device_google_zuma

Author	SHA1	Message	Date
Android Build Coastguard Worker	2c92e6a760	Snap for 12458821 from `ce7cdaa39f` to 25Q1-release Change-Id: I0903a95cb863a30c91f150d91f8cb45153802a27	2024-10-05 01:04:28 +00:00
Ben Murdoch	ce7cdaa39f	Allow systemui_app to set 'debug.tracing.desktop_mode_visible_tasks' system property See also: Iad8dc7a66765856ee7affb707f2dba6c1bbfbf49 Bug: 363893429 Flag: EXEMPT, SEPolicy Test: Verified on device. Change-Id: I4916370be55d4d5fd5c53ac5418b8a2bd99e9b37	2024-10-03 15:01:54 +00:00
Android Build Coastguard Worker	0cfafcb4ff	Snap for 12420652 from `bab0ee8b25` to 25Q1-release Change-Id: Ia4caa9cea338dddaecbad6ecea1f021575b3708f	2024-09-26 23:03:43 +00:00
Treehugger Robot	bab0ee8b25	Merge "Fix error in systemui when toggling airplane mode" into main	2024-09-26 16:11:38 +00:00
Android Build Coastguard Worker	d2c73ac75f	Snap for 12415101 from `c6822be533` to 25Q1-release Change-Id: I7dfd7ced08ddf1610edfbb92617b7876d29ce76b	2024-09-25 23:04:19 +00:00
Wilson Sung	c6822be533	Update SELinux error Test: SELinuxUncheckedDenialBootTest Bug: 369540836 Test: scanBugreport Bug: 369540673 Bug: 359428180 Test: scanAvcDeniedLogRightAfterReboot Bug: 359428180 Flag: EXEMPT NDK Change-Id: I096e8d513a393d70fc70edf658dcdf7650072c9a	2024-09-25 12:46:23 +00:00
Wilson Sung	e40a281856	Fix error in systemui when toggling airplane mode avc: denied { read } for name="u:object_r:radio_cdma_ecm_prop:s0" dev="tmpfs" ino=321 scontext=u:r:systemui_app:s0:c3,c257,c512,c768 tcontext=u:object_r:radio_cdma_ecm_prop:s0 tclass=file Bug: 197722115 Bug: 359381748 Test: make selinux_policy Flag: EXEMPT bugfix Change-Id: I96d17e562ac1cc0e0e0597ce332e94be95652026	2024-09-25 08:40:47 +00:00
Nina Chen	e6639e9e9f	Update SELinux error Test: SELinuxUncheckedDenialBootTest Bug: 369475700 Test: scanBugreport Bug: 369475363 Bug: 359428180 Test: scanAvcDeniedLogRightAfterReboot Bug: 369475225 Bug: 359428180 Flag: EXEMPT NDK Change-Id: I154c0c347aa62a5eb262c2a8174ad3b3f2ba03aa	2024-09-25 06:30:51 +00:00
Android Build Coastguard Worker	2784c2ffed	Snap for 12410317 from `cd06811f33` to 25Q1-release Change-Id: I67943033a77ec6c790dfc385563320d579ff5cfd	2024-09-24 23:03:51 +00:00
Treehugger Robot	cd06811f33	Merge "Update sepolicy for nfc antenna selftest values" into main	2024-09-24 07:34:38 +00:00
Android Build Coastguard Worker	96bda820a1	Snap for 12399304 from `438d6d7c70` to 25Q1-release Change-Id: Ibb9a72802d81097aca815c183bae390a18f27f0a	2024-09-21 23:03:00 +00:00
Tej Singh	f03cc7ce1c	Make android.framework.stats-v2-ndk app reachable For libedgetpu Test: TH Bug: 354763040 Flag: EXEMPT bugfix Change-Id: I1c2fb12e09ffe8083d6b14b0ee5aa957e031ddf3	2024-09-20 21:39:59 -07:00
Nina Chen	438d6d7c70	Update SELinux error Test: SELinuxUncheckedDenialBootTest Bug: 367943515 Test: scanBugreport Bug: 359428180 Test: scanAvcDeniedLogRightAfterReboot Bug: 359428180 Flag: EXEMPT NDK Change-Id: I06481594dae66cb89f8b3ac8be6d254760771f61	2024-09-18 11:56:11 +00:00
Prochin Wang	9ba73f1d79	Change vendor_fingerprint_prop to vendor_restricted_prop This is to allow the fingerprint HAL to access the property. Bug: 366105474 Flag: build.RELEASE_PIXEL_BOOST_DATALAYER_PSA_ENABLED Test: mm Change-Id: I021c004ca0153d2995fae6b3d6208d6cd6c799ef	2024-09-16 01:45:31 +00:00
Android Build Coastguard Worker	a3dbc662f0	Snap for 12370120 from `4bb5ee3796` to 25Q1-release Change-Id: I88bba3f83d25d18ca8ae8872d80d6fc681b89821	2024-09-14 23:02:31 +00:00
Nina Chen	4bb5ee3796	Update SELinux error Test: SELinuxUncheckedDenialBootTest Bug: 366116488 Test: scanBugreport Bug: 359428180 Bug: 364446415 Test: scanAvcDeniedLogRightAfterReboot Bug: 359428180 Flag: EXEMPT NDK Change-Id: I0c808f3c6aa441c0bfad23e0d8d2f0b987d09ed7	2024-09-13 06:45:09 +00:00
Nattharat Jariyanuntanaet	1492b4913a	Update sepolicy for nfc antenna selftest values Allow persist.vendor.nfc.antenna. to be vendor public values for NFC companion app to access from userdebug or eng builds avc: denied { read } for name="u:object_r:vendor_nfc_antenna_prop:s0" dev="tmpfs" ino=414 scontext=u:r:untrusted_app:s0:c79,c257,c512,c768 tcontext=u:object_r:vendor_nfc_antenna_prop:s0 tclass=file permissive=0 app=com.google.android.apps.internal.nfcassistancetool Bug: 361050657 Test: m selinux_policy Flag: NONE add permission Change-Id: I47c54642dbc801dfcaee8330e75a29d11030337c	2024-09-12 20:17:39 +00:00
Android Build Coastguard Worker	9dcf5a3ddc	Snap for 12337407 from `5b80168d54` to 25Q1-release Change-Id: I0882cc8a938df7083460477fae953baf09a5d1b5	2024-09-07 23:05:45 +00:00
Xin Li	5b80168d54	[automerger skipped] Merge 24Q3 to AOSP main am: `39d96988e3` -s ours am: `d1f03df8fc` -s ours am skip reason: Merged-In I9181b2344f2448b9debe1522528545ce90de8768 with SHA-1 `fb98394c54` is already in history Original change: https://android-review.googlesource.com/c/device/google/zuma-sepolicy/+/3258561 Change-Id: I411d96644364dcb9efdea5c1fe708b9651f8c12d Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2024-09-07 03:29:31 +00:00
Xin Li	d1f03df8fc	[automerger skipped] Merge 24Q3 to AOSP main am: `39d96988e3` -s ours am skip reason: Merged-In I9181b2344f2448b9debe1522528545ce90de8768 with SHA-1 `fb98394c54` is already in history Original change: https://android-review.googlesource.com/c/device/google/zuma-sepolicy/+/3258561 Change-Id: Iedc2cb039f534e4d1e7b873bec0f4f4d41fb4ab6 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2024-09-07 02:51:35 +00:00
Xin Li	39d96988e3	Merge 24Q3 to AOSP main Bug: 357762254 Merged-In: I9181b2344f2448b9debe1522528545ce90de8768 Change-Id: Ic5351ce6b46a46820c6d73d4f924c6b92d30b06d	2024-09-05 17:02:39 -07:00
Randall Huang	a73414799e	storage: move storage related device type to common folder Bug: 364225000 Test: forrest build Change-Id: I60597a3ad6f674b93267f41b3a27fdee6e923e59 Signed-off-by: Randall Huang <huangrandall@google.com>	2024-09-04 10:44:21 +08:00
Attis Chen	8297fee02b	Merge "Label sysfs node power_mode as sysfs_display." into main	2024-09-02 04:54:18 +00:00
Wilson Sung	432980a323	Update SELinux error Test: scanBugreport Bug: 361725982 Bug: 359428180 Test: scanAvcDeniedLogRightAfterReboot Bug: 359428180 Flag: EXEMPT bugFix Change-Id: I7e3ce34fdc02932250bcbd71e0a8864cfffaadff	2024-08-23 09:46:52 +00:00
Roy Luo	371f678632	Revert^2 "Add udc sysfs to udc_sysfs fs context" This reverts commit `66ba3214b8`. Reason for revert: fix breakage in next build with build-time flag in selinux policy. Fixed the following audit logs: [ 285.983545] type=1400 audit(1724270284.724:31): avc: denied { read } for comm="android.hardwar" name="state" dev="sysfs" ino=85740 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_udc:s0 tclass=file permissive=0 Bug: 339241080 Test: tested on Shiba trunk_staging and next builds Flag: build.RELEASE_USB_UDC_SYSFS_SELINUX_POLICY_ENABLED Change-Id: Ie4979f408a5bca0bb9b9762048ab716ddeeb4d2f	2024-08-21 22:15:22 +00:00
attis	5bf0b2bd07	Label sysfs node power_mode as sysfs_display. Label power_mode to sysfs_panel to let it be allowed in dumpstate. avc log: 08-20 20:24:11.292 9339 9339 W dump_display: type=1400 audit(0.0:2372): avc: denied { read } for name="power_mode" dev="sysfs" ino=85501 scontext=u:r:dump_display:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 Test: ls -Z, adb bugreport. Flag: EXEMPT bugfix Bug: 358505990 Change-Id: I7b6051de3e8f1b2813c681a176266fe3c7518991 Signed-off-by: attis <attis@google.com>	2024-08-21 17:08:49 +08:00
Wilson Sung	22ca32df91	Merge "Update SELinux error" into main	2024-08-19 06:14:28 +00:00
Xiaofan Jiang	390674b749	Merge "Revert^2 "zuma: update modem_svc sepolicy for UMI"" into main	2024-08-15 20:44:27 +00:00
Xiaofan Jiang	515a102ac8	Revert^2 "zuma: update modem_svc sepolicy for UMI" `c653101290` Change-Id: Ib1d18e33b87f03ee52bcbdff129c6d56b8a63a61	2024-08-15 19:25:35 +00:00
Priyanka Advani (xWF)	61ddb69d2c	Merge "Revert "zuma: update modem_svc sepolicy for UMI"" into main	2024-08-15 18:30:35 +00:00
Priyanka Advani (xWF)	c653101290	Revert "zuma: update modem_svc sepolicy for UMI" Revert submission 28762313 Reason for revert: Droidmonitor created revert due to b/360059249. Reverted changes: /q/submissionid:28762313 Change-Id: I88cd8603351f5c5e1a546872f4f3aa1cae75dcd5	2024-08-15 16:14:57 +00:00
Wilson Sung	e24c2a8265	Update SELinux error Test: SELinuxUncheckedDenialBootTest Bug: 360060606 Test: scanBugreport Bug: 360060992 Bug: 359428180 Test: scanAvcDeniedLogRightAfterReboot Bug: 360060606 Bug: 359428180 Flag: EXEMPT bugFix Change-Id: I3dfb16fdb309f01f543c826b155fc774b76faade	2024-08-15 09:25:35 +00:00
Xiaofan Jiang	dac2c5438b	Merge "zuma: update modem_svc sepolicy for UMI" into main	2024-08-15 04:01:13 +00:00
Xiaofan Jiang	08b3cf20a7	zuma: update modem_svc sepolicy for UMI Bug: 357139752 Flag: EXEMPT sepolicy [ 68.189198] type=1400 audit(1722986580.568:59): avc: denied { unlink } for comm="binder:892_2" name="modem_svc_socket" dev="dm-52" ino=20239 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=1 [ 68.189448] type=1400 audit(1722986580.568:60): avc: denied { create } for comm="binder:892_2" name="modem_svc_socket" scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=1 Change-Id: I7cccb22ef31e88eebae664dcd937553c7ed9428f	2024-08-15 03:53:07 +00:00
Gil Liu	cab53ff9d9	Merge "add hal_graphics_composer to access thermal temperature" into main	2024-07-29 06:10:29 +00:00
Treehugger Robot	6dd8b82b22	Merge "Correct the path of tcpm-source-psy device" into main	2024-07-26 02:04:31 +00:00
Mike Wang	a689f70d3c	Merge "Add the selinux policy to allow the gril get/set vendor log properties." into main	2024-07-26 01:15:34 +00:00
Manali Bhutiyani	faaaf11fd9	Merge "DisplayPort Stats: add sysfs access permission on Zuma devices" into main	2024-07-25 15:46:01 +00:00
Carlos Rodriguez	6e54536670	DisplayPort Stats: add sysfs access permission on Zuma devices 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:48): avc: denied { read } for name="fec_dsc_supported" dev="sysfs" ino=71618 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:49): avc: denied { read } for name="fec_dsc_not_supported" dev="sysfs" ino=71619 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:50): avc: denied { read } for name="max_res_other" dev="sysfs" ino=71617 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:51): avc: denied { read } for name="max_res_1366_768" dev="sysfs" ino=71607 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:52): avc: denied { read } for name="max_res_1440_900" dev="sysfs" ino=71608 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:53): avc: denied { read } for name="max_res_1600_900" dev="sysfs" ino=71609 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:54): avc: denied { read } for name="max_res_1920_1080" dev="sysfs" ino=71610 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:55): avc: denied { read } for name="max_res_2560_1080" dev="sysfs" ino=71611 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 07-24 18:17:43.428 W/pixelstats-vend( 7494): type=1400 audit(0.0:56): avc: denied { read } for name="max_res_2560_1440" dev="sysfs" ino=71612 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 ..... Bug: 343602691 Bug: 317486088 Flag: EXEMPT bugfix Test: Built and flashed, errors are gone. Change-Id: I49d177d2a997698b05f27bd4c448847ed3110e59	2024-07-24 23:49:52 +00:00
Daniel Chapin	cfbbd040df	Merge "Revert "trusty: storageproxy: add fs_ready_rw property context"" into main	2024-07-24 21:48:57 +00:00
Daniel Chapin	6d6f71b74a	Revert "trusty: storageproxy: add fs_ready_rw property context" Revert submission 28318041-rw_storage Reason for revert: Droidfood blocking bug b/355163562 Reverted changes: /q/submissionid:28318041-rw_storage Change-Id: I0fa3edda88677966d42576d76616b837a4bbe70b	2024-07-24 20:17:33 +00:00
Kyle Tso	4358dc4f7e	Correct the path of tcpm-source-psy device Bug: 353804370 Flag: EXEMPT bugfix Change-Id: I059a652d13ffdf186fb36edb11ef4c1dc6ac8648 Signed-off-by: Kyle Tso <kyletso@google.com>	2024-07-24 02:13:54 +00:00
Mike McTernan	b188015fba	Merge "trusty: storageproxy: add fs_ready_rw property context" into main	2024-07-23 10:02:28 +00:00
gilliu	1dde3ea2ff	add hal_graphics_composer to access thermal temperature type=1400 audit(0.0:77): avc: denied { search } for name="thermal" dev="tmpfs" ino=1618 scontext=u:r:hal_graphics_composer_default:s0 tcontext=u:object_r:thermal_link_device:s0 tclass=dir permissive=0 type=1400 audit(0.0:74): avc: denied { search } for name="thermal" dev="sysfs" ino=21594 scontext=u:r:hal_graphics_composer_default:s0 tcontext=u:object_r:sysfs_thermal:s0 tclass=dir permissive=0 type=1400 audit(0.0:74): avc: denied { read } for name="temp" dev="sysfs" ino=73536 scontext=u:r:hal_graphics_composer_default:s0 tcontext=u:object_r:sysfs_thermal:s0 tclass=file permissive=0 type=1400 audit(0.0:74): avc: denied { getattr } for path="/sys/devices/virtual/thermal/thermal_zone12/temp" dev="sysfs" ino=73537 scontext=u:r:hal_graphics_composer_default:s0 tcontext=u:object_r:sysfs_thermal:s0 tclass=file permissive=0 Bug: 343141590 Test: check no avc pattern on logcat from test image Flag: NONE add permission Change-Id: I87fce47644b07342d756e7594685eea0dded1926	2024-07-23 09:05:16 +00:00
Roy Luo	66ba3214b8	Revert "Add udc sysfs to udc_sysfs fs context" Revert submission 27445245-339241080 Reason for revert: break husky-next-user (linux) build 12111903 Reverted changes: /q/submissionid:27445245-339241080 Bug: 339241080 Change-Id: If558e5bef47a0e617e4b4997f0ad9c8154b43ee9	2024-07-19 01:16:47 +00:00
Roy Luo	eb5a3cd47a	Add udc sysfs to udc_sysfs fs context This is needed for system server to monitor usb gadget state. Grant hal_usb_impl read access as it's needed by UsbDataSessionMonitor. Bug: 339241080 Test: tested on Shiba Flag: android.hardware.usb.flags.enable_udc_sysfs_usb_state_update Change-Id: Iab3c20569cb22d7524ca303f6cb3eaf40aa2161d	2024-07-18 22:56:15 +00:00
Sergey Volk	7c7ec16cad	[automerger skipped] Add sepolicy for DisplayPort wakeup node am: `fb98394c54` -s ours am skip reason: Merged-In I9181b2344f2448b9debe1522528545ce90de8768 with SHA-1 `77518a2614` is already in history Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/28360816 Change-Id: I2bda43ad3b6983cae7aa2e7dd4dfb836ebee226c Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2024-07-18 13:08:49 +00:00
Mike Wang	ef8937f64c	Add the selinux policy to allow the gril get/set vendor log properties. avc logs: 2024-07-17 06:00:41.024 8674-8674 binder:8674_1 com.google.android.grilservice W type=1400 audit(0.0:96): avc: denied { read } for name="u:object_r:vendor_logger_prop:s0" dev="tmpfs" ino=416 scontext=u:r:grilservice_app:s0:c238,c256,c512,c768 tcontext=u:object_r:vendor_logger_prop:s0 tclass=file permissive=0 app=com.google.android.grilservice 2024-07-17 06:00:41.024 8674-8674 binder:8674_1 com.google.android.grilservice W type=1400 audit(0.0:97): avc: denied { read } for name="u:object_r:vendor_modem_prop:s0" dev="tmpfs" ino=418 scontext=u:r:grilservice_app:s0:c238,c256,c512,c768 tcontext=u:object_r:vendor_modem_prop:s0 tclass=file permissive=0 app=com.google.android.grilservice 2024-07-17 06:00:49.592 8674-8674 binder:8674_1 com.google.android.grilservice W type=1400 audit(0.0:99): avc: denied { write } for name="property_service" dev="tmpfs" ino=861 scontext=u:r:grilservice_app:s0:c238,c256,c512,c768 tcontext=u:object_r:property_socket:s0 tclass=sock_file permissive=0 app=com.google.android.grilservice 2024-07-17 16:46:54.748 1-1 /system/bin/init init I type=1107 audit(0.0:103): uid=0 auid=4294967295 ses=4294967295 subj=u:r:init:s0 msg='avc: denied { set } for property=persist.vendor.verbose_logging_enabled pid=2152 uid=10238 gid=10238 scontext=u:r:grilservice_app:s0:c238,c256,c512,c768 tcontext=u:object_r:vendor_logger_prop:s0 tclass=property_service permissive=1' 2024-07-17 16:49:33.256 1-1 /system/bin/init init I type=1107 audit(0.0:116): uid=0 auid=4294967295 ses=4294967295 subj=u:r:init:s0 msg='avc: denied { set } for property=persist.vendor.modem.extensive_logging_enabled pid=2152 uid=10238 gid=10238 scontext=u:r:grilservice_app:s0:c238,c256,c512,c768 tcontext=u:object_r:vendor_modem_prop:s0 tclass=property_service permissive=1' Bug: 293947661 Change-Id: Iec1cc221a543543da28416a5bc7d7ddacde959c5	2024-07-17 20:23:43 +00:00
Sergey Volk	fb98394c54	Add sepolicy for DisplayPort wakeup node Bug: 348125717 Test: ls -Z /sys/devices/platform/110f0000.drmdp/wakeup Flag: NONE (follow up fix for merged non-flagged CL pa/2839256) (cherry picked from https://googleplex-android-review.googlesource.com/q/commit:77518a261471f7884e5b7c8ca73442df5c11e48e) Merged-In: I9181b2344f2448b9debe1522528545ce90de8768 Change-Id: I9181b2344f2448b9debe1522528545ce90de8768	2024-07-17 14:37:46 +00:00
Mike McTernan	49c9c8c3d7	trusty: storageproxy: add fs_ready_rw property context Flag: EXEMPT bug fix Bug: 350362101 Test: ABTD Change-Id: I397a89ceb5a6a832043abb3792b0101ad89c97a7	2024-07-15 10:13:47 +01:00

1 2 3 4 5 ...

2274 commits