Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1146 commits 1 branch 0 tags 18 MiB
Commit graph

1146 commits

This branch
This branch
All branches
Author SHA1 Message Date
Welly Hsu
a133586e4e Remove euiccpixel_app dontaudit from gmscore_app 
bug: 265383359
Change-Id: I6ee7d37187725408e0f443a40affe4c4e50dac91
 2023-03-22 13:27:32 +08:00
Adam Shih
ee45cfea78 Move pixel dumpstate to gs-common 
Bug: 240530709
Test: adb bugreport
Change-Id: I4c46a2495ea07b9e44f56c4c6be726621e0ebf65
Merged-In: I4c46a2495ea07b9e44f56c4c6be726621e0ebf65
 2023-03-22 05:06:27 +00:00
Adam Shih
9844033c0a Move pixel dumpstate to gs-common 
Bug: 240530709
Test: adb bugreport
Change-Id: I4c46a2495ea07b9e44f56c4c6be726621e0ebf65
 2023-03-22 13:05:44 +08:00
TreeHugger Robot
7cd8b7fd2f Merge "change device type for /dev/stmvl53l1_ranging" into udc-d1-dev am: 03d439f0e1 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22167058

Change-Id: I40aab624c447d94be30d25ea2b256f289c576f7e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 03:09:42 +00:00
Rex Lin
e95656d6fc [SELinux] remove uwb remaining tracking denials 
- hal_uwb_vendor_default
- uwb_vendor_app

Bug: 264489190
Bug: 264489787
Test: remove denials and no avc lob observed and ranging works
Change-Id: I5fd7f5b6bed8f819b2d5812c882ac596f1f1871b
Signed-off-by: Rex Lin <rexcylin@google.com>
 2023-03-22 11:07:51 +08:00
TreeHugger Robot
03d439f0e1 Merge "change device type for /dev/stmvl53l1_ranging" into udc-d1-dev 2023-03-22 02:36:37 +00:00
Nicole Lee
fd92d51b74 Move logger_app dontaudit items out of tracking_denials am: aa4b374120 am: 0a273483f4 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22173747

Change-Id: I9cf9c181a2365565495ffffe6271ab2f327de600
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:56:45 +00:00
Nicole Lee
838c8d7fca Move logger_app dontaudit items out of tracking_denials am: aa4b374120 am: f23893994b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22173747

Change-Id: I1ae9674d9d1b566cb8b2711f766aa3536bb5974f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:17:36 +00:00
Nicole Lee
f23893994b Move logger_app dontaudit items out of tracking_denials am: aa4b374120 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22173747

Change-Id: If3e54f3595eac5942175b29250ca6888471876ae
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:17:23 +00:00
Wilson Sung
0a18e71a97 Enforce untrusted_app am: e85dc12d69 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22184422

Change-Id: I7504170b28c2869fb8ce72ec544584ae7f9eb918
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:16:49 +00:00
Nicole Lee
0a273483f4 Move logger_app dontaudit items out of tracking_denials am: aa4b374120 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22173747

Change-Id: I768ae20c3bd1048692bf926b9ce65cb7f27ca4e0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-22 00:15:57 +00:00
Wilson Sung
e85dc12d69 Enforce untrusted_app 
Fix: 264489681
Test: boot-to-home and no untrusted_app avc error
Change-Id: Ic7a0fac4893265b4abde55d0a65372419fc09392
 2023-03-22 01:38:31 +08:00
Joerg Wagner
fcfd90a13e [automerger skipped] Merge "Update Mali DDK to r40 : Additional SELinux settings" into udc-d1-dev am: 6351914802 -s ours 
am skip reason: Merged-In I785106b6d2d05e21bf60fcd6da3d716b32e1bc1d with SHA-1 6834d6f59f is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/21750299

Change-Id: I3beea5355b52767877126c8804b93fe52a34a502
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 15:09:40 +00:00
Jörg Wagner
7dab59708f [automerger skipped] Update Mali DDK to r40 : Additional SELinux settings am: d8c6712f5b -s ours 
am skip reason: Merged-In I785106b6d2d05e21bf60fcd6da3d716b32e1bc1d with SHA-1 6834d6f59f is already in history

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/21750299

Change-Id: Ied37dcf7f91f68826bfa28807ef1886a03bc5086
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 15:09:39 +00:00
Joerg Wagner
6351914802 Merge "Update Mali DDK to r40 : Additional SELinux settings" into udc-d1-dev 2023-03-21 14:36:16 +00:00
Kris Chen
0ea531896c Allow fingerprint hal to read sysfs_leds 
Fix the following avc denials:
avc: denied { search } for name="backlight" dev="sysfs" ino=79316
scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_leds:s0
tclass=dir permissive=1

avc: denied { read } for name="state" dev="sysfs" ino=79365
scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_leds:s0
tclass=file permissive=1

Bug: 271072126
Test: Authenticate fingerprint.
Change-Id: Ibefbcefc005ab2cec7c417f197fd134b154ed9a1
 2023-03-21 12:18:59 +00:00
JimiChen
ee1df407be change device type for /dev/stmvl53l1_ranging 
It was a rls_device. Move to lwis_device now.

Bug: 274552433
Test: launch GCA
Change-Id: Id920583cc06b09063de85b160c12a5c3a5468c11
 2023-03-21 20:00:00 +08:00
Nicole Lee
aa4b374120 Move logger_app dontaudit items out of tracking_denials 
Bug: 269383459
Test: Open Pixel Logger and check logs
Change-Id: Id5b89a7eeaa5b06539113d4c86c64d6022080949
 2023-03-21 10:11:58 +00:00
TreeHugger Robot
d5ac6d9962 Merge "Allow regmap debugfs permission" into udc-d1-dev am: 504b4cc2eb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133445

Change-Id: I483874eb28c4db9377ce3d7b616262d81d4e70ab
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 08:27:11 +00:00
Donnie Pollitz
b21ac1be87 Merge "Removing audit for system_suspend tee" into udc-d1-dev am: 4ce51ebfba 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22160088

Change-Id: Icf7daf3980b75f38676632d2dad62b7c4390c27c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 08:26:45 +00:00
TreeHugger Robot
504b4cc2eb Merge "Allow regmap debugfs permission" into udc-d1-dev 2023-03-21 08:00:49 +00:00
Donnie Pollitz
4ce51ebfba Merge "Removing audit for system_suspend tee" into udc-d1-dev 2023-03-21 07:55:13 +00:00
Robert Lee
78603ddb7e Allow regmap debugfs permission 
auditd  : type=1400 audit(0.0:7): avc: denied { search } for comm="kworker/u18:1" name="regmap" dev="debugfs" ino=1049 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_regmap_debugfs:s0 tclass=dir permissive=0

Bug: 273891639
Test: builds
Change-Id: I9700d34e4d8a9d96d904fe5119a8bf4601bf8ea6
Signed-off-by: Robert Lee <lerobert@google.com>
 2023-03-21 14:17:00 +08:00
TreeHugger Robot
2ecbb84226 Merge "Allow systemui find radio_service" into udc-d1-dev am: 7ca4d7ceb7 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22161791

Change-Id: I281b02bfe57536093f3fd1821ad6b2d31e2a7ba0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 03:35:10 +00:00
TreeHugger Robot
7ca4d7ceb7 Merge "Allow systemui find radio_service" into udc-d1-dev 2023-03-21 03:19:59 +00:00
Chung-Kai (Michael) Mei
d39247b7cc [automerger skipped] Merge "genfs_contexts: fix path for i2c peripheral device [DO NOT MERGE]" into udc-d1-dev am: 4766cf456b -s ours 
am skip reason: subject contains skip directive

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133469

Change-Id: Iccf548638503bd9883d5bfe3c83587b77caf2792
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 03:18:41 +00:00
Chungkai Mei
d3d6dc3c17 [automerger skipped] genfs_contexts: fix path for i2c peripheral device [DO NOT MERGE] am: 5bedd6391a -s ours 
am skip reason: subject contains skip directive

Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133469

Change-Id: I949c40074671b51f5cbc2f6806fce7dbca93a77a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 03:18:38 +00:00
Chung-Kai (Michael) Mei
4766cf456b Merge "genfs_contexts: fix path for i2c peripheral device [DO NOT MERGE]" into udc-d1-dev 2023-03-21 02:31:55 +00:00
Darren Hsu
ba74fadb54 dumpstate: Suppress avc denial for power stats am: 0198a5224a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22119720

Change-Id: Ic216d075f84190d5d2c66cd2c7e46efc65d40989
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-21 02:20:37 +00:00
Wilson Sung
aa45dde84e Allow systemui find radio_service 
avc:  denied  { find } for pid=1810 uid=10231 name=phone scontext=u:r:systemui_app:s0:c231,c256,c512,c768 tcontext=u:object_r:radio_service:s0 tclass=service_manager permissive=0

Bug: 272628174
Bug: 272628396
Bug: 273674238
Test: boot-to-home and sim icon showed up
Change-Id: Ia7f84f53f131d868d356fd6d358188748c723757
 2023-03-21 02:13:46 +00:00
Chungkai Mei
5bedd6391a genfs_contexts: fix path for i2c peripheral device [DO NOT MERGE] 
correct path for i2c devices

Test: without avc denial when booting
Bug: 240641235
Change-Id: Iabb7bdac51c2877a9b254bb287361c58f16a353f
Signed-off-by: Chungkai Mei <chungkai@google.com>
 2023-03-21 01:17:40 +00:00
Donnie Pollitz
8034369bdd Removing audit for system_suspend tee 
Background:
* wakelock_use(tee) was added in previous CL: http://go/ag/21082565

Bug: 263305203
Test: Ran SELinuxTest#scanAvcDeniedLogRightAfterReboot
Change-Id: I6e8a6796ef5a7156b89ba89c74430f368727e2b8
Signed-off-by: Donnie Pollitz <donpollitz@google.com>
 2023-03-20 11:26:10 +01:00
TreeHugger Robot
353d475c50 Merge "Update SELinux error" into udc-d1-dev am: d5ec3f993f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22155391

Change-Id: I9799ad1d8ffecc7d945b8c55455d3287191a7ef3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-20 07:15:41 +00:00
Darren Hsu
0198a5224a dumpstate: Suppress avc denial for power stats 
Bug: 273639264
Test: presubmit test
Change-Id: I0b1d8b7516dc9bdfae6b8bca644b6ab52b971615
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2023-03-20 15:09:41 +08:00
TreeHugger Robot
d5ec3f993f Merge "Update SELinux error" into udc-d1-dev 2023-03-20 06:34:25 +00:00
TreeHugger Robot
120feae613 Merge "Remove insmod obsolete denials" into udc-d1-dev am: 155e0a8f36 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22155392

Change-Id: I6d427fc6d2fee9ff76ecb1f20e43bb87268022ee
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-20 06:01:36 +00:00
TreeHugger Robot
155e0a8f36 Merge "Remove insmod obsolete denials" into udc-d1-dev 2023-03-20 05:25:02 +00:00
Welly Hsu
3e9dfc011a Move euiccpixel_app dontaudit items out of tracking_denials am: 97b397fc5e am: 7884ddda0b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133463

Change-Id: I7904d64315b40ac30fa087ceff97efeeb3840153
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-20 05:05:12 +00:00
Welly Hsu
7d03b1841e Move euiccpixel_app dontaudit items out of tracking_denials am: 97b397fc5e am: a8df97fe32 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133463

Change-Id: I6992f0c4bb70f9e3044fa80f8aed487fcfc1ae89
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-20 05:03:13 +00:00
Welly Hsu
a8df97fe32 Move euiccpixel_app dontaudit items out of tracking_denials am: 97b397fc5e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133463

Change-Id: I1e3fdf46b8d29354b2b231457edd9b2e90126474
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-20 04:30:27 +00:00
Welly Hsu
7884ddda0b Move euiccpixel_app dontaudit items out of tracking_denials am: 97b397fc5e 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22133463

Change-Id: Ief757562cd3634388481d299e822229455476788
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-20 04:30:24 +00:00
Wilson Sung
f19431da02 Remove insmod obsolete denials 
Fix: 260522378
Fix: 272166723
Change-Id: I70956498f66643d0abc2496d3bdcd140e7ab8f7e
 2023-03-20 12:07:21 +08:00
Wilson Sung
2eed10acc4 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 274374768
Bug: 274374722
Test: scanBugreport
Bug: 274374769
Bug: 274374768
Bug: 274374992
Bug: 274374722
Bug: 268566481
Bug: 273639264
Test: scanAvcDeniedLogRightAfterReboot
Bug: 274374768
Bug: 274374722
Bug: 268566481
Change-Id: I4ebac8c48937557b8d8544ecfe4da3ac71ecf64e
 2023-03-20 12:05:59 +08:00
Welly Hsu
97b397fc5e Move euiccpixel_app dontaudit items out of tracking_denials 
bug: 265286368
bug: 269218505
Change-Id: I7dec7ad23ee48cf719d6e7442e60ddcc13c02a8f
 2023-03-20 10:13:05 +08:00
TreeHugger Robot
164cd42a0d Merge "[SELinux] remove hal_uwb_default tracking denials" into udc-d1-dev am: 14c05d48e9 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22101146

Change-Id: Ic21ef826ea07b4341a6f0a3cc984bbade54ec0cd
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-20 02:08:46 +00:00
TreeHugger Robot
14c05d48e9 Merge "[SELinux] remove hal_uwb_default tracking denials" into udc-d1-dev 2023-03-20 01:41:49 +00:00
Mahesh Kallelil
4127a32c5f Merge "Update selinux-policy for ModemService." into udc-d1-dev am: 6636bd227b 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22113396

Change-Id: Icab142ac5838ec1a7024125e695a207b464dcfc4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-16 23:12:13 +00:00
Mahesh Kallelil
6636bd227b Merge "Update selinux-policy for ModemService." into udc-d1-dev 2023-03-16 22:43:34 +00:00
Jayachandran C
6e45deae41 Merge "Allow radio to find and invoke Audio HAL for updating the network info during improved WiFi calling" into udc-dev am: 3cda1dd51b am: a7ec5ac379 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22067882

Change-Id: I3da5debafb7cfd31122b639cb234b0798eab595e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-16 21:23:44 +00:00
Jayachandran C
db9264e266 Merge "Allow radio to find and invoke Audio HAL for updating the network info during improved WiFi calling" into udc-dev am: 3cda1dd51b am: f99fed1f87 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22067882

Change-Id: Ia54b94c99a1124dcd782a79f30eacbb31beca35a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-16 21:17:16 +00:00