Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2293 commits 1 branch 0 tags 18 MiB
Commit graph

2293 commits

This branch
This branch
All branches
Author SHA1 Message Date
Dinesh Yadav
6e4418cacd Merge "Allow tachyon service to make binder calls to GCA" into main 2024-12-06 16:20:42 +00:00
Dinesh Yadav
1b7a5a0078 Allow tachyon service to make binder calls to GCA 
This permission is needed for tachyon service to call callbacks.

AVC Error seen when tachyon tries accessing GCA:
12-02 11:40:03.212  6987  6987 W com.google.edge: type=1400 audit(0.0:17): avc:  denied  { call } for  scontext=u:r:edgetpu_tachyon_server:s0 tcontext=u:r:google_camera_app:s0:c145,c256,c512,c768 tclass=binder permissive=0
12-03 07:12:26.424  4166  4166 W com.google.edge: type=1400 audit(0.0:254): avc:  denied  { call } for  scontext=u:r:edgetpu_tachyon_server:s0 tcontext=u:r:debug_camera_app:s0:c67,c257,c512,c768 tclass=binder permissive=0

Bug: 381787911
Flag: EXEMPT updates device sepolicy only
Change-Id: I5544fbc11cea0d98dfdeffd9d2871fc037d87c61
 2024-12-06 04:13:42 +00:00
Nina Chen
9f0f02d33e Update SELinux error 
Remove b/376602341, b/314054292 and b/367943515 as they are closed

Flag: EXEMPT sepolicy
Test: SELinuxUncheckedDenialBootTest
Bug: 382362125
Change-Id: I7911102a96cdb602fecf8dae5f87c41448b7e6ba
 2024-12-05 12:53:03 +08:00
Roy Luo
18df6c5e6f Merge "Add udc sysfs to udc_sysfs fs context" into main 2024-12-04 03:31:01 +00:00
Nina Chen
9f5ced1134 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 381326735
Flag: EXEMPT sepolicy
Change-Id: I8381703d4a44d7bce9ead55437e269684f0d5530
 2024-11-28 02:59:26 +00:00
Nina Chen
b7ab33d829 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 380756119
Flag: EXEMPT NDK
Change-Id: I252d772efcdc0b27467c6de41c685fb903e5a62d
 2024-11-25 02:49:21 +00:00
Roy Luo
3c17e28269 Add udc sysfs to udc_sysfs fs context 
Meeded for system server to monitor usb gadget state.
Grant hal_usb_impl read access as it's needed by UsbDataSessionMonitor.
Starting at board level api 202504 due to its dependency on aosp/3337514

10956 10956 W android.hardwar: type=1400 audit(0.0:327): avc:  denied  { read } for  name="state" dev="sysfs" ino=84394 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_udc:s0 tclass=file permissive=0

Bug: 339241080
Test: tested on Shiba
Flag: android.hardware.usb.flags.enable_udc_sysfs_usb_state_update
Change-Id: Ied2d669df74a2f71771e672e27327b60e7687168
 2024-11-22 02:07:21 +00:00
Liana Kazanova (xWF)
fcfaec8bea Merge "Revert "modem_svc: move shared_modem_platform related sepolicy t..."" into main 2024-11-21 20:16:06 +00:00
Liana Kazanova (xWF)
9880272db8 Revert "modem_svc: move shared_modem_platform related sepolicy t..." 
Revert submission 30519089-move_modem_sepolicy

Reason for revert: DroidMonitor: Potential culprit for http://b/380274930 - verifying through ABTD before revert submission. This is part of the standard investigation process, and does not mean your CL will be reverted.

Reverted changes: /q/submissionid:30519089-move_modem_sepolicy

Change-Id: I7fc88068835f662d1f1827488089f5898e88ff9d
 2024-11-21 17:54:05 +00:00
Eileen Lai
e1b7b090e5 Merge "modem_svc: move shared_modem_platform related sepolicy to gs-common" into main 2024-11-21 17:03:11 +00:00
Eileen Lai
41e0d7662d modem_svc: move shared_modem_platform related sepolicy to gs-common 
Bug: 372400955


Flag: NONE local testing only
Change-Id: I5502d8aeae7ca11b301bb8183201cf8294c811f9
 2024-11-21 08:25:08 +00:00
Nina Chen
80c32be9f1 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 379245855
Bug: 379246064
Bug: 379245771
Bug: 379245754
Change-Id: I2b8b5c74f406d59e5ac17280e365dd6733100719
 2024-11-15 18:29:14 +08:00
Nina Chen
5515229d16 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 379207041
Bug: 379207101
Flag: EXEMPT NDK
Change-Id: Icf0da01e2bcf1f57d9048ac601a94d04db00e754
 2024-11-15 06:54:19 +00:00
Xin Li
e547b08ebd [automerger skipped] Merge 24Q4 (ab/12406339) into aosp-main-future am: cf6b23c473 -s ours 
am skip reason: Merged-In I1c2fb12e09ffe8083d6b14b0ee5aa957e031ddf3 with SHA-1 f03cc7ce1c is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/30283793

Change-Id: I064b667d35ba392523f55d4a00ef31ffa462cad9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-11-14 00:31:46 +00:00
Xin Li
cf6b23c473 Merge 24Q4 (ab/12406339) into aosp-main-future 
Bug: 370570306
Merged-In: I1c2fb12e09ffe8083d6b14b0ee5aa957e031ddf3
Change-Id: Ic9f5cbcae1fdd40d57ca6d958adeb4b355339f68
 2024-11-06 11:19:03 -08:00
Nina Chen
6f1672a387 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 376602341
Flag: EXEMPT NDK
Change-Id: I6b3a9d802022ace579de13dc03e1738ee31f7b6f
 2024-11-01 08:13:03 +00:00
Roy Luo
841ad6da33 Merge "Revert^3 "Add udc sysfs to udc_sysfs fs context"" into main 2024-10-30 18:51:30 +00:00
Roy Luo
139f5304a3 Revert^3 "Add udc sysfs to udc_sysfs fs context" 
371f678632

Bug: 339241080
Change-Id: Ia1355fca00339bce7ba5554680b62509558c2b4f
 2024-10-29 21:36:05 +00:00
Thiébaud Weksteen
d46376319b Merge "Remove duplicate service entries" into main 2024-10-17 02:59:51 +00:00
Treehugger Robot
d3a5c9f8d8 Merge "Revert "Update SELinux error"" into main 2024-10-16 11:04:36 +00:00
Krzysztof Kosiński
bf1d975910 Revert "Update SELinux error" 
This reverts commit a6eb3139fe.

Reason for revert: Caused by b/372273614, relevant CL was reverted

Fix: 372348756
Change-Id: I1ca54668c33b80d5139526f6ecf8dd65864787e4
 2024-10-15 06:31:33 +00:00
Eileen Lai
bc3e73c6b5 Merge "modem_svc: use shared_modem_platform to replace all modem_svc_sit" into main 2024-10-14 07:27:51 +00:00
Eileen Lai
c2660d9ba4 modem_svc: use shared_modem_platform to replace all modem_svc_sit 
Bug: 368257019

Flag: NONE local testing only
Change-Id: I9a9ff83d2bf3cf55b4c8806d808efde03ca2de70
 2024-10-09 08:34:45 +00:00
Nina Chen
a6eb3139fe Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 372348756
Bug: 372348383
Bug: 372348502
Flag: EXEMPT NDK
Change-Id: I126496a25529a73293430c9a1e7009e82b161331
 2024-10-09 03:24:11 +00:00
Nina Chen
d898a7a787 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 372121912
Test: scanBugreport
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I88cf70ace59b6ca4cf66a4b0ffaf3bc8220f932b
 2024-10-08 03:31:04 +00:00
Ben Murdoch
ce7cdaa39f Allow systemui_app to set 'debug.tracing.desktop_mode_visible_tasks' system property 
See also: Iad8dc7a66765856ee7affb707f2dba6c1bbfbf49

Bug: 363893429
Flag: EXEMPT, SEPolicy
Test: Verified on device.
Change-Id: I4916370be55d4d5fd5c53ac5418b8a2bd99e9b37
 2024-10-03 15:01:54 +00:00
Thiébaud Weksteen
f688a56d8e Remove duplicate service entries 
These entries are defined in the platform policy.

Flag: EXEMPT bugfix
Bug: 367832910
Test: TH
Change-Id: I34e04111d74d0b7b4d9e3e4e359feb1b92b40593
 2024-10-01 14:48:00 +10:00
Treehugger Robot
bab0ee8b25 Merge "Fix error in systemui when toggling airplane mode" into main 2024-09-26 16:11:38 +00:00
Wilson Sung
c6822be533 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 369540836
Test: scanBugreport
Bug: 369540673
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I096e8d513a393d70fc70edf658dcdf7650072c9a
 2024-09-25 12:46:23 +00:00
Wilson Sung
e40a281856 Fix error in systemui when toggling airplane mode 
avc:  denied  { read } for  name="u:object_r:radio_cdma_ecm_prop:s0" dev="tmpfs" ino=321 scontext=u:r:systemui_app:s0:c3,c257,c512,c768 tcontext=u:object_r:radio_cdma_ecm_prop:s0 tclass=file

Bug: 197722115
Bug: 359381748
Test: make selinux_policy
Flag: EXEMPT bugfix
Change-Id: I96d17e562ac1cc0e0e0597ce332e94be95652026
 2024-09-25 08:40:47 +00:00
Nina Chen
e6639e9e9f Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 369475700
Test: scanBugreport
Bug: 369475363
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 369475225
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I154c0c347aa62a5eb262c2a8174ad3b3f2ba03aa
 2024-09-25 06:30:51 +00:00
Treehugger Robot
cd06811f33 Merge "Update sepolicy for nfc antenna selftest values" into main 2024-09-24 07:34:38 +00:00
Tej Singh
f03cc7ce1c Make android.framework.stats-v2-ndk app reachable 
For libedgetpu

Test: TH
Bug: 354763040
Flag: EXEMPT bugfix
Change-Id: I1c2fb12e09ffe8083d6b14b0ee5aa957e031ddf3
 2024-09-20 21:39:59 -07:00
Nina Chen
438d6d7c70 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 367943515
Test: scanBugreport
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I06481594dae66cb89f8b3ac8be6d254760771f61
 2024-09-18 11:56:11 +00:00
Prochin Wang
9ba73f1d79 Change vendor_fingerprint_prop to vendor_restricted_prop 
This is to allow the fingerprint HAL to access the property.

Bug: 366105474
Flag: build.RELEASE_PIXEL_BOOST_DATALAYER_PSA_ENABLED
Test: mm
Change-Id: I021c004ca0153d2995fae6b3d6208d6cd6c799ef
 2024-09-16 01:45:31 +00:00
Nina Chen
4bb5ee3796 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 366116488
Test: scanBugreport
Bug: 359428180
Bug: 364446415
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT NDK
Change-Id: I0c808f3c6aa441c0bfad23e0d8d2f0b987d09ed7
 2024-09-13 06:45:09 +00:00
Nattharat Jariyanuntanaet
1492b4913a Update sepolicy for nfc antenna selftest values 
Allow persist.vendor.nfc.antenna. to be vendor public values for NFC
companion app to access from userdebug or eng builds

avc:  denied  { read } for  name="u:object_r:vendor_nfc_antenna_prop:s0" dev="tmpfs" ino=414 scontext=u:r:untrusted_app:s0:c79,c257,c512,c768 tcontext=u:object_r:vendor_nfc_antenna_prop:s0 tclass=file permissive=0 app=com.google.android.apps.internal.nfcassistancetool

Bug: 361050657
Test: m selinux_policy
Flag: NONE add permission
Change-Id: I47c54642dbc801dfcaee8330e75a29d11030337c
 2024-09-12 20:17:39 +00:00
Xin Li
5b80168d54 [automerger skipped] Merge 24Q3 to AOSP main am: 39d96988e3 -s ours am: d1f03df8fc -s ours 
am skip reason: Merged-In I9181b2344f2448b9debe1522528545ce90de8768 with SHA-1 fb98394c54 is already in history

Original change: https://android-review.googlesource.com/c/device/google/zuma-sepolicy/+/3258561

Change-Id: I411d96644364dcb9efdea5c1fe708b9651f8c12d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-09-07 03:29:31 +00:00
Xin Li
d1f03df8fc [automerger skipped] Merge 24Q3 to AOSP main am: 39d96988e3 -s ours 
am skip reason: Merged-In I9181b2344f2448b9debe1522528545ce90de8768 with SHA-1 fb98394c54 is already in history

Original change: https://android-review.googlesource.com/c/device/google/zuma-sepolicy/+/3258561

Change-Id: Iedc2cb039f534e4d1e7b873bec0f4f4d41fb4ab6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-09-07 02:51:35 +00:00
Xin Li
39d96988e3 Merge 24Q3 to AOSP main 
Bug: 357762254
Merged-In: I9181b2344f2448b9debe1522528545ce90de8768
Change-Id: Ic5351ce6b46a46820c6d73d4f924c6b92d30b06d
 2024-09-05 17:02:39 -07:00
Randall Huang
a73414799e storage: move storage related device type to common folder 
Bug: 364225000
Test: forrest build
Change-Id: I60597a3ad6f674b93267f41b3a27fdee6e923e59
Signed-off-by: Randall Huang <huangrandall@google.com>
 2024-09-04 10:44:21 +08:00
Attis Chen
8297fee02b Merge "Label sysfs node power_mode as sysfs_display." into main 2024-09-02 04:54:18 +00:00
Wilson Sung
432980a323 Update SELinux error 
Test: scanBugreport
Bug: 361725982
Bug: 359428180
Test: scanAvcDeniedLogRightAfterReboot
Bug: 359428180
Flag: EXEMPT bugFix
Change-Id: I7e3ce34fdc02932250bcbd71e0a8864cfffaadff
 2024-08-23 09:46:52 +00:00
Roy Luo
371f678632 Revert^2 "Add udc sysfs to udc_sysfs fs context" 
This reverts commit 66ba3214b8.

Reason for revert: fix breakage in next build with build-time flag in
selinux policy.

Fixed the following audit logs:
[  285.983545] type=1400 audit(1724270284.724:31): avc:  denied  { read } for  comm="android.hardwar" name="state" dev="sysfs" ino=85740 scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:sysfs_udc:s0 tclass=file permissive=0

Bug: 339241080
Test: tested on Shiba trunk_staging and next builds
Flag: build.RELEASE_USB_UDC_SYSFS_SELINUX_POLICY_ENABLED
Change-Id: Ie4979f408a5bca0bb9b9762048ab716ddeeb4d2f
 2024-08-21 22:15:22 +00:00
attis
5bf0b2bd07 Label sysfs node power_mode as sysfs_display. 
Label power_mode to sysfs_panel to let it be allowed in dumpstate.

avc log:
08-20 20:24:11.292  9339  9339 W dump_display: type=1400 audit(0.0:2372): avc:  denied  { read } for  name="power_mode" dev="sysfs" ino=85501 scontext=u:r:dump_display:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Test: ls -Z, adb bugreport.
Flag: EXEMPT bugfix
Bug: 358505990
Change-Id: I7b6051de3e8f1b2813c681a176266fe3c7518991
Signed-off-by: attis <attis@google.com>
 2024-08-21 17:08:49 +08:00
Wilson Sung
22ca32df91 Merge "Update SELinux error" into main 2024-08-19 06:14:28 +00:00
Xiaofan Jiang
390674b749 Merge "Revert^2 "zuma: update modem_svc sepolicy for UMI"" into main 2024-08-15 20:44:27 +00:00
Xiaofan Jiang
515a102ac8 Revert^2 "zuma: update modem_svc sepolicy for UMI" 
c653101290

Change-Id: Ib1d18e33b87f03ee52bcbdff129c6d56b8a63a61
 2024-08-15 19:25:35 +00:00
Priyanka Advani (xWF)
61ddb69d2c Merge "Revert "zuma: update modem_svc sepolicy for UMI"" into main 2024-08-15 18:30:35 +00:00
Priyanka Advani (xWF)
c653101290 Revert "zuma: update modem_svc sepolicy for UMI" 
Revert submission 28762313

Reason for revert: Droidmonitor created revert due to b/360059249.

Reverted changes: /q/submissionid:28762313

Change-Id: I88cd8603351f5c5e1a546872f4f3aa1cae75dcd5
 2024-08-15 16:14:57 +00:00