Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
894 commits 1 branch 0 tags 18 MiB
Commit graph

416 commits

Author SHA1 Message Date
Welly Hsu
0b3bc92066 Remove unnecessary dontaudit for context euiccpixel_app 
bug: 260522203
bug: 260922442
bug: 262455954
bug: 260522040
bug: 260768358
bug: 261933311

Test:
1. m atest && atest-dev com.google.android.selinux.pts.SELinuxTest#scanAvcDeniedLogRightAfterReboot
2. eSIM OS version check & OS upgrade successfully without avc error

Change-Id: I6e0771a5794a42af5e187e35881e6de06e01fff0
 2023-02-15 02:08:27 +00:00
George Chang
378fc6f5cf Merge "Remove dontaudit for secure_element" 2023-02-15 00:33:49 +00:00
Shashank Sharma
7cbda60f3e arm_mali_platform_service: register gpu selinux service 
Fix avc denied issues.

Bug: 261105374
Bug: 260768402
Bug: 260922162
Bug: 261105092
Bug: 264483754
Test: No AVC denied logs after reboot.
Change-Id: I6448b3e0df9b5deeb953498fa623810eadb3ff67
 2023-02-14 23:34:14 +00:00
TreeHugger Robot
996a7ad4ff Merge "storage: remove init tracking_denials rule" 2023-02-14 22:51:57 +00:00
Dinesh Yadav
dec248fa9a Merge "Remove b/264321380 from bug map" 2023-02-14 11:33:11 +00:00
Nicole Lee
95bf6d4b20 Remove logger_app in bug_map 
Bug: 264600084
Bug: 264600053
Change-Id: I5aa4dc83806c001e2cd3808cb998c39e4e3bd524
 2023-02-14 09:29:29 +00:00
Randall Huang
eafa9d0fbe Merge "storage: remove dumpstate tracking_denial rule" 2023-02-14 08:35:13 +00:00
TreeHugger Robot
dd28add0e4 Merge "Revert "Revert "update error on ROM 9588633""" 2023-02-14 08:06:21 +00:00
Randall Huang
f6600b7f72 storage: remove init tracking_denials rule 
Bug: 262794360
Test: boot to home
Change-Id: Iaea58cc0a1a572a651f7cb01d9b4ba19ff515269
Signed-off-by: Randall Huang <huangrandall@google.com>
 2023-02-14 15:51:57 +08:00
Randall Huang
da5df9cd20 storage: remove dumpstate tracking_denial rule 
Bug: 261933169
Test: no scsi avc denial when generating bugreport
Change-Id: Iecf98c248a2ad28d05095b7c91b8695dd92486be
Signed-off-by: Randall Huang <huangrandall@google.com>
 2023-02-14 07:13:54 +00:00
Wilson Sung
cc76d0f05b Revert "Revert "update error on ROM 9588633"" 
This reverts commit 9290d7c45b.
Add hal_googlebattery related denied to bug_map

Bug: 268566583
Bug: 268572197
Bug: 268572164
Change-Id: Iabfcfb28f69c118707fb64c34e2882ea0a49a776
 2023-02-14 15:05:12 +08:00
Ken Yang
8893d42439 Remove hal_vibrator_default in bug_map 
Remove hal_vibrator_default in bug_map due to my incorrect rebase

Bug: 264483356
Change-Id: I25310ad9f6d2c16d90f20969cbfc792f34584c93
Signed-off-by: Ken Yang <yangken@google.com>
 2023-02-14 06:56:52 +00:00
Dinesh Yadav
1dbaa50d8c Remove b/264321380 from bug map 
This bug was created to track the selinux violations caused when
camera hal tried to access gxp. This has been resolved by ag/21003929

Bug: 264321380
Change-Id: I33458cb7a1a657aba8be62362b62be52d881420f
Signed-off-by: Dinesh Yadav <dkyadav@google.com>
 2023-02-14 05:49:34 +00:00
George
39733f8622 Remove dontaudit for secure_element 
SELinuxUncheckedDenialBootTest
scanAvcDeniedLogRightAfterReboot
no avc denials for secure_element

Bug: 264490093
Bug: 262794969
Bug: 261651095
Bug: 260922187
Bug: 260768672
Test: manually check dumpsys secure_element
Test: run cts -m CtsOmapiTestCases
Test: m atest && atest-dev com.google.android.selinux.pts.SELinuxTest#scanAvcDeniedLogRightAfterReboot
Change-Id: Ic06f9d0bf61bc8f30e0f285403a99e2c73384418
 2023-02-13 12:36:51 +00:00
Randall Huang
eb3e643acd Storage: remove hal_health_storage tracking denials rules 
Bug: 264490032
Test: boot to home
Change-Id: I825b33ba513e135754a969a108d13096a326745a
Signed-off-by: Randall Huang <huangrandall@google.com>
 2023-02-13 17:14:36 +08:00
Randall Huang
2c859d0485 storage: remove vold tracking_denials rules 
Bug: 264483567
Test: boot to home
Change-Id: Iad702bf293ea374174034239c81ea3499c837cf0
Signed-off-by: Randall Huang <huangrandall@google.com>
 2023-02-13 16:58:39 +08:00
Andrew Chant
f861570a64 Merge "Revert "update error on ROM 9588633"" 2023-02-11 01:33:03 +00:00
Andrew Chant
9290d7c45b Revert "update error on ROM 9588633" 
This reverts commit 8c2f12f39d.

Reason for revert: Broke the zuma build
Bug: 268566583

device/google/zuma-sepolicy/tracking_denials/systemui_app.te:6:ERROR 'unknown type hal_googlebattery' at token ';' on line 100380:
dontaudit systemui_app hal_googlebattery:binder { call };
dontaudit systemui_app default_android_service:service_manager { find };
checkpolicy:  error(s) encountered while parsing configuration

Change-Id: I1286020227bdd73c14833489613237f82573d02f
 2023-02-11 01:27:19 +00:00
Wilson Sung
e338667584 vendor_init: Add getattr to sg 
Bug: 260522244
Change-Id: I9f447ecb635280048ca0d785f00b6c851a9dedf3
 2023-02-10 18:35:47 +08:00
Wilson Sung
6cf7ce5cc0 Allow vendor_init chown gvotables 
Bug: 267736435
Bug: 260366195
Change-Id: I0a27a7fb3719d57449fb3d7f4c4d746d09419a75
 2023-02-10 18:34:51 +08:00
Wilson Sung
594dee4dc4 Allow vendor_init create link for bootdevice_sysdev 
Bug: 263185566
Change-Id: I3a041c8dbd33c538d3971b793c64e4ea7c310190
 2023-02-10 16:24:06 +08:00
Wilson Sung
8c2f12f39d update error on ROM 9588633 
Bug: 268566583
Bug: 268572197
Bug: 268572164
Test: pts-tradefed run pts -m PtsSELinuxTest
Change-Id: I6eba194f27258a0c2acbcb739c3a69dfa7b77b56
 2023-02-10 11:57:07 +08:00
Tom Huang
dfe1f3799b Merge "Add BT hal sepolicy for allowing accessing AoC device node" 2023-02-10 02:23:42 +00:00
kuanyuhuang
3ce317ca5f Add BT hal sepolicy for allowing accessing AoC device node 
Allow BT hal to access device and aoc_device.

Test: manual and check avc log
Bug: 265587172
Change-Id: I62e9fb3f0278af7e0365f88bb3723cb47a266b81
 2023-02-09 09:34:10 +00:00
TreeHugger Robot
c7edca28e2 Merge changes Ia32c4b01,I4746bca6 
* changes:
  Permissive systemui during bringup stage
  label SystemUI app
 2023-02-09 07:05:46 +00:00
More Kuo
459ad4638f Merge "Bluetooth: remove dontaudit for hal_bluetooth_btlinux" 2023-02-09 04:38:39 +00:00
Welly Hsu
782f4c6e6b Merge "Update ofl_app selinux policy" 2023-02-09 03:47:53 +00:00
Wilson Sung
5af20ce7a5 Permissive systemui during bringup stage 
Bug: 264266705
Change-Id: Ia32c4b016aad4f47c437e62069e55990297dad82
 2023-02-09 11:44:09 +08:00
Wilson Sung
f88300dc69 label SystemUI app 
Bug: 264266705
Bug: 262794428
Change-Id: I4746bca6291d57ee36c0565d15ee5320380e1bc0
 2023-02-09 11:33:54 +08:00
TreeHugger Robot
f43519dad8 Merge "dontaudit kernel search allow debugfs" 2023-02-09 02:12:22 +00:00
Welly Hsu
b8e66572cc Update ofl_app selinux policy 
bug: 264489564

test: Use ofl_app (OFLBasicAgent app) will not face avc error
Change-Id: I55061f6b067e054ec605cd6a196406e48c1271e6
 2023-02-08 17:39:34 +08:00
TreeHugger Robot
f61bc3e16a Merge "WLC: Fix hal_wireless_charger sepolicies" 2023-02-08 09:16:22 +00:00
Ken Yang
c3048691a9 WLC: Fix hal_wireless_charger sepolicies 
Bug: 264483390
Bug: 264483533
Bug: 264483152
Bug: 263429589
Change-Id: If06e0b0c429e78e71f7be2d6418ccab0ab115414
Signed-off-by: Ken Yang <yangken@google.com>
 2023-02-08 08:14:36 +00:00
Wilson Sung
da49f90167 Allow vendor_init to set slog properties 
Bug: 267843409
Change-Id: Ib98b7127bb4381ce5dfb5522b3652637a533f593
 2023-02-08 15:32:26 +08:00
Wilson Sung
adfddd8d3b Allow vendor_init to set modem vendor_logger_prop 
Bug: 267843409
Change-Id: I47d1e4aec04dfcf1223e4e4d828d7da5af243e9c
 2023-02-08 15:31:54 +08:00
Wilson Sung
3c6fa1dfb5 Allow vendor_init to set vendor_logger_prop 
Bug: 267843409
Change-Id: I99a52a5d0d24f604cf3f0872d4066e1de5256e2f
 2023-02-08 15:31:36 +08:00
TreeHugger Robot
4550d66a63 Merge "Remove vibrator bug_map toward u:object_r:aac_drc_prop:s0" 2023-02-08 07:18:39 +00:00
TreeHugger Robot
35a2c3cd6d Merge "Remove hal_vibrator_default and vendor_init tracking_denials" 2023-02-08 07:08:27 +00:00
TreeHugger Robot
25d69cfbed Merge "Allow kernel to access firmware and zram" 2023-02-08 07:00:41 +00:00
More Kuo
565218ed0b Bluetooth: remove dontaudit for hal_bluetooth_btlinux 
Bug: 261363679
Test: m atest && atest-dev com.google.android.selinux.pts.SELinuxTest#scanAvcDeniedLogRightAfterReboot
Change-Id: I14429cc9e8cfd971ece59083022a03a9b6de0ede
 2023-02-08 14:24:54 +08:00
Tai Kuo
9824759e4f Remove vibrator bug_map toward u:object_r:aac_drc_prop:s0 
u:object_r:aac_drc_prop:s0 is harmless and does not affect vibrator HAL
dumpsys.

Bug: 264483356
Test: adb shell dumpsys android.hardware.vibrator.IVibrator/default
Change-Id: Id638d7074c1a83141b6db5b2ecea0148721ded88
 2023-02-08 14:20:16 +08:00
Tai Kuo
cecd829f6f Remove hal_vibrator_default and vendor_init tracking_denials 
Build P23 CS40l26 project from
hardware/google/pixel/vibrator/cs40l26/device.mk and use the sepolicy
from hardware/google/pixel-sepolicy/vibrator/cs40l26 and
hardware/google/pixel-sepolicy/vibrator/common.

Bug: 267843409
Fix: 260366169
Fix: 264490051
Test: HAL init properly
Test: dumpsys android.hardware.vibrator.IVibrator/default
Test: m atest && atest-dev \
  com.google.android.selinux.pts.SELinuxTest#scanAvcDeniedLogRightAfterReboot
Test: m atest && atest-dev \
  com.google.android.selinux.pts.SELinuxTest#scanBugreport
Change-Id: I4448bbdb03b0a06080d5bccf2708c86c10d4fb26
 2023-02-08 14:11:27 +08:00
TreeHugger Robot
d33ee1d1d3 Merge "Remove dontaudit vendor_init to set ssr properties" 2023-02-08 05:52:44 +00:00
TreeHugger Robot
c1888e24fc Merge "Allow vendor_init to modify proc_sched" 2023-02-08 05:26:30 +00:00
TreeHugger Robot
a2e09c9e25 Merge "vendor_init: Add getattr to modem_img" 2023-02-08 05:22:20 +00:00
Wilson Sung
ac3c24c4f2 dontaudit kernel search allow debugfs 
Bug: 261650972
Change-Id: I39b0feb01c592c7beb30d7aa1610c39a75bb3481
 2023-02-08 13:21:48 +08:00
TreeHugger Robot
bd9251a800 Merge "Allow vendor_init to modify read_ahead_kb" 2023-02-08 05:20:57 +00:00
TreeHugger Robot
728de48e51 Merge "Add extcon related contexts" 2023-02-08 05:16:56 +00:00
Wilson Sung
5f27d9f524 Merge "Remove usb obsolete denials" 2023-02-08 05:15:48 +00:00
Wilson Sung
65575203b2 Remove usb obsolete denials 
Bug: 261651009
Change-Id: I59f376d504e82e39feef1d96bfe3ec636dcf6ca0
 2023-02-08 05:15:20 +00:00