Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
296 commits 1 branch 0 tags 18 MiB
Commit graph

296 commits

This branch
This branch
All branches
Author SHA1 Message Date
Nicole Lee
9c413c12e7 logger_app: allow logger_app to access vendor_slog_file 
Bug: 264489961
Test: Confirm no selinux denial for vendor_slog_file
Change-Id: Idc5386336a196f39703f6d33e3a7a8491e860ea0
 2023-01-31 16:38:48 +00:00
Nicole Lee
98e068e135 logger_app: allow logger_app to access vendor_rild_prop 
Bug: 264489961
Test: Confirm no selinux denial for vendor_rild_prop
Change-Id: I07bb59cba17f11a6cfdaf40e92f6cd663d8ad903
 2023-01-31 16:38:39 +00:00
Nicole Lee
e396b80465 logger_app: allow logger_app to access sysfs_sscoredump_level and vendor_ramdump_prop 
Bug: 264489961
Test: Confirm no selinux denial for sysfs_sscoredump_level and vendor_ramdump_prop
Change-Id: I6c7e87d15505dd9cd80f571ab67925b7ec722ef6
 2023-01-31 16:38:31 +00:00
Nicole Lee
cbb6754e58 logger_app: allow logger_app to access logd_prop 
Bug: 264489961
Test: Confirm no selinux denial for logd_prop
Change-Id: I6db7b19dd9cf864768ba2442d39d9fcde16a71fe
 2023-01-31 16:38:23 +00:00
Nicole Lee
bed125ec04 logger_app: allow logger_app to access logpersistd_logging_prop 
Bug: 264489961
Test: Confirm no selinux denial for logpersistd_logging_prop
Change-Id: Ia8836e058bb3e471d388f9055252e6c3c42227ac
 2023-01-31 16:38:14 +00:00
Nicole Lee
998e7618b9 logger_app: allow logger_app to access vendor_audio_prop 
Bug: 264489961
Test: Confirm no selinux denial for vendor_audio_prop
Change-Id: I02b53cf4d39adf1bc69004502a21b130c925d6bc
 2023-01-31 16:38:05 +00:00
Nicole Lee
64a8ed9b7b logger_app: allow logger_app to access vendor_wifi_sniffer_prop 
Bug: 264489961
Test: Confirm no selinux denial for vendor_wifi_sniffer_prop
Change-Id: Id6a5afed299c3ac869897015629d190640f40d8f
 2023-01-31 16:37:54 +00:00
Nicole Lee
eb05f7d02f logger_app: allow logger_app to access vendor_tcpdump_log_prop 
Bug: 264489961
Test: Confirm no selinux denial for vendor_tcpdump_log_prop
Change-Id: I2c4e7e0d395f570f93a26dd0328982487426ac84
 2023-01-31 16:36:24 +00:00
Nicole Lee
cddb6ad619 logger_app: allow access vendor_gps_file, vendor_gps_prop, vendor_logger_prop 
Bug: 261519049
Bug: 261783031
Bug: 261933367

Test: Confirm no selinux denial for these 3 tcontexts
Change-Id: I6f919e193693f7521778321f677214ea9f3b4d84
 2023-01-31 16:32:41 +00:00
Nicole Lee
b713236048 logger_app: allow logger_app access vendor_modem_prop 
Bug: 260522268
Bug: 264600053

Test: Confirm no selinux denial for tcontext vendor_modem_prop
Change-Id: Ic4ed0cdd7fa33c1dd4c812528b26b4a19cf6537b
 2023-01-31 16:32:32 +00:00
Nicole Lee
e6975cb6e5 logger_app: allow logger_app to access vendor_ssrdump_prop 
Bug: 260366439

Test: Confirm no selinux denial for tcontext vendor_ssrdump_prop
Change-Id: I74009bdd3d8b0fa691a2d0132655dc08fcd50977
 2023-01-31 16:32:24 +00:00
Nicole Lee
30e96b25ce logger_app: allow logger_app to access radio files 
Bug: 260366439
Bug: 260522268
Bug: 260769144
Bug: 261519049
Bug: 264600084

Test: Confirm no selinux denial for tcontext radio_vendor_data_file
Change-Id: I2a917d78e685aad5608e64f4d076cc50cdb064cc
 2023-01-31 16:32:16 +00:00
sukiliu
383189e5f2 Update error on ROM 9541712 
Bug: 267260951
Bug: 267261048
Bug: 267260619
Bug: 267260716
Bug: 267261305
Bug: 267261163
Bug: 267260675
Bug: 267261265
Bug: 267260717
Test: scanBugreport
Change-Id: I293fe1bc19f5f2d8f320d4e9feea051fc623ef8d
 2023-01-31 14:18:11 +08:00
TreeHugger Robot
1746a6cc59 Merge "Add rule for secure_element AIDL" 2023-01-27 02:00:45 +00:00
Grace Chen
82ae431064 Merge "Fix selinux denials on hal_secure_element_uicc" 2023-01-24 02:10:51 +00:00
Grace Chen
e881d9d401 Fix selinux denials on hal_secure_element_uicc 
Bug: 264489780
Test: Confirm no more selinux denials
Change-Id: Ib159acaf8701d0ac7e3325addd7baca6a41f0cee
 2023-01-23 15:36:04 -08:00
Grace Chen
c93ba80fc4 Add rule for secure_element AIDL 
Add secureelement aidl

b/261565407

Change-Id: I79f35e8231d9eae81b90528269410c169bb1a035
 2023-01-23 18:46:01 +00:00
Dinesh Yadav
3de9d17052 Merge "Allow camera HAL and GCA to access GXP device." 2023-01-18 07:33:32 +00:00
TreeHugger Robot
30fe55378d Merge "Fix avc denied and remove tracking_denials for hal_usb_gadget_impl" 2023-01-17 06:07:41 +00:00
Ernie Hsu
87aa440b72 Merge "Remove tracking_denials for media related module" 2023-01-17 05:51:00 +00:00
Chung-Kai (Michael) Mei
ee6c28322a Merge "sepolicy: fix avc denial" 2023-01-17 04:53:35 +00:00
Chungkai Mei
cc0f6a604d sepolicy: fix avc denial 
fix avc denial

Test: boot passed and no avc log after boot
Bug: 264483355
Change-Id: Idd9ef9ca7c988141bffd2d9d7e561efe8066cba4
Signed-off-by: Chungkai Mei <chungkai@google.com>
 2023-01-17 04:53:13 +00:00
Ray Chi
6baa4fa226 Fix avc denied and remove tracking_denials for hal_usb_gadget_impl 
Bug: 264946043
Test: no avc denied for hal_usb_gadget_impl
Change-Id: Ib52e6d089a0e3e73c619f35849af0aed478c1f65
 2023-01-17 04:37:49 +00:00
Ernie Hsu
c2a4092ee6 Remove tracking_denials for media related module 
All bugs in modified te files were already fixed

Bug: 264490072
Bug: 264489679
Bug: 264490012
Bug: 264489523
Test: test video recording/playback under enforcing mode
Change-Id: Iac7dc597f58dcc5f7bd936ddb607aa7158467a34
 2023-01-17 03:45:37 +00:00
Dinesh Yadav
b068bb3f64 Allow camera HAL and GCA to access GXP device. 
The camera HAL and Google Camera App
need selinux permission to run workloads on Aurora DSP. This
change adds the selinux rules too allow these clients to
access the GXP device in order to execute workloads on DSP.

Bug: 264321380
Test: Verified that the camera HAL service and GCA app is able to access the GXP device.
Change-Id: I125650b4841b4cbdc50077a0d80b113b02699de8
 2023-01-17 03:21:04 +00:00
TreeHugger Robot
ef4c754dc4 Merge "Fix avc denied and remove tracking_denials for hal_usb_impl" 2023-01-16 09:55:32 +00:00
Dinesh Yadav
1ac5ca8485 Merge "Add SEPolicy settings for android logging/tracing service for GXP" 2023-01-16 08:05:51 +00:00
Ray Chi
0801e5e421 Fix avc denied and remove tracking_denials for hal_usb_impl 
Fix avc denial for hal_usb_impl.

Bug: 263048760
Test: no avc denied for hal_usb_impl
Change-Id: Iaeea9d1f99f715c0f856a3a9f9fcd2e8d371f3d3
 2023-01-16 15:40:48 +08:00
Chungkai Mei
171bfb004b sepolicy: fix avc denial 
fix avc denial

Test: bott passed and no avc log after boot
Bug: 260769063
Bug: 261105028
Bug: 260366126
Bug: 261650934
Bug: 262178497
Bug: 262315567
Bug: 262633072
Change-Id: I926d535fe6871726b5cd0602e436f6b5a3a9e736
Signed-off-by: Chungkai Mei <chungkai@google.com>
 2023-01-16 02:55:37 +00:00
sukiliu
3b97d74811 Update error on ROM 9492984 
Bug: 265587172
Test: SELinuxUncheckedDenialBootTest
Change-Id: I69402149121da5bbb0f2f89ca59c3ca458945d50
 2023-01-16 09:36:14 +08:00
Ken Yang
c4d610a86b Merge "WLC: Cleanup the sysfs_wlc policies" 2023-01-13 14:41:32 +00:00
TreeHugger Robot
71b801e2b7 Merge "Update error on ROM 9486762" 2023-01-13 09:14:49 +00:00
Welly Hsu
1f350465ce Merge "Fix euiccpixel_app SELinux error for eSIM firmware upgrade" 2023-01-13 07:46:40 +00:00
sukiliu
305330ef84 Update error on ROM 9486762 
Bug: 265384119
Bug: 265383359
Bug: 265383532
Test: SELinuxUncheckedDenialBootTest
Change-Id: I78bf39772c8f2a6b5c403ed5b113a34ff7d9dab0
 2023-01-13 15:33:02 +08:00
Leo Liou
af6131d348 Merge "zuma: add sepolicy for ufs_firmware_update process" 2023-01-13 03:21:07 +00:00
Leo Liou
30f3c17252 zuma: add sepolicy for ufs_firmware_update process 
Allow the script to access the specified partition and sysfs.

Bug: 224464892
Test: full build and test ffu flow
Change-Id: I27f0d4d97f15a7c108e6ae1b8c12fda2c69c303a
Signed-off-by: Leo Liou <leoliou@google.com>
 2023-01-13 08:19:27 +08:00
Jaegeuk Kim
0cf7210eb1 Allow mkfs/fsck for vendor partitons 
Change-Id: I425c56edf9b12f1b86994f58100ecc9a8e1b58b2
Signed-off-by: Jaegeuk Kim <jaegeuk@google.com>
 2023-01-12 09:42:16 -08:00
Welly Hsu
48ef4308be Fix euiccpixel_app SELinux error for eSIM firmware upgrade 
bug: 265286368

Test: generate test build and confirm no avc error happens
Change-Id: I2f457157d92cb48dfe328ba1520c3e598bd6d6b6
 2023-01-13 01:17:19 +08:00
Suki Liu
8b58ce3b69 Merge "Update error on ROM 9481402" 2023-01-12 11:41:23 +00:00
TreeHugger Robot
7544c3c104 Merge "Wifi: Add sepolicy files for wifi_sniffer service" 2023-01-12 05:55:41 +00:00
kensun
fb69c41387 Wifi: Add sepolicy files for wifi_sniffer service 
Bug: 237465412
Test: Manual Test
Change-Id: I558b7f401c8d0da0f7f5b376165b42e1073a7900
 2023-01-12 05:47:03 +00:00
sukiliu
26aa4fa6e2 Update error on ROM 9481402 
Bug: 265220235
Test: SELinuxUncheckedDenialBootTest
Change-Id: I784b50120a7f4dd3c9ee8c0837f0ddfd8210da2a
 2023-01-12 10:47:54 +08:00
Xu Han
e8f6804674 Merge "Fix permission regarding camera HAL, raidoExt and rlsservice" 2023-01-11 23:06:17 +00:00
Dinesh Yadav
7056027e71 Add SEPolicy settings for android logging/tracing service for GXP 
Test:
Checked that no "avc" violations were caused by gxp_logging after selinux has been enforced.

Bug: 264489388
Change-Id: I967b7b6d57c70804bed5c4ae94ff7b62ece23de3
Signed-off-by: Dinesh Yadav <dkyadav@google.com>
 2023-01-11 13:54:47 +00:00
Hasini Gunasinghe
ab3f430aae Merge "[Port ag/20645453] Map Rust KeyMint to same SELinux policy as C++" 2023-01-10 19:52:48 +00:00
Ken Yang
2dda40afef WLC: Cleanup the sysfs_wlc policies 
The sepolicy must be self-contained without including wirelss_charger to
avoid build break in AOSP

Bug: 263830018
Change-Id: Iff235b0c006474b59af853a19d01ba57c3dfe451
Signed-off-by: Ken Yang <yangken@google.com>
 2023-01-10 16:03:22 +00:00
sukiliu
fdb950e96d Update error on ROM 9471410 
Bug: 264600171
Bug: 264972626
Bug: 264972745
Bug: 264972759
Test: scanBugreport
Change-Id: Ibe3bd94ce6c9c62bb6b2733cc025d0ccd9c478c5
 2023-01-10 16:12:05 +08:00
TreeHugger Robot
029f002a34 Merge "Allow dmabuf heap access to graphics allocator" 2023-01-10 01:52:35 +00:00
Hasini Gunasinghe
76c4f20434 [Port ag/20645453] Map Rust KeyMint to same SELinux policy as C++ 
Allow the Rust and C++ implementations of the KeyMint HAL service to be
toggled easily, by mapping them to the same SELinux policy.

Bug: 197891150
Bug: 225036046
Test: VtsAidlKeyMintTargetTest
Change-Id: Ic43985f32aaabb2560ef0b02573a1e587e24fc6a
 2023-01-10 01:19:17 +00:00
Ankit Goyal
344fb91207 Allow dmabuf heap access to graphics allocator 
There is no change in dmabuf heaps from pro, so these use the exact same
SEpolicy rules

Fix: 264489636
Test: Boots to home (with SELinux enforced)
Test: VtsHalGraphicsMapperV4_0TargetTest
Change-Id: I58ec8d9558fa76b805c0882cbbb20bfd08aead13
 2023-01-09 16:16:28 -08:00