Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2235 commits 1 branch 0 tags 18 MiB
Commit graph

184 commits

Author SHA1 Message Date
KRIS CHEN
3cbe2de42c Merge "Allow fingerprint to access the folder /data/vendor/fingerprint" into main 2024-05-08 08:46:30 +00:00
chenkris
4035d467ad Allow fingerprint to access the folder /data/vendor/fingerprint 
Fix the following avc denial:
android.hardwar: type=1400 audit(0.0:20): avc:  denied  { write } for  name="fingerprint" dev="dm-56" ino=36703 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir permissive=0

Bug: 267766859
Test: Tested fingerprint under enforcing mode
Change-Id: Iadd058432b7db8c20a949aeda1df5f8309663004
 2024-05-08 06:48:41 +00:00
Krzysztof Kosiński
41c22587a2 Remove rlsservice sepolicy. 
rlsservice is not included on zuma and later, only gs101/gs201.
Relevant code search link:
https://source.corp.google.com/h/googleplex-android/platform/superproject/main/+/main:vendor/google/services/LyricCameraHAL/src/apex/Android.bp;l=26;drc=e4b49a6d945df6d5210c35251de8046b162d799d

Bug: 278627483
Test: presubmit
Change-Id: I15398ddeea8c0a10920c987e55789ba4a8322774
 2024-04-12 22:03:22 +00:00
Inseob Kim
80e1b3708f Label dtbo_block_device with flag-guarding am: 0c15160cad am: f817f9b687 am: bd1ea77736 
Original change: https://android-review.googlesource.com/c/device/google/zuma-sepolicy/+/2903809

Change-Id: I445a175dd8daabc19da05f9d08690955d836f21c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-01-11 04:07:09 +00:00
Inseob Kim
64fd14fdd8 Revert "Label dtbo partition as dtbo_block_device" am: f05143f43c am: 478449e638 am: 93607ec24a 
Original change: https://android-review.googlesource.com/c/device/google/zuma-sepolicy/+/2903808

Change-Id: I9b7a68fd405327f22a08b9ba8759a45ee51a8b35
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-01-10 10:55:30 +00:00
Inseob Kim
0c15160cad Label dtbo_block_device with flag-guarding 
Bug: 319035582
Test: run device assignment demo
Change-Id: I813be88391c9ff79d94e504149963160f1d74b2c
 2024-01-10 17:02:34 +09:00
Inseob Kim
f05143f43c Revert "Label dtbo partition as dtbo_block_device" 
This reverts commit 3773ca269e.

Reason for revert: b/319035582

Bug: 319035582
Test: boot
Change-Id: I3c2a5b5bc871aa506396c12d6e1fa036858c1273
 2024-01-10 17:02:14 +09:00
Lei Ju
52beafc4c4 [zuma] Use common settings for Contexthub HAL 
Test: compilation
Bug: 248615564
Change-Id: I6691b23af6e532584f4dee9618c264b20b8873c0
 2024-01-07 20:10:59 -08:00
David Drysdale
7beccb101a Merge "Add Secretkeeper HAL" into main 2023-12-06 10:21:03 +00:00
David Drysdale
98448f5628 Add Secretkeeper HAL 
Test: VtsAidlAuthGraphSessionTest
Bug: 306364873
Change-Id: I57de11a4c08476979e9283914a552a90254ee3fb
 2023-12-05 10:39:26 +00:00
Jason Chiu
47c545c8b0 zuma: move sepolicy related to bootctrl hal to gs-common 
Bug: 265063384
Change-Id: Ic99547173f6eade30bce2d60051163336b27ca3b
Signed-off-by: Jason Chiu <jasoncschiu@google.com>
 2023-12-05 00:45:55 +08:00
Daniel Norman
f219d38925 Removes duplicate hidraw_device type definition. 
This type is now defined by the platform.

Bug: 303522222
Change-Id: Ic46a7327bb2dab89f424cde2682a40f2b28a04db
Test: ls -z /dev/hidraw0
(cherry picked from commit 8ff4604573)
 2023-12-02 00:01:28 +00:00
Sebastian Pickl
fbe923d20a Revert "zuma: move sepolicy related to bootctrl hal to gs-common" 
Revert submission 25477883-gs-common_bootctrl-aidl

Reason for revert: breaking builds b/314240126

Bug: 314240126

Reverted changes: /q/submissionid:25477883-gs-common_bootctrl-aidl

Change-Id: I84dda0a7c98ed1d1f7958734761c9c1a0bd9d169
 2023-12-01 11:30:45 +00:00
Jason Chiu
23feade4db zuma: move sepolicy related to bootctrl hal to gs-common 
Bug: 265063384
Change-Id: I230ca394c5d1b6e68dd8b4d51ea06568810eb4e0
Signed-off-by: Jason Chiu <jasoncschiu@google.com>
 2023-11-27 17:45:29 +08:00
Devika Krishnadas
9fcc03e099 Merge "Add Pixel Mapper as a sp-HAL" into main 2023-11-20 18:17:28 +00:00
Devika Krishnadas
b5c8a252b2 Add Pixel Mapper as a sp-HAL 
Bug: 267352318

Change-Id: I3068038eb51f1a78a2cd300a6b71d96a2647b641
Signed-off-by: Devika Krishnadas <kdevika@google.com>
 2023-11-16 01:25:45 +00:00
Daniel Norman
8ff4604573 Removes duplicate hidraw_device type definition. 
This type is now defined by the platform.

Bug: 303522222
Change-Id: Ic46a7327bb2dab89f424cde2682a40f2b28a04db
Test: ls -z /dev/hidraw0
 2023-11-10 22:52:00 +00:00
Hiroshi Akiyama
400a9d2068 Update missing dump_power sepolicy 
Bug: 304851502
Test: adb bugreport and check dumpstate_board.txt
Change-Id: I1aed85ec3c1106381a395867a6eb90c11a8a1f84
Signed-off-by: Hiroshi Akiyama <hiroshiakiyama@google.com>
 2023-10-14 05:02:16 +00:00
yixuanwang
0a4d3c2f89 Add selinux policy for chre vendor data directory 
Bug: 278114604
Test: on device test
Change-Id: I33d1e73a375c86602ce632665fe96c5876347c52
 2023-09-16 02:51:45 +00:00
Yixuan Wang
cb920d586f Revert "Revert "[DO NOT MERGE] Add selinux policy for chre vendo..." am: bd654f00d9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/24589942

Change-Id: Iba1c14faaf0c1e423f914ca860f83d75d5496a54
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-15 18:14:40 +00:00
Yixuan Wang
bd654f00d9 Revert "Revert "[DO NOT MERGE] Add selinux policy for chre vendo..." 
Revert submission 24526613-revert-23834879-CHRE BT LOG-MHDBQNZAGV

Reason for revert: Fixed and tested with a followup cl

Reverted changes: /q/submissionid:24526613-revert-23834879-CHRE+BT+LOG-MHDBQNZAGV

Change-Id: I29866a91abfcfa380d772da447eb95344df43f8f
 2023-08-29 19:17:32 +00:00
Sebastian Pickl
b5491c6650 Revert "[DO NOT MERGE] Add selinux policy for chre vendor data d..." am: 84f1209636 am: 7ee5ae18de 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/24526611

Change-Id: If8ca0317f923da98e74ff8642b97f83894206b2f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-24 11:33:41 +00:00
Sebastian Pickl
7ee5ae18de Revert "[DO NOT MERGE] Add selinux policy for chre vendor data d..." am: 84f1209636 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/24526611

Change-Id: I3e4c175289017c75c26df4029421b61ad4efcfbe
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-24 10:51:24 +00:00
Sebastian Pickl
84f1209636 Revert "[DO NOT MERGE] Add selinux policy for chre vendor data d..." 
Revert submission 23834879-CHRE BT LOG

Reason for revert: fixes broken test b/297255998 verified by go/abtd: https://android-build.googleplex.com/builds/abtd/run/L30000000962735539
Bug:297255998

Reverted changes: /q/submissionid:23834879-CHRE+BT+LOG

Change-Id: I56b800260303834ed76dedf354b5a32af00b3684
 2023-08-24 09:47:19 +00:00
Yixuan Wang
2058641a14 [DO NOT MERGE] Add selinux policy for chre vendor data directory am: 22d9b28316 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/23834879

Change-Id: Id8058dbdf765871ba8e762ed10dd1af309642351
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-23 19:52:24 +00:00
Seungjae Yoo
34eb573ac9 Label dtbo partition as dtbo_block_device am: 8256e72c4a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/24438745

Change-Id: Ia4dc306e5e6fdb008c890b538804fba528319806
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-18 09:28:08 +00:00
Seungjae Yoo
8256e72c4a Label dtbo partition as dtbo_block_device 
Bug: 291191362
Test: m

Merged-In: Iccca8de440cad7e9cd12015e0271262a217c457b
Change-Id: Iccca8de440cad7e9cd12015e0271262a217c457b
 2023-08-18 00:38:06 +00:00
Seungjae Yoo
3773ca269e Label dtbo partition as dtbo_block_device 
Bug: 291191362
Test: m

Change-Id: Iccca8de440cad7e9cd12015e0271262a217c457b
 2023-08-16 11:16:37 +09:00
Jason Chiu
67addf1851 remove rule for bootctrl hidl version 1.2 am: 54b0343059 am: b9e73326ee am: 8bceac530e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/24146702

Change-Id: I9411d0f4e94a85fd3814cf3317b560016bcd9697
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-25 20:39:12 +00:00
Jason Chiu
b9e73326ee remove rule for bootctrl hidl version 1.2 am: 54b0343059 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/24146702

Change-Id: Ia4efc4cdc0cb92c62c4ddcb7b6f458c4149657a1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-21 02:59:16 +00:00
Jason Chiu
cbb8fed21e Add rule for bootctrl AIDL am: 17fa2e6fe5 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/24141842

Change-Id: Idbac1303702c0845fd549564f28b20f2bf9f0a03
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-21 02:59:13 +00:00
Jason Chiu
3aa432be32 Merge "Add rule for bootctrl AIDL" 
Bug: 282670401
Change-Id: I1b4c5e7ced0fe67bbbaca2b607e4ca7422e170e1
Signed-off-by: Jason Chiu <jasoncschiu@google.com>
 2023-07-20 21:00:41 +08:00
Jason Chiu
54b0343059 remove rule for bootctrl hidl version 1.2 
Bug: 282670401
Change-Id: I25d169c335fb551cf1862fdf6e6540485a2b8016
Signed-off-by: Jason Chiu <jasoncschiu@google.com>
 2023-07-20 12:56:38 +00:00
Jason Chiu
17fa2e6fe5 Add rule for bootctrl AIDL 
Bug: 282670401
Change-Id: I1b4c5e7ced0fe67bbbaca2b607e4ca7422e170e1
Signed-off-by: Jason Chiu <jasoncschiu@google.com>
 2023-07-20 20:53:04 +08:00
Dinesh Yadav
1278d8fc59 [Cleanup]: Move gxp sepolicies to gs-common for P23 
These policies are moved to gs-common as part of ag/24002524

Bug: 288368306
Change-Id: Iaa15e497eafd54b1b702192a3c8f7fe0c908f8a1
Signed-off-by: Dinesh Yadav <dkyadav@google.com>
 2023-07-10 05:13:16 +00:00
Yixuan Wang
22d9b28316 [DO NOT MERGE] Add selinux policy for chre vendor data directory 
Bug: 278114604
Test: on device test
Change-Id: I1ac96655571f811c116540aec3a1626d5cca1b16
(cherry picked from commit 7530c4bc13)
 2023-06-28 17:16:15 +00:00
Joerg Wagner
724a0cc7c5 Merge "Prepare for Mali r44p0 UMD update" into udc-qpr-dev am: d19ec7a5b6 am: 029fcb5e8a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/23599640

Change-Id: Ib339b9efc10937378c5dc802fda8fb758372d90a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-13 07:35:27 +00:00
Joerg Wagner
d19ec7a5b6 Merge "Prepare for Mali r44p0 UMD update" into udc-qpr-dev 2023-06-13 06:03:15 +00:00
Treehugger Robot
ba91204313 Merge "Add sepolicies for gcma_camera heaps" into udc-d1-dev am: 8733772e74 am: 8d8f96f8d9 am: 10d6b74a4e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22298464

Change-Id: I23fd2b50990ef3fe0c5ecc54867897bb0a4d2c24
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 09:15:54 +00:00
Treehugger Robot
8733772e74 Merge "Add sepolicies for gcma_camera heaps" into udc-d1-dev 2023-06-08 06:25:44 +00:00
Jörg Wagner
ce42de2ebd Prepare for Mali r44p0 UMD update 
Add selinux rule to allow new V2 interface file alongside of V1 used up to r43p0.
The V1 entry will be removed once the r44p0 UMD update completes.
This decouples small changes from large, potentially intrusive ones in
other repositories.

Bug: 284254900
Change-Id: Ia928f871d8ea1fdbfb963cecb8fc4a99947e443e
 2023-06-07 10:19:17 +00:00
Mark su
725f5b8df8 Add video12 as hw_jpg_device and enable it for debug_camera_app am: 51c91e5bdf am: cbc15223d5 am: 870eb2484d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/23053881

Change-Id: If4516eb1c6fcf0dfd20c9d04a76092fb9300a7d6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-01 09:06:22 +00:00
TreeHugger Robot
2df1fd9399 Merge "Remove old secure_element HIDL permission" into udc-d1-dev am: 23440aa9df am: ae82081798 am: 55c2250a35 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/23466920

Change-Id: I0972ca583406d0dbfba0528515890bb1b0946097
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-31 07:57:20 +00:00
Mark su
51c91e5bdf Add video12 as hw_jpg_device and enable it for debug_camera_app 
Test: 05-05 05:07:06.652  4616  4616 W FinishThread: type=1400 audit(0.0:24): avc:  denied  { read write } for  name="video12" dev="tmpfs" ino=646 scontext=u:r:debug_camera_app:s0:c32,c257,c512,c768 tcontext=u:object_r:video_device:s0 tclass=chr_file permissive=0 app=com.google.android.GoogleCameraEng
05-08 22:00:59.000  7323  7323 I FinishThread: type=1400 audit(0.0:36): avc:  denied  { read } for  name="lib_jpg_encoder.so"
 dev="dm-45" ino=25639 scontext=u:r:debug_camera_app:s0:c32,c257,c512,c768 tcontext=u:object_r:vendor_camera_data_file:s0 tcl
ass=file permissive=1 app=com.google.android.GoogleCameraEng

05-08 22:00:59.000  7323  7323 I FinishThread: type=1400 audit(0.0:37): avc:  denied  { open } for  path="/vendor/lib64/lib_j
pg_encoder.so" dev="dm-45" ino=25639 scontext=u:r:debug_camera_app:s0:c32,c257,c512,c768 tcontext=u:object_r:vendor_camera_da
ta_file:s0 tclass=file permissive=1 app=com.google.android.GoogleCameraEng

05-08 22:46:00.260  4784  4784 I FinishThread: type=1400 audit(0.0:29): avc:  denied  { execute } for  path="/vendor/lib64/
libhwjpeg.so" dev="dm-50" ino=55596 scontext=u:r:debug_camera_app:s0:c32,c257,c512,c768 tcontext=u:object_r:vendor_camera_d
ata_file:s0 tclass=file permissive=1 app=com.google.android.GoogleCameraEng

05-08 22:33:30.504  7436  7436 I FinishThread: type=1400 audit(0.0:36): avc:  denied  { getattr } for  path="/vendor/lib64/
lib_jpg_encoder.so" dev="dm-50" ino=53765 scontext=u:r:debug_camera_app:s0:c32,c257,c512,c768 tcontext=u:object_r:vendor_ca
mera_data_file:s0 tclass=file permissive=1 app=com.google.android.GoogleCameraEng

05-08 22:33:30.504  7436  7436 I FinishThread: type=1400 audit(0.0:37): avc:  denied  { map } for  path="/vendor/lib64/lib_
jpg_encoder.so" dev="dm-50" ino=53765 scontext=u:r:debug_camera_app:s0:c32,c257,c512,c768 tcontext=u:object_r:vendor_camera
_data_file:s0 tclass=file permissive=1 app=com.google.android.GoogleCameraEng

binder:7312_2: type=1400 audit(0.0:18): avc:  denied  { read write } for  name="video12" dev="tmpfs" ino=680 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:hw_jpg_device:s0 tclass=chr_file permissive=1
05-08 22:28:37.692  7312  7312 I binder:7312_2: type=1400 audit(0.0:19): avc:  denied  { open } for  path="/dev/video12" dev="tmpfs" ino=680 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:hw_jpg_device:s0 tclass=chr_file permissive=1

05-08 22:28:37.692  7312  7312 I binder:7312_2: type=1400 audit(0.0:20): avc:  denied  { ioctl } for  path="/dev/video12" dev="tmpfs" ino=680 ioctlcmd=0x5600 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:hw_jpg_device:s0 tclass=chr_file permissive=1

05-08 22:28:37.700  7312  7312 I binder:7312_2: type=1400 audit(0.0:21): avc:  denied  { read } for  name="u:object_r:default_prop:s0" dev="tmpfs" ino=167 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:default_prop:s0 tclass=file permissive=1

Bug: 267820687
Change-Id: I69f502d721f683d3532038d618f5fafc83f38b6b
 2023-05-31 06:08:46 +00:00
TreeHugger Robot
23440aa9df Merge "Remove old secure_element HIDL permission" into udc-d1-dev 2023-05-31 05:27:32 +00:00
Dinesh Yadav
55064ee2f6 Merge "Add SEPolicy for gxp_metrics_logger.so logging to stats service" into udc-d1-dev am: 15f5afcfab am: 489a7de117 am: 87199f3e5a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/23265297

Change-Id: I9db72caf2b829f6cd05b57267a12be49acdc6695
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-31 04:57:46 +00:00
Hyungjun Park
6de0a33f0a Remove old secure_element HIDL permission 
AIDL HAL is used in the new project and remove the old HIDL part.

Bug: 280530945
Test: VTS pass

Change-Id: Idd38fc59d7e89e2cafab5f4693d00abd6d4fb138
Signed-off-by: Hyungjun Park <hjun78.park@samsung.com>
 2023-05-31 03:12:02 +00:00
Yixuan Wang
8a16687b51 Merge "Add selinux policy for chre vendor data directory" 2023-05-31 01:24:48 +00:00
Yixuan Wang
7530c4bc13 Add selinux policy for chre vendor data directory 
Bug: 278114604
Test: on device test
Change-Id: I1ac96655571f811c116540aec3a1626d5cca1b16
 2023-05-30 21:16:26 +00:00
Dinesh Yadav
e6d2f01a89 Add SEPolicy for gxp_metrics_logger.so logging to stats service 
In order to access the gxp metrics library from the google camera
app (product partition), we need to create an SELinux exception for
the related shared library (in vendor) it uses.
This CL adds the same_process_hal_file tag to allow this exception.

Bug: 278516358
Change-Id: I42d41243d3ee47ebff4f766cd769b5387fd20852
 2023-05-26 04:01:09 +00:00