Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
954 commits 1 branch 0 tags 18 MiB
Commit graph

435 commits

Author SHA1 Message Date
TreeHugger Robot
fcffe3c099 Merge "Enforce hal_sensors_default" into udc-d1-dev 2023-03-14 02:25:33 +00:00
TreeHugger Robot
25c992012f Merge "enforce hal_dumpstate_default" into udc-dev am: 3906f53197 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/21982724

Change-Id: I3249dd6a9df32bfa09f83f11e76755ae9d74873c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-14 01:55:34 +00:00
TreeHugger Robot
3906f53197 Merge "enforce hal_dumpstate_default" into udc-dev 2023-03-14 01:10:42 +00:00
TreeHugger Robot
c86e5b15e4 Merge "Enforce chre" into udc-d1-dev 2023-03-14 01:09:29 +00:00
Wilson Sung
1371c7c6a9 Enforce chre 
Fix: 264489633
Change-Id: Ib4c7a217dce35f1d923a3ba5c012b11508b19c5b
 2023-03-13 08:10:57 +00:00
Adam Shih
7356735963 enforce dumpstate am: ea9c12efb3 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/21982725

Change-Id: I6853bb4cd85f1651e32e15e01f1c4abc9384b505
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-13 08:00:07 +00:00
Wilson Sung
ba953cdb9a Enforce system ui app 
Bug: 264266705
Change-Id: Ice811ba94f065a56db47b390847b4f15798a50f5
 2023-03-13 14:56:42 +08:00
Wilson Sung
ffeed9d629 Enforce hal_sensors_default 
Bug: 264489637
Change-Id: I6f0384a0bf4ae5c3ac6d1ebe5b865ea43b86c3c2
 2023-03-13 14:54:20 +08:00
Adam Shih
ea9c12efb3 enforce dumpstate 
Bug: 264489270
Test: adb bugreport
Change-Id: Idb3c29ff306b825dba9422dca5f1ec1a1d65d8f4
 2023-03-13 06:26:34 +00:00
TreeHugger Robot
eecb5380e3 Merge "[SELinux] Fix hal_uwb_default dev access errors" into udc-d1-dev 2023-03-13 06:17:37 +00:00
Adam Shih
46d5345bc9 enforce hal_dumpstate_default 
Bug: 266035810
Test: adb bugreport
Change-Id: Iec0d9b7d5d9327dd7ca96ab7f4c1a26c3fde6a3e
 2023-03-13 14:10:45 +08:00
TreeHugger Robot
908501be50 Merge "enforce incidentd" into udc-dev am: 5488c59d9a 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/21981862

Change-Id: Ic5339c6d2f2948e8c60f314a3fde1c39a67134e8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-13 05:56:31 +00:00
Rex Lin
e7616e3934 [SELinux] Fix hal_uwb_default dev access errors 
Allow hal_uwb_default to access /dev/uci

Bug: 263048994
Test: http://ab/I86600010139623509
Change-Id: I6324044822f74d1f0d14cc9c6d057dce0dfcc9ee
Signed-off-by: Rex Lin <rexcylin@google.com>
 2023-03-13 05:16:30 +00:00
Wilson Sung
6b9e3f74b6 Merge changes I9868bdfd,I1085decf into udc-d1-dev 
* changes:
  Enforce insmod-sh
  Allow insmod-sh lockdown in userdebug
 2023-03-13 04:26:34 +00:00
Adam Shih
bbbc3e3926 enforce incidentd 
Bug: 264490034
Bug: 259302023
Test: adb bugreport
Change-Id: Ie77eded2b6bdd5bd993e500cf8d8d481e5fe7a57
 2023-03-13 11:52:29 +08:00
Wilson Sung
0d8ede8308 Enforce insmod-sh 
Fix: 264490091
Test: Boot-to-home without insmod-sh avc error
Change-Id: I9868bdfd8fad7ac37c8d1104fb1fab10a7e8f79a
 2023-03-10 16:25:24 +08:00
Wilson Sung
eae6bfb835 Allow insmod-sh lockdown in userdebug 
Bug: 272166723
Change-Id: I1085decf2a00597992a95996b1a2875be08ba1f1
 2023-03-10 16:23:39 +08:00
Wilson Sung
028c3dd417 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 272628174
Change-Id: Ief58f990c70fc7a9a6fa1f18ce22c1c5847acaf9
 2023-03-10 10:56:44 +08:00
Wilson Sung
aa90037844 Add insmod-sh policy 
Fix: 260366066
Change-Id: I0874c1f476b47a9ad3cee344986404958c96fd25
 2023-03-10 02:04:36 +08:00
Wilson Sung
8c535e410a Add system_ui required policy 
Bug: 264266705
Bug: 268572197
Bug: 269813282
Change-Id: I8d782a5879dd531c29328517f67245913808ae93
 2023-03-09 12:57:39 +08:00
Chih Wei Chang
455363e7c0 Merge "Revert "Add system_ui required policy"" into udc-d1-dev 2023-03-08 08:17:46 +00:00
Chih Wei Chang
9966805569 Revert "Add system_ui required policy" 
This reverts commit 5488482211.

Bug: 272204013

Reason for revert: DroidMonitor-triggered revert due to breakage https://android-build.googleplex.com/builds/quarterdeck?branch=git_udc-d1-dev&target=aosp_shiba-userdebug&lkgb=9707521&lkbb=9708227&fkbb=9708227, bug 272204013

Change-Id: Ia2d74374325d594d9dbd1e5ba8b1510f8d432e4d
 2023-03-08 08:11:30 +00:00
Wilson Sung
ee80374f9d Merge "Add system_ui required policy" into udc-d1-dev 2023-03-08 06:40:42 +00:00
Yang Qi
c8d64fb72f Add CccDkTimeSyncService for Digital Key Support for Zuma am: d8c17a3814 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zuma-sepolicy/+/21809919

Change-Id: I456973e22f9297a3d39805703f7fcb52be2f791e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-03-08 05:50:25 +00:00
Wilson Sung
a5be4a940e Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 272166423
Bug: 272166664
Bug: 272166847
Bug: 272166722
Bug: 272166827
Bug: 272166723
Test: scanBugreport
Bug: 272166423
Bug: 267714573
Bug: 272166771
Bug: 272166847
Bug: 272166722
Bug: 272166827
Bug: 272166723
Bug: 272166737
Test: scanAvcDeniedLogRightAfterReboot
Bug: 272166723
Bug: 272166787
Bug: 272166423
Bug: 267714573
Bug: 272166847
Bug: 272166987
Bug: 272166827
Change-Id: If02d479d3606b63bd43bb94c93b2108c4fafe96d
 2023-03-08 11:19:02 +08:00
Wilson Sung
5488482211 Add system_ui required policy 
Bug: 264266705
Bug: 268572197
Bug: 269813282
Change-Id: I6457f4a675d32578188c01ae581442300ac56a5b
 2023-03-08 10:58:39 +08:00
Shashank Sharma
3d765451c5 Remove firmware as same_process_hal_file 
Bug: 260522245
Bug: 262794429

Change-Id: I7d49ee7c76fbf2cdf87a2a7de4a406c356f50444
 2023-03-07 05:01:16 +00:00
Yang Qi
d8c17a3814 Add CccDkTimeSyncService for Digital Key Support for Zuma 
Test: Build and Run
Bug: 270511447
Merged-In: I0195bfe5f8eed70556891ddfeae81c486373ddbb
Change-Id: I0195bfe5f8eed70556891ddfeae81c486373ddbb
 2023-03-07 02:52:34 +00:00
TreeHugger Robot
4eab0326df Merge "Allow hal_thermal_default to read iio/odpm sysfs nodes" into udc-dev 2023-03-03 12:01:40 +00:00
Donnie Pollitz
e31ad0b306 sepolicy: Fix hal_confirmationui_default avc denials 
* Allow for dumpstate

Bug: 261933368
Bug: 264489634
Test: Ran com.google.android.selinux.pts.SELinuxTest#scanBugreport
Change-Id: Id70d2a920172e649e4497f4ea1a4ecad33963edc
Signed-off-by: Donnie Pollitz <donpollitz@google.com>
 2023-03-02 09:08:16 +00:00
Wilson Sung
d0105abe01 Add sensor boot-to-home required policy 
Test: boot-to-home
Fix: 261105336
Change-Id: I772ff7a294cc5d2448361c164d4e671a41c92c8d
 2023-03-02 02:39:15 +00:00
Wilson Sung
fc8f4f8f24 Allow hal_thermal_default to read iio/odpm sysfs nodes 
Bug: 260366399
Bug: 261651187
Bug: 264204525
Change-Id: I7358b7740f6c30bd7b05e29e931a4c11226c6253
 2023-03-01 16:21:33 +00:00
Richard Chang
3c52a9ab3b Merge "sepolicy: update init.te for zram device" into udc-dev 2023-03-01 04:28:58 +00:00
Richard Chang
ee8c7c2df2 sepolicy: update init.te for zram device 
Bug: 269221861
Bug: 270633329
Test: Boot
Change-Id: I050e9a72006dcd0b71ba1232e38e5f96bce4c967
 2023-03-01 02:04:24 +00:00
TreeHugger Robot
627e6c1648 Merge "Update bug_map" into udc-dev 2023-02-28 23:56:31 +00:00
Xu Han
fe5bb58212 Update bug_map 
Bug: 264483024
Test: Build.
Change-Id: I9a1574b5997d9ac5d26100254c7e20b81930df50
 2023-02-28 09:34:58 -08:00
Wilson Sung
546b787a40 Add SSR property access and remove obsolete denials 
Bug: 268572164
Change-Id: I5756510b2eb2696aade93dd6b15a111f5dca58ef
 2023-02-24 10:33:45 +00:00
Amy Hsu
ae4c77ebda Merge "Revise sepolicy because of refactor HbmSvManager" into udc-dev 2023-02-24 08:14:49 +00:00
Amy Hsu
c186dbd6db Revise sepolicy because of refactor HbmSvManager 
1. Set sepolicy correctly, make it the same as gs201.
2. Rename hbmsvmanager to pixeldisplayservice due to refactor.
3. Add arm_mali_platform_service for pixeldisplayservcice

Bug: 241498235
Bug: 262794939
Bug: 263185136
Bug: 264489797
Test: Verify LBE and shadow compensation functions.
      Make sure there is no avc denied.
Change-Id: I2a4bb5d6b863edc00b789fd6df8d46f90164d9f2
 2023-02-24 02:06:35 +00:00
sukiliu
362a8ac82c Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 270633329
Change-Id: Ia7af3ec3ee9c8b80e22a8eb55fd61d58b6c73980
 2023-02-24 09:59:58 +08:00
TreeHugger Robot
3d1d5e0b15 Merge "Partially revert commit e70b98af09." into udc-dev 2023-02-23 16:13:11 +00:00
Richard Chang
d207b85ab3 Merge "sepolicy: clean up tracking_denials for zram" into udc-dev 2023-02-23 07:37:28 +00:00
Ian Kasprzak
1b1fe4d3cc Partially revert commit e70b98af09. 
Remove twoshay references, with commit 9019c55645
reverted it references a non-existent file.

Bug: b/270434708
Test: Verified with go/abtd build

Reason for revert: b/270434708 - Breaks git_udc-d1-dev-plus-aosp-without-vendor builds.

Change-Id: I5705d214218107226ae3dd4959406f3ec05afa90
 2023-02-23 05:45:07 +00:00
Richard Chang
e6f6cca02a sepolicy: clean up tracking_denials for zram 
The zram SELinux errors didn't exist in recent build
(9633105, 9642683).
Remove the record in tracking_denials/init.te.

Bug: 269221861
Test: Check log
Change-Id: I4057aaf960aef885d4d894ae5dc51f93e71afd83
 2023-02-23 03:57:57 +00:00
Wilson Sung
fb2e376d26 Add chre policy 
Bug: 260522435
Bug: 261105224
Test: boot-to-home
Change-Id: Icd8f1ad497357bbbcb9e34509c736f3976ff0ac7
 2023-02-23 11:05:15 +08:00
Wilson Sung
6f141a6526 Remove camera dontaudit 
Bug: 267843409
Bug: 268226491
Change-Id: Idce5518072fc266b45c2fbc5269915b19ceb19e8
 2023-02-23 11:04:47 +08:00
Wilson Sung
328cbaaa41 Remove touch_context_service to avoid compile error 
Bug: 270157082
Change-Id: I1d5d573ddb1d7323e7c66386928074fd06cfc484
 2023-02-22 11:16:15 +08:00
Wilson Sung
bab5b72f86 Add hal_bootctl related policy 
Bug: 260522436
Bug: 264489609
Bug: 264483787
Change-Id: Iaa22899bb21ff41c1fa259830e5f49623ff8429b
 2023-02-21 19:59:04 +08:00
Wilson Sung
da09093d88 Enforce kernel domain 
Bug: 264490052
Test: boot-to-home
Change-Id: I383b689b5c26c08d66307b677e36b28f2ab6f7dd
 2023-02-21 19:29:15 +08:00
Wilson Sung
9457e5260e Temporary allow kernel access same_process_hal 
Add the access to unblock user build boot-to-home

Bug: 260522245
Change-Id: I98f77b2de4961120be9c6073afc18e12e2637e81
 2023-02-21 19:28:25 +08:00