
276b386b6f Add necessary sepolicy for convert_modem_to_ext4 
Test: reformat data as ext4, reboot
Bug: 293313353
Change-Id: Iede84b1827166f1581d80077fe1c4d93d01a815b
 2024-04-22 10:14:13 -07:00
Kelvin Zhang
c1341de4c3 Add necessary sepolicy for ro.vendor.persist.status 
This prop will be set to "mounted" after /mnt/vendor/persist mounts.
Need this prop to synchronize different actions in init.rc script.

Test: th
Bug: 319335586
Change-Id: I9e8bd5e875956393d610b7def6be713565543d05
 2024-04-22 10:14:12 -07:00
Enzo Liao
7c420c0703 Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common. 
New paths (ag/26620507):
  RamdumpService: device/google/gs-common/ramdump_app
  SSRestartDetector: device/google/gs-common/ssr_detector_app

Bug: 298102808
Design: go/sys-software-logging
Test: Manual
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:df85139d173644b7ec44cb7151845026872a1648)
Merged-In: Id42c4de6c29d4a95f8a68a5732c4732edfb71da8
Change-Id: Id42c4de6c29d4a95f8a68a5732c4732edfb71da8
 2024-04-22 03:02:53 +00:00
Android Build Coastguard Worker
3777402d69 Snap for 11740859 from e028d802db to 24Q3-release 
Change-Id: I9c405e3dd289cfc6e83fd57f9cd532a4ef9ff29b
 2024-04-20 01:03:18 +00:00
Martin Liu
e028d802db move common MM policy to gs common folder 
Bug: 332916849
Bug: 309409009
Test: boot
Change-Id: I05803943752f7b021c9d4f97b475b493f6ceadcb
Signed-off-by: Martin Liu <liumartin@google.com>
 2024-04-18 01:59:46 +00:00
Android Build Coastguard Worker
e30c178598 Snap for 11722130 from d4f04d19cc to 24Q3-release 
Change-Id: Id93a911c4a36da3823ab3fe9d05fb64f32681228
 2024-04-16 23:03:38 +00:00
Android Build Coastguard Worker
010b4d30ba Snap for 11717025 from 99c5c3dc9e to 24Q3-release 
Change-Id: Ia28d393a0e96cc5f683a750de017678e3a5ee613
 2024-04-15 23:04:08 +00:00
Krzysztof Kosiński
d4f04d19cc Remove rlsservice sepolicy. am: 41c22587a2 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/26948256

Change-Id: I60d0c43786dc869f9d69ce7c95e2199652efda3a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-15 21:58:31 +00:00
Kadi Narmamatov
99c5c3dc9e Merge "rsfd: add get_prop for cbd property" into main 2024-04-15 07:36:23 +00:00
Android Build Coastguard Worker
03e8d4cec1 Snap for 11710546 from 32ce8f9878 to 24Q3-release 
Change-Id: I6f1ceb11bb6061c3baecc7653ea47488c564eca1
 2024-04-13 01:03:44 +00:00
Krzysztof Kosiński
41c22587a2 Remove rlsservice sepolicy. 
rlsservice is not included on zuma and later, only gs101/gs201.
Relevant code search link:
https://source.corp.google.com/h/googleplex-android/platform/superproject/main/+/main:vendor/google/services/LyricCameraHAL/src/apex/Android.bp;l=26;drc=e4b49a6d945df6d5210c35251de8046b162d799d

Bug: 278627483
Test: presubmit
Change-Id: I15398ddeea8c0a10920c987e55789ba4a8322774
 2024-04-12 22:03:22 +00:00
Treehugger Robot
32ce8f9878 Merge "allow vendor init to access compaction_proactiveness" into main 2024-04-12 15:03:00 +00:00
Android Build Coastguard Worker
69508f7e60 Snap for 11704135 from 4104efb34f to 24Q3-release 
Change-Id: I0cbb8ce7b17dc084e4ac1143b50303e876b949aa
 2024-04-11 23:03:30 +00:00
Enzo Liao
4104efb34f Merge "Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common." into main 2024-04-11 02:03:26 +00:00
Martin Liu
fb44539d8d allow vendor init to access compaction_proactiveness 
Bug: 332916849
Test: boot
Change-Id: If1930fe0f174f2794296ded69d29420f2e59f6c2
Signed-off-by: Martin Liu <liumartin@google.com>
 2024-04-10 23:34:49 +00:00
kadirpili
22844d59ca rsfd: add get_prop for cbd property 
Bug: 323086582

Test: flash ROM and check for rfsd sepolicy logs

Change-Id: I6f8c555614386fda784b4532a4b004d5fe857bc6
 2024-04-10 05:52:54 +00:00
Enzo Liao
df85139d17 Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common. 
New paths (ag/26620507):
  RamdumpService: device/google/gs-common/ramdump_app
  SSRestartDetector: device/google/gs-common/ssr_detector_app

Bug: 298102808
Design: go/sys-software-logging
Test: Manual
Change-Id: Id42c4de6c29d4a95f8a68a5732c4732edfb71da8
 2024-04-08 19:21:13 +08:00