Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
888 commits 1 branch 0 tags 18 MiB
Commit graph

888 commits

This branch
This branch
All branches
Author SHA1 Message Date
Martin Wu
4e2023c263 Revert "Add sepolicy for dumpstate to zip tcpdump into bugreport" 
Revert submission 22814097-Fix-tcpdump-sepolicy

Reason for revert: build break

Reverted changes: /q/submissionid:22814097-Fix-tcpdump-sepolicy

Change-Id: I795de89a17c5ccee702fa3a59af03d48d89fbaf2
 2023-04-27 02:21:00 +00:00
Andrew Chant
ffa498bd79 Merge "Use tof sensor codenames" into udc-d1-dev am: 6641141f91 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22307463

Change-Id: Ic8acdfb36ad3945c93bf336b91ef9cd2a69a8bd8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 02:20:37 +00:00
Andrew Chant
6641141f91 Merge "Use tof sensor codenames" into udc-d1-dev 2023-04-27 02:07:29 +00:00
Treehugger Robot
8a3c78df60 Merge "Add sepolicy for dumpstate to zip tcpdump into bugreport" into udc-d1-dev am: fe27339606 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22838381

Change-Id: I69f575b3857d391561c1f214833e28d3bee2eb30
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 01:56:24 +00:00
Kamal Shafi
fedde4710a Add sepolicy permission for new UW camera am: eb22b7d648 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22880541

Change-Id: Icf6c3862d91bd7312bc822772314c2816b16f596
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 01:55:40 +00:00
Treehugger Robot
fe27339606 Merge "Add sepolicy for dumpstate to zip tcpdump into bugreport" into udc-d1-dev 2023-04-27 01:43:58 +00:00
martinwu
da1f9ffa79 Add sepolicy for dumpstate to zip tcpdump into bugreport 
Bug: 264490014
Test: 1. Enable tcpdump_logger always-on function
      2. Dump bugreport
      3. Pull dumpstate_board.bin and chagne it to zip
      4. Unzip dumpstate_board.zip and check if tcpdump files
         are there.
Change-Id: I04ca96860c78baf24afd7deecff7dd4d470d9539
 2023-04-26 14:17:56 +00:00
Kamal Shafi
eb22b7d648 Add sepolicy permission for new UW camera 
sepolicy including imentet camera sensor and gt24p64e EEPROM

Bug: 277988592
Bug: 279547216
Test: build pass
Change-Id: I01e2bc558eba7cf03c11818d9c806e6053808fd1
 2023-04-26 11:32:33 +00:00
Wilson Sung
3107cd8aa5 Update SELinux error am: 74494540d6 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22873618

Change-Id: I624f57e7815c7617e8956de1f5144c3e167637c1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 09:51:05 +00:00
kuanyuhuang
477d58d695 Add hidraw device sepolicy for headtracking 
Test: make and incoming HID data from Pixel Buds Pro
Bug: 276163506
Change-Id: I10833e215962ad007ad32a0d713e9b37ae888fdb
 2023-04-26 09:20:11 +00:00
Salmax Chang
5ddf0079c6 Remove obsolete tracking entry 
Bug: 264489567
Bug: 261651131
Change-Id: Ibf1116ea7b393f3c1e6eec0794e492b5dc2fd1ad
 2023-04-26 17:15:36 +08:00
Bruno BELANYI
61df5feff7 Add ArmNN config sysprops SELinux rules 
Bug: 205202540
Bug: 264489188
Test: manual - reboot device and check the absence of AVC denials
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:aac79fd4d9bec6517b2932cfca1e1c84b7711cc8)
Merged-In: I77b29468258520265e5f660452794aff068ca07d
Change-Id: I77b29468258520265e5f660452794aff068ca07d
 2023-04-26 08:12:29 +00:00
Wilson Sung
74494540d6 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 279680070
Test: scanBugreport
Bug: 279680070
Bug: 279680213
Bug: 279680264
Test: scanAvcDeniedLogRightAfterReboot
Bug: 279680070
Change-Id: I0a5aadfed90377aeee60a15aaab212c7709d091a
 2023-04-26 15:10:44 +08:00
Treehugger Robot
74272bfe60 Merge "Remove 'hal_neuralnetworks_armnn' '/data' access exception" into udc-d1-dev am: 8ebffeef84 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22786212

Change-Id: If5fe6067ec2fcea498366aeb59feb5ab9f403e26
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 05:13:10 +00:00
Treehugger Robot
381f2fb49e Merge "Remove hal_power_default bug from bug_map" into udc-d1-dev am: 8f8f545307 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22873619

Change-Id: I592a54f761941a31cbbe69ba18e21bc2dc1f0a37
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 05:12:34 +00:00
Treehugger Robot
f69eaca047 Merge "Remove old debug map entries." into udc-d1-dev am: 471a0c621a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22874902

Change-Id: I9b1d926ebd6a33269d3c2cf754eebf638cab7aec
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 05:11:59 +00:00
Joseph Jang
b777b6c4f4 Merge "Move recovery.te to device/google/gs-common/dauntless/sepolicy" into udc-d1-dev am: 49269dd7dc 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22787680

Change-Id: Iffe6499c41302c285d40c3d1fb9cd31aa5d5aa9d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 05:11:02 +00:00
Treehugger Robot
8ebffeef84 Merge "Remove 'hal_neuralnetworks_armnn' '/data' access exception" into udc-d1-dev 2023-04-26 05:07:41 +00:00
Treehugger Robot
8f8f545307 Merge "Remove hal_power_default bug from bug_map" into udc-d1-dev 2023-04-26 04:59:43 +00:00
Treehugger Robot
471a0c621a Merge "Remove old debug map entries." into udc-d1-dev 2023-04-26 04:59:25 +00:00
Joseph Jang
49269dd7dc Merge "Move recovery.te to device/google/gs-common/dauntless/sepolicy" into udc-d1-dev 2023-04-26 04:41:05 +00:00
Bruno BELANYI
f9d70ef1b2 Remove 'hal_neuralnetworks_armnn' '/data' access exception 
The mali driver has been configured not to look there anymore.

Fix: 205779871
Test: manual - reboot device and check the absence of AVC denials
Change-Id: I7bf68036522553a2919076fc6243a577086ffb3a
Merged-In: I7bf68036522553a2919076fc6243a577086ffb3a
(cherry picked from commit deec8fec9d)
 2023-04-26 03:35:52 +00:00
Nicolas Geoffray
42b382da0c Remove old debug map entries. 
Fix: 264483352
Change-Id: Ie47107328f58dc4f1d4070e93c0cd09e88cee021
Merged-In: Ie47107328f58dc4f1d4070e93c0cd09e88cee021
(cherry picked from commit af3702bffd)
 2023-04-26 03:33:31 +00:00
Chungkai Mei
c01d4b7d9b Remove hal_power_default bug from bug_map 
SELinux errors are fixed and hence removing from bug map

Bug: 273638876
Test: Build and boot on device
Change-Id: I4ca6180ad286970d36ce204cd4c44e75962b26e0
Merged-In: I4ca6180ad286970d36ce204cd4c44e75962b26e0
Signed-off-by: Chungkai Mei <chungkai@google.com>
(cherry picked from commit 8051a8759a)
 2023-04-26 03:32:21 +00:00
Treehugger Robot
b00e740e38 Merge "Add sepolicy permission for new project" into udc-d1-dev am: dd9d69e132 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22839998

Change-Id: I3f8d423a56f4fa3c8305b0ecd6fc79715d716697
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 03:05:01 +00:00
Treehugger Robot
175d165ded Merge "Remove dontaudit since read early_wakeup completed" into udc-d1-dev am: e94c391ebb 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22819356

Change-Id: Ia10e80313407c749bfd6018318878228d3786a99
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 03:04:45 +00:00
Treehugger Robot
bb8e835b7d Merge "Allow InputProcessor HAL to read display resolution" into udc-d1-dev am: 0cdcdbf433 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22830940

Change-Id: Ibda1fcc2bd040922d31e5bb9c24b2c2b7b84d8fa
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 03:02:20 +00:00
Treehugger Robot
dd9d69e132 Merge "Add sepolicy permission for new project" into udc-d1-dev 2023-04-26 02:34:56 +00:00
Treehugger Robot
e94c391ebb Merge "Remove dontaudit since read early_wakeup completed" into udc-d1-dev 2023-04-26 02:25:01 +00:00
Treehugger Robot
0cdcdbf433 Merge "Allow InputProcessor HAL to read display resolution" into udc-d1-dev 2023-04-26 02:19:40 +00:00
TreeHugger Robot
e23db371db Merge "Add memtrack" into udc-d1-dev am: d1c31b785d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22780494

Change-Id: Ide9394cba29e3efa76453ae917a8446d638c9922
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-25 22:25:02 +00:00
TreeHugger Robot
d1c31b785d Merge "Add memtrack" into udc-d1-dev 2023-04-25 21:44:08 +00:00
timmyli
783a1cf431 Allow camera hal to access aoc device am: c09931ad38 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/22735036

Change-Id: I4d2ea0de7bbb0867859fad4a0bd8715fa437cdd6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-25 19:32:37 +00:00
horngchuang
4c3cd890be Add sepolicy permission for new project 
Bug: 279542096
Test: Build and test for sensor denials
Change-Id: I3d6b7ce33e101bd9eeacefae128239af3512b67f
 2023-04-25 08:09:29 +00:00
Andrew Chant
55ef8a9026 Allow InputProcessor HAL to read display resolution 
Cherry-pick of Change I23285c21a82748c63fbe20988af42884b9261b66
from Siarhei Vishniakou <svv@google.com>:

Currently, there's no API to read the resolution from the system domain,
so the HAL has to read this from the sysprop provided by the display
code.

Allow the HAL to do so in this CL.

Bug: 236200710
Bug: 279510160
Change-Id: I449232d91533b6b9a40f2a6c4a91c511f5b38e3c
 2023-04-24 16:59:04 -07:00
timmyli
c09931ad38 Allow camera hal to access aoc device 
Camera team needs to talk to aoc device in order to use libusf.
It will do this instead of talking to rlsservice. Soon, we can
remove rlsservice from the se policy for camera hal.

Bug: 277959222
Test: manual test, logs provided in comments
Change-Id: I7453fd94891dcc0c1c587bccb3bb6cff80f46e8b
 2023-04-24 20:05:57 +00:00
Chungkai Mei
97f5b3c87a Remove dontaudit since read early_wakeup completed 
The display file node, early_wakeup, just for trigger the worker for
display and it doesn't have meaningful read function. But PowerHAL read
all nodes and try to dump their valuesi while triggering bugreport. As
the read operation has been completed, so we can remove the clause.

07-02 00:53:56.888   522   522 W android.hardwar: type=1400 audit(0.0:8): avc: denied { dac_read_search } for capability=2 scontext=u:r:hal_power_default:s0 tcontext=u:r:hal_power_default:s0 tclass=capability permissive=0
07-02 00:53:56.888   522   522 W android.hardwar: type=1400 audit(0.0:9): avc: denied { dac_override } for capability=1 scontext=u:r:hal_power_default:s0 tcontext=u:r:hal_power_default:s0 tclass=capability permissive=0

Bug: 267261305
Test: Boot to home
Change-Id: I6c058a1a85ada7e5d6eb1f8acafaac8231ae5329
Merged-In: I6c058a1a85ada7e5d6eb1f8acafaac8231ae5329
Signed-off-by: Chungkai Mei <chungkai@google.com>
(cherry picked from commit 55d41f1a3e89b1f4d2525d9925e3319ef59e2705)
(cherry picked from commit 1d966a0db9)
 2023-04-24 17:21:53 +00:00
Joseph Jang
6d754405ff Move recovery.te to device/google/gs-common/dauntless/sepolicy 
Bug: 279381809
Change-Id: Icb4f899d76e1a5e1d6f6f2cee4c1c7f46105338c
 2023-04-24 08:01:42 +00:00
Ankit Goyal
5e4db7517c Add memtrack 
Bug: 279108265
Test: dumpsys meminfo
Change-Id: Ib46c89811aa3aa1a5573076f9dc69e7222f56ea4
 2023-04-20 23:18:56 -07:00
Treehugger Robot
d90ebc1fdb Merge "Add Ims process label" into udc-d1-dev 2023-04-21 04:40:24 +00:00
Treehugger Robot
c84559a813 Merge changes from topic "260522202" into udc-d1-dev 
* changes:
  Remove untraceable rules
  Enforce installd
 2023-04-21 03:45:54 +00:00
Wilson Sung
e4e854fcd9 Add Ims process label 
Bug: 260522282
Test: boot-to-home, no avc error
Change-Id: I8f3c7c64ecace4ca7ddd69275a093606a8492204
 2023-04-21 03:38:17 +00:00
Treehugger Robot
a8fe91bc3c Merge "Remove hal_uwb_default bug from bug_map" into udc-d1-dev 2023-04-21 03:08:00 +00:00
Treehugger Robot
c3a5e6769c Merge "zuma: Allow GRIL Service to access radio_vendor_data_file" into udc-d1-dev 2023-04-21 02:43:46 +00:00
Treehugger Robot
0f96c2225e Merge "ril: dump radio hal from user build." into udc-d1-dev 2023-04-21 01:49:54 +00:00
Ankit Goyal
2f30e8ca85 Merge "Mark video secure devices as default dmabuf heaps" into udc-d1-dev 2023-04-20 17:03:32 +00:00
Wilson Sung
40c682640f Merge "Enforce odrefresh" into udc-d1-dev 2023-04-20 04:06:05 +00:00
Tim Lin
54bb68984a ril: dump radio hal from user build. 
Sync from ag/17155484

To get radio hal debug info on user build as we do on previous Pixels.

Bug: 278477468
Test: Trigger bugreport on USERDEBUG with dumpstate.unroot set
to true and check IRadio log

Change-Id: Ic9dd8357eb326d5c5f03b16408b7ba0a5e5f5818
(cherry picked from commit e08be6ab76327511002ebd343bda13a2fcc1434d)
 2023-04-20 03:40:59 +00:00
kadirpili
92636953cf zuma: Allow GRIL Service to access radio_vendor_data_file 
Bug: 274737512
Change-Id: I90c008172af7bd0d8b7bf2b214f422c4165f3769
(cherry picked from commit 5c31a6f55ac18dd941e50b455c38a37efa12354f)
 2023-04-20 03:37:22 +00:00
Wilson Sung
f4a5867e2a Merge changes from topic "260522282" into udc-d1-dev 
* changes:
  Revert^2 "Enforce priv_app"
  Label ims_remote_app and rcs_service_app
 2023-04-20 02:46:06 +00:00