Evolution-X-Tensor/device_google_zumapro
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
517 commits 1 branch 0 tags 4 MiB
Commit graph

133 commits

Author SHA1 Message Date
Cheng Gu
48326b2e0b Update SELinux error 
Bug: 317754251
Test: adb reboot and observe log
Change-Id: I7dcf9782ce2be632410e956871f74e874ddaf3a1
 2024-05-28 22:31:47 +00:00
Wilson Sung
b65f4dacb2 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 340369535
Bug: 338347525 
Merged-In: I0d70966f03b0207388388fbc47e45de55a7385c3
Change-Id: I0d70966f03b0207388388fbc47e45de55a7385c3
(cherry picked from commit 924e6c6cd3)
 2024-05-17 03:50:29 +00:00
Enzo Liao
e4ceb50a9c Move SELinux policies of RamdumpService and SSRestartDetector to /gs-common. 
New paths (ag/26620507):
  RamdumpService: device/google/gs-common/ramdump_app
  SSRestartDetector: device/google/gs-common/ssr_detector_app

Bug: 298102808
Design: go/sys-software-logging
Test: Manual
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:2761dbe28b294be5199aba6ee73013427e8d627f)
Merged-In: I455630b347f9f234365fec371142582d2cc0640a
Change-Id: I455630b347f9f234365fec371142582d2cc0640a
 2024-04-22 03:03:12 +00:00
Spade Lee
aac2240ca4 sepolicy: allow kernel to search vendor debugfs 
audit: type=1400 audit(1710259012.824:4): avc:  denied  { search } for  pid=128 comm="kworker/3:1" name="max77779fg" dev="debugfs" ino=24204 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_maxfg_debugfs:s0 tclass=dir permissive=0
audit: type=1400 audit(1710427790.680:2): avc:  denied  { search } for  pid=10 comm="kworker/u16:1" name="gvotables" dev="debugfs" ino=10582 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_votable_debugfs:s0 tclass=dir permissive=1
audit: type=1400 audit(1710427790.680:3): avc:  denied  { search } for  pid=211 comm="kworker/u16:4" name="google_charger" dev="debugfs" ino=16673 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_charger_debugfs:s0 tclass=dir permissive=1

Bug: 328016570
Bug: 329317898
Test: check all debugfs folders are correctly mounted
Change-Id: Ib25cc13a329b40bebe87fab43e955e2e4395de9e
Signed-off-by: Spade Lee <spadelee@google.com>
 2024-04-02 07:35:39 +00:00
derickhong
1f38fe473a Update SELinux error 
Bug: 326869289
Test: adb shell dmesg | grep avc ; adb logcat -d | grep avc
Change-Id: I57090ee64cafc5c2a9d98ec02152fdc9eb495591
 2024-03-20 07:39:32 +00:00
John Chang
46d2322311 Move display properties from tracking_denials to vendor 
Bug: 328001545
Test: Test MRR Version 2 is properly configured
Change-Id: Ib586398670b21bb88cd122647880149daa628d0d
 2024-03-08 16:32:30 +00:00
John Chang
ff239639f8 display: change vrr.enabled to xrr.version 
Bug: 328001545
Test: Test MRR Version 2 is properly configured
Change-Id: I02291bb537fe5a09ab8a1aa755426f45465883a9
 2024-03-07 22:19:51 +00:00
Treehugger Robot
4d305706a5 Merge "add dsim wakeup labels" into main 2024-02-28 03:59:20 +00:00
Peter Lin
f88ffce8c7 add dsim wakeup labels 
Bug: 321733124
test: ls sys/devices/platform/19440000.drmdsim/19440000.drmdsim.0/wakeup -Z
Change-Id: I28bc16f23478131dfecf2ad61b306ce9ae1e2767
 2024-02-27 12:59:04 +00:00
Jack Wu
85aa1cb4b1 dontaudit on dir search for vendor_charger_debugfs 
Bug: 326869335
Test: make selinux_policy
Change-Id: I22623dd1c47a431233eb6666dbe37fa2d9aa73a3
Signed-off-by: Jack Wu <wjack@google.com>
 2024-02-26 21:10:51 +08:00
Wilson Sung
348e64ecce Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 326869289
Bug: 326869335
Test: scanBugreport
Bug: 326869823
Test: scanAvcDeniedLogRightAfterReboot
Bug: 326869239
Change-Id: I8b245d769ae91c2f3f3d2dd7cfb1b8eebb83dd22
 2024-02-26 08:37:54 +00:00
Hasan Awais
3a14cdf8df Merge "Remove hal_uwb_default selinux bug map entry" into main 2024-02-21 17:35:56 +00:00
Hasan Awais
3a49506b92 Remove hal_uwb_default selinux bug map entry 
The selinux filesystem is no longer being read, so this property is no
longer needed.

Bug: 322916246
Change-Id: I48a08c7068904b25e30c59e2fe3a2dd74a274ba8
Signed-off-by: Hasan Awais <hasanawais@google.com>
 2024-02-20 09:40:09 -08:00
Wilson Sung
0ae4d6f09e dontaudit on dir search for vendor_votable_debugfs 
Bug: 305880925
Bug: 310539058
Bug: 318033504
Test: make selinux_policy
Change-Id: I5e13370fe5430f3dfbf73ccff787986fbe80f9ea
 2024-02-19 14:58:56 +08:00
Dinesh Yadav
e51c1e459c Merge "Remove permissive mode from gxp_logging service" into main 2024-02-19 03:23:09 +00:00
Treehugger Robot
bb48ecd1e2 Merge "Allow CccDkTimeSyncService to access bluetooth extension HAL" into main 2024-02-17 08:49:51 +00:00
Dinesh Yadav
b0aec773ff Remove permissive mode from gxp_logging service 
The permission issues have been resolved with the latest release.

Test:
Tested that no avc violations are seen after using the private build.

Bug: 307468752
Change-Id: I962650551c94a924f4d63a79f8a684c5440f58e9
 2024-02-07 10:37:07 +00:00
Ted Wang
b867cabc87 Allow CccDkTimeSyncService to access bluetooth extension HAL 
Bug: 308381394
Test: build and check for avc denied
Change-Id: Ic602d3caf0b0cdfb1041d339e48d4671e7150d85
 2024-01-31 02:37:19 +00:00
Wilson Sung
39a0baed3c Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 318310869
Test: scanBugreport
Bug: 322917055
Bug: 322916328
Bug: 322916246
Bug: 322917075
Test: scanAvcDeniedLogRightAfterReboot
Bug: 318310869
Change-Id: I63c0cc342af0407fab6b188e982a3ea6699f3618
 2024-01-30 07:17:49 +00:00
Treehugger Robot
d951f7cb22 Merge "gps: remove hal_gnss_default.te from tracking_denials." into main 2024-01-25 14:06:08 +00:00
James Huang
80e9176588 gps: remove hal_gnss_default.te from tracking_denials. 
Bug: b/309551158
Test: confirm no hal_gnss_default avc denied.
Change-Id: I58a1d0712abfca4686a39626de8f566a5026455c
 2024-01-25 15:58:39 +08:00
Wilson Sung
5ce22b53f3 Update error on ROM 11347994 
Bug: 322035750
Test: SELinuxUncheckedDenialBootTest
Change-Id: I204fd486291b663c1fa06090225dc3890027498b
 2024-01-23 22:22:49 +00:00
Wilson Sung
e52dfde528 Update error on ROM 11340999 
Bug: 321733124
Test: SELinuxUncheckedDenialBootTest
Change-Id: I1eca905eea9854be71926750b5d898c84c4794bd
 2024-01-22 17:45:51 +00:00
Treehugger Robot
5a084bb6ba Merge "aoc: add sysfs file entry" into main 2024-01-18 04:00:25 +00:00
mikeyuewang
ebdc5d769b Remove this tracking as the denial has been fixed by b/287683516 
Bug: 287683516

Change-Id: I9a9c7ac6d226fb6a859b69f0c4eca4857f65cf84
 2024-01-17 21:22:06 +00:00
yixuanjiang
86b073086f aoc: add sysfs file entry 
Test: Local
Bug: 314719343
Change-Id: I31e08e4f86b075f52b1483c17405074928b26f70
Signed-off-by: yixuanjiang <yixuanjiang@google.com>
 2024-01-17 18:12:27 +08:00
Allen Xu
3bfc494565 Merge "Update sepolicy for ConnectivityMonitor" into main 2024-01-12 18:52:11 +00:00
Treehugger Robot
f391978522 Merge "sepolicy: enable enforcing for hal_power_stats" into main 2024-01-11 20:56:49 +00:00
Allen Xu
1e31efbc3a Update sepolicy for ConnectivityMonitor 
Bug: 307468771
Test: v2/pixel-health-guard/device-boot-health-check-extra
Change-Id: I08caf6a8e48118151df72ad883490551af0c464c
 2024-01-11 20:18:20 +00:00
Treehugger Robot
aaaf45379c Merge "Remove system_suspend dontaudit" into main 2024-01-11 01:40:29 +00:00
Darren Hsu
31a27225de sepolicy: enable enforcing for hal_power_stats 
Bug: 307468729
Test: dumpsys android.hardware.power.stats.IPowerStats/default
Change-Id: I2522e317542e441fe9cede3e314081478f8b6158
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2024-01-10 21:13:10 +08:00
Wilson Sung
84b93cfb16 Remove system_suspend dontaudit 
Fix: 318032188
Test: make sepolicy
Change-Id: I216fb901e5cc2ffdb3906da2d88e830e29d0e476
 2024-01-10 19:08:42 +08:00
Wilson Sung
b376cb8cd1 Update error on ROM 11294806 
Bug: 319399862
Test: SELinuxUncheckedDenialBootTest
Change-Id: I99331843251adb8f994170714e6f2c7cc28f2b2b
 2024-01-10 10:49:19 +00:00
Treehugger Robot
928bbf4682 Merge "thermal: remove tracking denials for hal_thermal" into main 2024-01-08 23:01:34 +00:00
Ramya Subramanian
55d942e762 thermal: remove tracking denials for hal_thermal 
Bug: 307468692
Test: Tested thermal service with the file removed

Change-Id: Ic3f698f2be89c9ee86aa91fdcb139cfd95751c29
Signed-off-by: Ramya Subramanian <rsubr@google.com>
 2024-01-08 18:14:18 +00:00
guibing
e417775b17 zumapro: sepolicy: remove power hal denial tracker. 
Remove the power hal denial tracker.
Add the missing devfreq related configuration.

Bug: 307468758
Test: Power hal works without related avc errors.
Change-Id: I038bc7701deeada4d70ef2ed17d5db64ba5b4d03
 2024-01-05 21:58:20 +00:00
Aaron Tsai
a51aa5a582 Merge "Fix avc denied for hal_radioext_default" into main 2024-01-05 02:58:01 +00:00
Aaron Tsai
7c0879939a Fix avc denied for hal_radioext_default 
01-02 03:20:32.967   421   421 I auditd  : avc:  denied  { find } for pid=900 uid=1001 name=vendor.google.bluetooth_ext.IBTChannelAvoidance/default scontext=u:r:hal_radioext_default:s0 tcontext=u:object_r:hal_bluetooth_coexistence_service:s0 tclass=service_manager permissive=0

Bug: 318308344
Test: manual test
Change-Id: Ied0dd27d86cfc4512c08a26d02499ba9b816ed78
 2024-01-03 09:47:09 +00:00
Hung-Yeh Lee
5a8206a8e4 sepolicy: add persist.vendor.primarydisplay. to vendor_display_prop 
Copy sepolicy from zuma to fix the following avc denied:
auditd  : type=1107 audit(0.0:11): uid=0 auid=4294967295
ses=4294967295 subj=u:r:init:s0 msg='avc: denied  { set } for
property=persist.vendor.primarydisplay.op.peak_refresh_rate pid=510
uid=1000 gid=1003 scontext=u:r:hal_graphics_composer_default:s0
tcontext=u:object_r:vendor_default_prop:s0
tclass=property_service permissive=0'

Bug: 286063708
Bug: 286063029
Bug: 317754250
Test: Run VtsHalGraphicsComposer3_TargetTest
Change-Id: Ib5e83927ebebf05a640d127d9d11e94df101f224
 2024-01-03 11:58:04 +08:00
Wilson Sung
cc395b9c2b Update error on ROM 11262681 
Bug: 318308344
Test: SELinuxUncheckedDenialBootTest
Change-Id: Iafeb3ff1bc6ddeb93810bff26aff82399bcda679
 2024-01-02 03:23:04 +00:00
Treehugger Robot
fe24ab7d3f Merge "Update error on ROM 11260603" into main 2023-12-29 09:58:35 +00:00
Wilson Sung
2b26409d08 Update error on ROM 11260603 
Bug: 318033504
Test: SELinuxUncheckedDenialBootTest
Change-Id: I86190052aaaebc94f1eb7e670e1a7da312d537a3
 2023-12-29 05:04:50 +00:00
Wilson Sung
720ab6329b Update error on ROM 11259228 
Bug: 318032188
Test: SELinuxUncheckedDenialBootTest
Change-Id: I6d3f31d49cc64ee911367de6e61d5e4e1b7e280b
 2023-12-29 04:33:07 +00:00
Wilson Sung
415278abac Enforce fastbootd 
Fix: 307468887
Test: boot-to-home and flash rom
Change-Id: I11427ca4d17a83c278463cc68e4935148a0d57b6
 2023-12-27 13:52:31 +08:00
Treehugger Robot
7f7d16f2e7 Merge "Enforce servicemanager" into main 2023-12-26 23:19:40 +00:00
Treehugger Robot
4998611c70 Merge "Enforce sysUI" into main 2023-12-26 23:19:04 +00:00
Treehugger Robot
594a751d77 Merge "label Extcon files" into main 2023-12-26 23:17:40 +00:00
Wilson Sung
744d309e44 Add wakeup node 
Fix: 308381292
Test: make sepolicy
Change-Id: I32a45a3b862ffbe9f53f88ca97bdad52e5678931
 2023-12-26 17:38:34 +00:00
Wilson Sung
050406d4bc Enforce servicemanager 
Fix: 307468945
Test: make sepolicy
Change-Id: I2bad0fcac1d7a6388fb9790bcc9fcbe4cdb31a4a
 2023-12-26 21:32:08 +08:00
Wilson Sung
2dad12b041 Enforce sysUI 
Fix: 307468867
Test: boot-to-home
Change-Id: Ie6d28c523e905bc850ab8ce0fe22fd51b762bb80
 2023-12-26 12:48:10 +00:00