Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1146 commits 1 branch 0 tags 18 MiB
Commit graph

408 commits

Author SHA1 Message Date
Chungkai Mei
8051a8759a Remove hal_power_default bug from bug_map 
SELinux errors are fixed and hence removing from bug map

Bug: 273638876
Test: Build and boot on device
Change-Id: I4ca6180ad286970d36ce204cd4c44e75962b26e0
Signed-off-by: Chungkai Mei <chungkai@google.com>
 2023-04-20 07:47:15 +00:00
Wilson Sung
0d1a725348 Merge changes from topic "260522282" into udc-d1-dev am: f4a5867e2a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22746525

Change-Id: I8e0630c0d343ad857d7f67d7a743ef41708ecbcf
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-20 03:26:37 +00:00
Wilson Sung
dc75da30a1 Revert^2 "Enforce priv_app" 
This reverts commit 61a95fc71a.

Fix: 260522282
Change-Id: I0d5dd994d3acacfee854ae27669358cfc2c249fc
 2023-04-20 00:14:18 +08:00
Alan Chen
37bbafbe50 Merge "Remove dontaudit for hal_radioext_default to service_manager." into udc-d1-dev am: c1f8b7a872 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22694673

Change-Id: I884961bf28e23827172fc99f0a7801069339041d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-19 03:38:33 +00:00
Alan Chen
c1f8b7a872 Merge "Remove dontaudit for hal_radioext_default to service_manager." into udc-d1-dev 2023-04-19 03:04:57 +00:00
Treehugger Robot
800ccb62a9 Merge "Enforce sepolicy for camera HAL." into udc-d1-dev am: 16f461a2cf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22702266

Change-Id: Ie10e87182ba8bcce515b639c82addc5c8a5fada4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-18 23:43:23 +00:00
Treehugger Robot
16f461a2cf Merge "Enforce sepolicy for camera HAL." into udc-d1-dev 2023-04-18 23:18:00 +00:00
Dave Mankoff
73cb48bef6 Merge "Give SystemUI access to necessary selinux properties." into udc-d1-dev am: 633f19376e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22603639

Change-Id: I39974b746d4bddff960fcad6ff2ecb7047615360
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-18 18:30:03 +00:00
Jonglin Lee
2fb28513a0 Merge "Revert "Enforce priv_app"" into udc-d1-dev am: 8da235e022 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22714010

Change-Id: I4712310d5e88de3b4ebeef37c754f1995334c8e7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-18 18:25:09 +00:00
Dave Mankoff
633f19376e Merge "Give SystemUI access to necessary selinux properties." into udc-d1-dev 2023-04-18 17:50:42 +00:00
Jonglin Lee
8da235e022 Merge "Revert "Enforce priv_app"" into udc-d1-dev 2023-04-18 17:50:13 +00:00
Jonglin Lee
61a95fc71a Revert "Enforce priv_app" 
This reverts commit af0ad04c3c.

Reason for revert: RescueParty crash due to com.shannon.rcsservice crash

Bug: 278735899
Change-Id: I5bf91b077c23c63de728657bd9adb5623b708d95
 2023-04-18 17:41:27 +00:00
Alan Chen
63f54f0a3a Remove dontaudit for hal_radioext_default to service_manager. 
The fix has been merged in the topic of ag/21956466 so this dontaudit line can be removed.

Test: manual
Bug: b/275646098

Change-Id: I95c25ffc926e48e589b7636beca1bef9583861d0
 2023-04-18 17:47:09 +08:00
Krzysztof Kosiński
3f0d2fc09d Enforce sepolicy for camera HAL. 
Bug: 264489778
Test: GCA smoke test on Zuma device
Change-Id: Icaa7c94ab264d496840d33d970e5a87123b31c36
 2023-04-18 09:02:32 +00:00
Treehugger Robot
8f087633f6 Merge "Enforce priv_app" into udc-d1-dev am: 4d7b687f9d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22639490

Change-Id: I16e602f40c31fb56b2eb536f024844af955a1a4e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-17 17:29:48 +00:00
Treehugger Robot
4d7b687f9d Merge "Enforce priv_app" into udc-d1-dev 2023-04-17 16:56:56 +00:00
Dave Mankoff
78b9dcdb69 Give SystemUI access to necessary selinux properties. 
Other errors mentioned in the bugs are already absent.

Fixes: 269964574
Fixes: 272628396
Fixes: 272628174
Test: built and flash device. No selinux errors printed.
Change-Id: Ic285b1f5a2ce6973899011a7c6a596e807c3e933
 2023-04-17 14:28:59 +00:00
Treehugger Robot
224c260019 Merge "Enforce servicemanager" into udc-d1-dev am: 9ea22dde19 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22574729

Change-Id: If04b8697019e9388da37addb6f65f7d025a5becf
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-14 04:35:17 +00:00
Treehugger Robot
9ea22dde19 Merge "Enforce servicemanager" into udc-d1-dev 2023-04-14 03:53:11 +00:00
TreeHugger Robot
065f1c5a75 Merge "Suppress bootanim behavior meant for Android Wear devices" into udc-d1-dev am: 89d4a4df13 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22098965

Change-Id: I041686fffcd34b58026080c4e6538adfaf8a3407
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-14 03:46:21 +00:00
Treehugger Robot
bb79528e37 Merge changes Ie20be0af,Id9a80c47 into udc-d1-dev am: 2ac0374b22 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22573649

Change-Id: Id5edbe1f2e6ef273387af77a257063a149150764
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-14 03:45:38 +00:00
Wilson Sung
af0ad04c3c Enforce priv_app 
Fix: 260366281
Fix: 260522282
Fix: 260768358
Fix: 260922442
Fix: 263185432
Fix: 264490074
Fix: 268572216
Change-Id: I2efbb1971c09506a7b1e0e5e0e3d22eda91018c1
 2023-04-14 03:34:46 +00:00
TreeHugger Robot
89d4a4df13 Merge "Suppress bootanim behavior meant for Android Wear devices" into udc-d1-dev 2023-04-14 03:19:53 +00:00
Treehugger Robot
2ac0374b22 Merge changes Ie20be0af,Id9a80c47 into udc-d1-dev 
* changes:
  Enforce rebalance_interrupts_vendor
  Enforce hwservicemanager
 2023-04-14 03:18:10 +00:00
Yixuan Wang
98bffc0a44 Merge "Add hal_contexthub_default to zuma sepolicy; Remove dontaudit rules for chre" into udc-d1-dev am: 2c0e44805a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22613725

Change-Id: Ia79eb1e60a6fe53a2155874be0f83be644c1d9f6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-13 20:18:36 +00:00
Yixuan Wang
1095231e38 Add hal_contexthub_default to zuma sepolicy; Remove dontaudit rules for 
chre

[ 7.760870] type=1400 audit(1669944054.440:61): avc: denied { write } for comm="android.hardwar" name="chre" dev="tmpfs" ino=1099 scontext=u:r:hal_contexthub_default:s0 tcontext=u:object_r:chre_socket:s0 tclass=sock_file permissive=1
[ 12.519414] type=1400 audit(1669944059.196:138): avc: denied {connectto } for comm="android.hardwar" path="/dev/socket/chre"scontext=u:r:hal_contexthub_default:s0 tcontext=u:r:chre:s0 tclass=unix_stream_socket permissive=1

Bug: 264489794
Bug: 261105224
Test: atest scanAvcDeniedLogRightAfterReboot
Change-Id: I7bf13913188deedc987f82e54626a18357ab84c5
 2023-04-13 06:43:41 +00:00
Wilson Sung
3df3008917 Suppress bootanim behavior meant for Android Wear devices 
Fix: 260522279
Test: boot-to-home and no bootanim avc error
Change-Id: I29d4168720887bc2f90d5f7ad20367887f9cae51
 2023-04-13 00:00:38 +00:00
Wilson Sung
5468e420e3 Enforce rebalance_interrupts_vendor 
Fix: 264489565
Test: boot-to-home
Change-Id: Ie20be0afe1a95b8cb512b57019539eb52948a155
 2023-04-12 22:58:13 +08:00
Wilson Sung
90f838f16f Enforce hwservicemanager 
Test: boot-to-home and no avc error
Fix: 264489781
Change-Id: Id9a80c478a2eae8472023f3bbcc514f30f5bfbab
 2023-04-12 22:32:46 +08:00
Wilson Sung
527f215d20 Enforce servicemanager 
Fix: 263429985
Fix: 264489962
Test: boot-to-home, no avc error
Change-Id: Ib3b0916bdbd09638f5b7b34f2d214690eed314ab
 2023-04-12 22:14:16 +08:00
Wilson Sung
bf1baa3448 Merge "Add recovery related policy" into udc-d1-dev am: 5bee37db26 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22574699

Change-Id: Iafa23558e51dbc2608ff3158cd7b1259253f25cf
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-12 01:55:36 +00:00
Wilson Sung
c2eedff70c Add recovery related policy 
Fix: 275143841
Fix: 264490092
Test: adb sideload and no avc error
Change-Id: I52003c9417560a6c5dab815a6929681710f0b0a4
 2023-04-12 03:46:54 +08:00
Treehugger Robot
fb28384538 Merge "remove obsolete entries" into udc-d1-dev am: 32ec77111d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22563759

Change-Id: I2754b08406869ae6843b5bec4bf2cbe256de9657
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-11 04:36:46 +00:00
Adam Shih
e188582ba8 remove obsolete entries 
Bug: 264483390
Bug: 272166771
Bug: 264482983
Bug: 264600086
Bug: 264482983
Bug: 273638940
Test: adb bugreport
Change-Id: Ia89c409a20e6a4514c57389f82c57d8c265f1e81
 2023-04-11 11:23:17 +08:00
Adam Shih
cfa00dfc88 enforce gmscore_app am: e5e6273048 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22548983

Change-Id: Ia16a967d75b19bbceaf83f7e7374fbabfab5ea12
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-10 04:55:17 +00:00
Adam Shih
e5e6273048 enforce gmscore_app 
Bug: 259302023
Test: boot with no relevant errors
Change-Id: I61cb95224096dbc999bc3c8051a4e4c6ad700522
 2023-04-10 11:13:21 +08:00
Treehugger Robot
59030392be Merge "Revert "Revert "Enforce system ui app""" into udc-d1-dev am: 8da223020e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22527495

Change-Id: I32179cccc22c4b6963c9f7df8b9645d42e44e624
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-07 10:27:07 +00:00
Treehugger Robot
8da223020e Merge "Revert "Revert "Enforce system ui app""" into udc-d1-dev 2023-04-07 10:04:20 +00:00
Gina Ko
bb27434f22 Revert "Revert "Enforce system ui app"" 
This reverts commit eeeae0265a.

Reason for revert: b/274366326 was fixed

Change-Id: I9d9c4f4dd831aa80109cc53790f6b6491133fb42
 2023-04-07 08:46:00 +00:00
Wilson Sung
c5d73c373f update error on ROM 9900526 am: f2d0dbb66a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22525843

Change-Id: Ib30856b7e71a03fa949c1fd81cc9c6a051ac9073
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-07 08:26:17 +00:00
Wilson Sung
f2d0dbb66a update error on ROM 9900526 
Bug: 277155496
Bug: 277300017
Bug: 277300125
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I2a2f230589695b0240abb26909c94fd4cf2420bf
 2023-04-07 14:43:36 +08:00
Dinesh Yadav
0829947959 Merge "Allow google_camera_app to access edgetpu" into udc-d1-dev am: d9a75c1639 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22286148

Change-Id: I46aa0db686e57dfcf9daaf7d302ec6754c86d630
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-06 03:06:08 +00:00
Dinesh Yadav
d9a75c1639 Merge "Allow google_camera_app to access edgetpu" into udc-d1-dev 2023-04-06 02:34:35 +00:00
Sayanna Chandula
bfef2f5cea Remove hal_thermal_default bug from bug_map am: 387145ed85 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22465501

Change-Id: Ie87df886d0451eb8aa9b3110b67fabaa11b28a76
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-06 00:22:02 +00:00
Sayanna Chandula
387145ed85 Remove hal_thermal_default bug from bug_map 
SELinux errors are fixed and hence removing from bug map

Bug: 272166987
Test: Build and boot on device

Change-Id: Ic0d314486a2ed6fbc1c4497b122827b17f5b9022
Signed-off-by: Sayanna Chandula <sayanna@google.com>
 2023-04-05 22:26:40 +00:00
Dinesh Yadav
478b11708f Allow google_camera_app to access edgetpu 
These permissions are needed by GCA-release & GCA-dogfood to access
edgetpu.

Bug: 264490031
Change-Id: Idd9dff906c86f9e83f1dc67698c23387e174d99c
Signed-off-by: Dinesh Yadav <dkyadav@google.com>
 2023-04-04 06:11:47 +00:00
TreeHugger Robot
b99f943900 Merge "Add logd selinux allow permissions" into udc-d1-dev am: 4bb2e02b1c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22307864

Change-Id: I7f9a2c6d4af714625fb4d347c0988052d8f77852
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-30 17:17:02 +00:00
Donnie Pollitz
885a790f2d Add logd selinux allow permissions 
Bug: 261105354
Bug: 264489639
Test: Ran atest SELinuxTest#scanAvcDeniedLogRightAfterReboot
Change-Id: I377dbb3bbdecd6780c1bdfb3aab53ee3c754c163
Signed-off-by: Donnie Pollitz <donpollitz@google.com>
 2023-03-29 09:24:47 +02:00
TreeHugger Robot
de4eba7c13 Merge "Update SELinux error" into udc-d1-dev am: 866b23080c 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22328782

Change-Id: I03be4caa61b5a6f1d075cc3373df73ac1b58277b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-29 06:04:15 +00:00
Wilson Sung
5227dfe6ab Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 275646098
Test: scanBugreport
Bug: 275646003
Test: scanAvcDeniedLogRightAfterReboot
Bug: 275645636
Change-Id: Iedd660e3937792d5ac58f384605300b39f6dfcb0
 2023-03-29 12:17:48 +08:00