Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1420 commits 1 branch 0 tags 18 MiB
Commit graph

1420 commits

This branch
This branch
All branches
Author SHA1 Message Date
Darren Hsu
8e028f0a03 sepolicy: label odpm paths for system suspend 
Bug: 272166423
Test: run singleCommand pts -m PtsSELinuxTestCases
Change-Id: I0295cc09cd8eb46b19edcec0d74440e497440423
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2023-03-23 14:13:43 +08:00
Wilson Sung
3e68836e43 Revert "Move pixel dumpstate to gs-common" 
Revert submission 22188471-dumpstate aidl

Reason for revert: Build break

Reverted changes: /q/submissionid:22188471-dumpstate+aidl
Bug: 274858145

Change-Id: I757111541257eecd4936572376fe42a4c866a1d6
 2023-03-23 05:58:12 +00:00
Adam Shih
ac0bb620df Merge "Move pixel dumpstate to gs-common" into udc-dev am: 0c17644417 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22188471

Change-Id: I254abc02ecf38455c75258888fd3b9c948cbcee5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-23 05:53:01 +00:00
Adam Shih
cad969da74 Merge "Move pixel dumpstate to gs-common" into udc-dev am: 0c17644417 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22188471

Change-Id: I58ded180038a8aa507095d31a069547b7f02efea
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-23 05:52:55 +00:00
Adam Shih
0c17644417 Merge "Move pixel dumpstate to gs-common" into udc-dev 2023-03-23 04:39:46 +00:00
TreeHugger Robot
9cd5fd2ec8 Merge "Enforce bootdevice_sysdev" into udc-d1-dev am: 0b1499354d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22185173

Change-Id: I0765dc38aa14480ba01e067290629b2be5d392a6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-23 04:19:31 +00:00
TreeHugger Robot
943e5e1ba8 Merge "Enforce systesm_app" into udc-d1-dev am: 75b82f7092 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22185176

Change-Id: I5792118ba1f994613c334c8ecd056c896598d116
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-23 04:17:55 +00:00
TreeHugger Robot
ee84f470bf Merge "Update SELinux error" into udc-d1-dev am: a8dfe1fd3c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22185174

Change-Id: I0d15f92b5a035915d37de6a750f53d3c5351af64
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-23 04:16:47 +00:00
Miranda Kephart
04ac3ce7f5 Fix screenshot shutter sound on P23 devices am: 8cc50336c8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22200827

Change-Id: I1bc148a562bc22bdab4be3984f1394ecf0da364f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-23 04:13:55 +00:00
TreeHugger Robot
0b1499354d Merge "Enforce bootdevice_sysdev" into udc-d1-dev 2023-03-23 03:36:47 +00:00
TreeHugger Robot
75b82f7092 Merge "Enforce systesm_app" into udc-d1-dev 2023-03-23 03:32:48 +00:00
TreeHugger Robot
a8dfe1fd3c Merge "Update SELinux error" into udc-d1-dev 2023-03-23 03:27:12 +00:00
Adam Shih
4154c957c5 Merge "Move pixel dumpstate to gs-common" 2023-03-23 02:29:30 +00:00
Miranda Kephart
8cc50336c8 Fix screenshot shutter sound on P23 devices 
SystemUI didn't have permission to access media server or the audio
server. Looks like both are required (and sufficient).

Bug: 273688513
Bug: 272628174
Fix: 273688513
Test: manual; take a screenshot with ringer on and verify it
makes a sound

Change-Id: Ibbe54db8cbf78ed199cb329804221709a2822242
 2023-03-22 18:40:47 +00:00
Welly Hsu
7f8e10c54a Remove euiccpixel_app dontaudit from gmscore_app am: a133586e4e am: cccbbb12e4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22188469

Change-Id: Ibf39c45ff3c91e32fa257587bf5f73708cce421e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 15:15:50 +00:00
Welly Hsu
a6c5340c93 Remove euiccpixel_app dontaudit from gmscore_app am: a133586e4e am: e0adad9eb0 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22188469

Change-Id: I738eb4c90dbefcbe3fc78aba980b96206ee9ddb5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 15:15:22 +00:00
Welly Hsu
cccbbb12e4 Remove euiccpixel_app dontaudit from gmscore_app am: a133586e4e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22188469

Change-Id: If322b434699549b08e6a081207662a4ca4717e85
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 14:47:47 +00:00
Welly Hsu
e0adad9eb0 Remove euiccpixel_app dontaudit from gmscore_app am: a133586e4e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22188469

Change-Id: I48f0e1eb633c44a4c6445c6423d10e500be6f6c7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 14:41:23 +00:00
Mark Chang
9e2ce3d5c0 Add IScreenProtectorDetectorService policy for systemui_app. 
Bug: 260302317
Test: system ui app successfully started.
Change-Id: Ibbeab03e738fbbd4103bb5bf4e9f6bbd2998cd29
Signed-off-by: Mark Chang <changmark@google.com>
 2023-03-22 11:53:18 +00:00
Wilson Sung
6bf3029916 Enforce systesm_app 
Fix: 260768379
Fix: 260922048
Fix: 264490076
Test: boot-to-home, no related avc error
Change-Id: If9ead09340f5d810ec549f4c83015f3301f1113c
 2023-03-22 16:01:09 +08:00
Wilson Sung
a1739828f2 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 274727372
Bug: 274727542
Test: scanBugreport
Bug: 274727542
Bug: 268566481
Test: scanAvcDeniedLogRightAfterReboot
Bug: 274727542
Bug: 268566481
Change-Id: Ie846f2f7146e52c4e094d9fd7cfa1fa68e3e21df
 2023-03-22 15:38:52 +08:00
Wilson Sung
503ae703df Enforce bootdevice_sysdev 
Fix: 264489743
Test: boot-to-home and no avc errors
Change-Id: I14648c8d7b1b334c3d02971ffbf20b1f9b5a9354
 2023-03-22 15:35:45 +08:00
TreeHugger Robot
ab7303cbfd Merge "[SELinux] remove uwb remaining tracking denials" into udc-d1-dev am: a112b65748 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22188470

Change-Id: Ie921139dc13515d60f00eec16150035c53d13596
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 06:14:17 +00:00
TreeHugger Robot
a112b65748 Merge "[SELinux] remove uwb remaining tracking denials" into udc-d1-dev 2023-03-22 05:30:57 +00:00
Welly Hsu
a133586e4e Remove euiccpixel_app dontaudit from gmscore_app 
bug: 265383359
Change-Id: I6ee7d37187725408e0f443a40affe4c4e50dac91
 2023-03-22 13:27:32 +08:00
Adam Shih
ee45cfea78 Move pixel dumpstate to gs-common 
Bug: 240530709
Test: adb bugreport
Change-Id: I4c46a2495ea07b9e44f56c4c6be726621e0ebf65
Merged-In: I4c46a2495ea07b9e44f56c4c6be726621e0ebf65
 2023-03-22 05:06:27 +00:00
Adam Shih
9844033c0a Move pixel dumpstate to gs-common 
Bug: 240530709
Test: adb bugreport
Change-Id: I4c46a2495ea07b9e44f56c4c6be726621e0ebf65
 2023-03-22 13:05:44 +08:00
TreeHugger Robot
7cd8b7fd2f Merge "change device type for /dev/stmvl53l1_ranging" into udc-d1-dev am: 03d439f0e1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22167058

Change-Id: I40aab624c447d94be30d25ea2b256f289c576f7e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 03:09:42 +00:00
Rex Lin
e95656d6fc [SELinux] remove uwb remaining tracking denials 
- hal_uwb_vendor_default
- uwb_vendor_app

Bug: 264489190
Bug: 264489787
Test: remove denials and no avc lob observed and ranging works
Change-Id: I5fd7f5b6bed8f819b2d5812c882ac596f1f1871b
Signed-off-by: Rex Lin <rexcylin@google.com>
 2023-03-22 11:07:51 +08:00
TreeHugger Robot
03d439f0e1 Merge "change device type for /dev/stmvl53l1_ranging" into udc-d1-dev 2023-03-22 02:36:37 +00:00
Nicole Lee
fd92d51b74 Move logger_app dontaudit items out of tracking_denials am: aa4b374120 am: 0a273483f4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22173747

Change-Id: I9cf9c181a2365565495ffffe6271ab2f327de600
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:56:45 +00:00
Nicole Lee
838c8d7fca Move logger_app dontaudit items out of tracking_denials am: aa4b374120 am: f23893994b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22173747

Change-Id: I1ae9674d9d1b566cb8b2711f766aa3536bb5974f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:17:36 +00:00
Nicole Lee
f23893994b Move logger_app dontaudit items out of tracking_denials am: aa4b374120 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22173747

Change-Id: If3e54f3595eac5942175b29250ca6888471876ae
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:17:23 +00:00
Wilson Sung
0a18e71a97 Enforce untrusted_app am: e85dc12d69 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22184422

Change-Id: I7504170b28c2869fb8ce72ec544584ae7f9eb918
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:16:49 +00:00
Nicole Lee
0a273483f4 Move logger_app dontaudit items out of tracking_denials am: aa4b374120 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22173747

Change-Id: I768ae20c3bd1048692bf926b9ce65cb7f27ca4e0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:15:57 +00:00
Wilson Sung
e85dc12d69 Enforce untrusted_app 
Fix: 264489681
Test: boot-to-home and no untrusted_app avc error
Change-Id: Ic7a0fac4893265b4abde55d0a65372419fc09392
 2023-03-22 01:38:31 +08:00
Joerg Wagner
fcfd90a13e [automerger skipped] Merge "Update Mali DDK to r40 : Additional SELinux settings" into udc-d1-dev am: 6351914802 -s ours 
am skip reason: Merged-In I785106b6d2d05e21bf60fcd6da3d716b32e1bc1d with SHA-1 6834d6f59f is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/21750299

Change-Id: I3beea5355b52767877126c8804b93fe52a34a502
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 15:09:40 +00:00
Jörg Wagner
7dab59708f [automerger skipped] Update Mali DDK to r40 : Additional SELinux settings am: d8c6712f5b -s ours 
am skip reason: Merged-In I785106b6d2d05e21bf60fcd6da3d716b32e1bc1d with SHA-1 6834d6f59f is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/21750299

Change-Id: Ied37dcf7f91f68826bfa28807ef1886a03bc5086
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 15:09:39 +00:00
Joerg Wagner
6351914802 Merge "Update Mali DDK to r40 : Additional SELinux settings" into udc-d1-dev 2023-03-21 14:36:16 +00:00
Kris Chen
0ea531896c Allow fingerprint hal to read sysfs_leds 
Fix the following avc denials:
avc: denied { search } for name="backlight" dev="sysfs" ino=79316
scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_leds:s0
tclass=dir permissive=1

avc: denied { read } for name="state" dev="sysfs" ino=79365
scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_leds:s0
tclass=file permissive=1

Bug: 271072126
Test: Authenticate fingerprint.
Change-Id: Ibefbcefc005ab2cec7c417f197fd134b154ed9a1
 2023-03-21 12:18:59 +00:00
JimiChen
ee1df407be change device type for /dev/stmvl53l1_ranging 
It was a rls_device. Move to lwis_device now.

Bug: 274552433
Test: launch GCA
Change-Id: Id920583cc06b09063de85b160c12a5c3a5468c11
 2023-03-21 20:00:00 +08:00
Nicole Lee
aa4b374120 Move logger_app dontaudit items out of tracking_denials 
Bug: 269383459
Test: Open Pixel Logger and check logs
Change-Id: Id5b89a7eeaa5b06539113d4c86c64d6022080949
 2023-03-21 10:11:58 +00:00
TreeHugger Robot
d5ac6d9962 Merge "Allow regmap debugfs permission" into udc-d1-dev am: 504b4cc2eb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133445

Change-Id: I483874eb28c4db9377ce3d7b616262d81d4e70ab
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 08:27:11 +00:00
Donnie Pollitz
b21ac1be87 Merge "Removing audit for system_suspend tee" into udc-d1-dev am: 4ce51ebfba 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22160088

Change-Id: Icf7daf3980b75f38676632d2dad62b7c4390c27c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 08:26:45 +00:00
TreeHugger Robot
504b4cc2eb Merge "Allow regmap debugfs permission" into udc-d1-dev 2023-03-21 08:00:49 +00:00
Donnie Pollitz
4ce51ebfba Merge "Removing audit for system_suspend tee" into udc-d1-dev 2023-03-21 07:55:13 +00:00
Robert Lee
78603ddb7e Allow regmap debugfs permission 
auditd  : type=1400 audit(0.0:7): avc: denied { search } for comm="kworker/u18:1" name="regmap" dev="debugfs" ino=1049 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_regmap_debugfs:s0 tclass=dir permissive=0

Bug: 273891639
Test: builds
Change-Id: I9700d34e4d8a9d96d904fe5119a8bf4601bf8ea6
Signed-off-by: Robert Lee <lerobert@google.com>
 2023-03-21 14:17:00 +08:00
TreeHugger Robot
2ecbb84226 Merge "Allow systemui find radio_service" into udc-d1-dev am: 7ca4d7ceb7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22161791

Change-Id: I281b02bfe57536093f3fd1821ad6b2d31e2a7ba0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 03:35:10 +00:00
TreeHugger Robot
7ca4d7ceb7 Merge "Allow systemui find radio_service" into udc-d1-dev 2023-03-21 03:19:59 +00:00
Chung-Kai (Michael) Mei
d39247b7cc [automerger skipped] Merge "genfs_contexts: fix path for i2c peripheral device [DO NOT MERGE]" into udc-d1-dev am: 4766cf456b -s ours 
am skip reason: subject contains skip directive

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133469

Change-Id: Iccf548638503bd9883d5bfe3c83587b77caf2792
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 03:18:41 +00:00