Evolution-X-Tensor/device_google_zumapro
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
727 commits 1 branch 0 tags 4 MiB
Commit graph

727 commits

This branch
This branch
All branches
Author SHA1 Message Date
KRIS CHEN
522514f320 Merge "add selinux permission for fps_touch_handler wakeup" into main 2024-10-07 08:00:42 +00:00
chenkris
537bf14fe6 add selinux permission for fps_touch_handler wakeup 
Fix the following avc denial:
avc:  denied  { read } for  name="wakeup96" dev="sysfs" ino=101698 scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

Bug: 371877715
Test: ls -lZ /sys/devices/platform/odm//odm:fps_touch_handler/wakeup
Flag: EXEMPT NDK
Change-Id: I9aff36eaaec914c7a9b4939353fe88f5c0565799
 2024-10-07 06:36:52 +00:00
Nicole Lee
3c83ed0f7c Fix modem_logging_control sepolicy error 
avc: denied  { call } for  scontext=u:r:modem_logging_control:s0 tcontext=u:r:servicemanager:s0 tclass=binder permissive=0
avc: denied  { find } for pid=1124 uid=1000 name=vendor.samsung_slsi.telephony.hardware.oemservice.IOemService/dm0 scontext=u:r:modem_logging_control:s0 tcontext=u:object_r:hal_vendor_modem_logging_service:s0 tclass=service_manager permissive=0

Bug:356025857
Test:Start modem logging correctly
Flag: EXEMPT bug fix
Change-Id: I0de9622957d7b7b756b178153d63e796bf45e856
 2024-10-06 17:05:16 +00:00
Mike McTernan
f43ae7b448 Revert "sepolicy:tracking_denials: add btlinux vendor_aoc_prop" 
This reverts commit 55bd5b089d.

Reason for revert: Underlying bug fixed

Flag: EXEMPT bug fix
Bug: 353262026
Change-Id: Id04ffeb508ea7450449c0934bec646e8f7f1356f
 2024-10-04 09:00:36 +00:00
Yen-Chao Chen
693260c964 remove b/350830796 and b/350830680 from bug map 
Bug: 350830796
Bug: 350830680
Test: build pass
Flag: EXEMPT bugfix
Change-Id: Ic3c163ce4dd6b97289ec22f97a0c87052b049ea4
Signed-off-by: Yen-Chao Chen <davidycchen@google.com>
 2024-09-30 09:24:36 +00:00
Treehugger Robot
0a301c6127 Merge "Allow hal_fingerprint_default to access sysfs_aoc_udfps" into main 2024-09-30 09:07:14 +00:00
Leo Hsieh
ac26d97317 Allow hal_fingerprint_default to access sysfs_aoc_udfps 
Fix the following avc denial:
avc:  denied  { search } for  name="17000000.aoc" dev="sysfs" ino=26962 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc:s0 tclass=dir permissive=1
avc:  denied  { write } for  name="udfps_set_clock_source" dev="sysfs" ino=110484 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc:s0 tclass=file permissive=1
avc:  denied  { read } for  name="udfps_get_disp_freq" dev="sysfs" ino=110486 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc:s0 tclass=file permissive=1
avc:  denied  { write } for  name="udfps_set_clock_source" dev="sysfs" ino=109423 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc_udfps:s0 tclass=file permissive=0

Bug: 357976286
Test: Verify fingerprint HAL process can read/write to the sysfs node.
Flag: EXEMPT NDK
Change-Id: Ia8d6288812ef47dad2018d384f43374da7005a4a
 2024-09-30 08:44:07 +00:00
YiKai Peng
bf729b7266 Update SELinux error 
solution: Ie9f8fc5cce8e62b06931b77aa8cd16a3c9516fb5

Test: NA
Bug: 350830879
Flag: EXEMPT bugfix
Change-Id: I390af5bde405dc35f2cf37163975a851250c7dd2
Signed-off-by: YiKai Peng <kenpeng@google.com>
 2024-09-27 05:11:22 +00:00
Feiyu Chen
80af57220f Merge "Remove b/340369535 hal_audio_default from bug map" into main 2024-09-27 00:41:38 +00:00
Feiyu Chen
a0407eaeae Remove b/340369535 hal_audio_default from bug map 
It's fixed 4 months ago

Bug: 340369535
Flag: DOCS_ONLY
Change-Id: If4a6f41703686620dd9614a5fbcbf837127c3173
 2024-09-26 19:24:00 +00:00
Xiaofan Jiang
4c1f2555d0 Merge "modem_svc: update sepolicy for UMI" into main 2024-09-26 18:12:25 +00:00
Treehugger Robot
abb1298206 Merge "Fix error in systemui when toggling airplane mode" into main 2024-09-26 16:11:38 +00:00
weichinweng
644a742ac7 Remove SELinux error tracing bug 
Bug: 350830390
Bug: 350830756
Bug: 350830758
Test: None
Change-Id: Ib33ceebb66573dbb38c87b120daa481b3756090d
 2024-09-26 07:51:52 +00:00
Xiaofan Jiang
81f027f9a1 modem_svc: update sepolicy for UMI 
Bug: 357139752

09-12 14:58:18.412 21402 21402 W shared_modem_pl: type=1400 audit(0.0:445): avc:  denied  { write } for  name="modem_svc_socket" dev="dm-53" ino=55074 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=0

Flag: EXEMPT sepolicy change only

Change-Id: I0f465e6a3039cc9781142c2b0f3fc433eaa1c9dc
 2024-09-25 23:32:04 +00:00
Wilson Sung
a59097a64a Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 369539751
Test: scanBugreport
Bug: 369539798
Bug: 369540515
Flag: EXEMPT NDK
Change-Id: Ib294a4c50801ddbd791ff3d05fe332f70bf17283
 2024-09-25 12:46:13 +00:00
Wilson Sung
ad0fc36b80 Fix error in systemui when toggling airplane mode 
avc:  denied  { read } for  name="u:object_r:radio_cdma_ecm_prop:s0" dev="tmpfs" ino=321 scontext=u:r:systemui_app:s0:c3,c257,c512,c768 tcontext=u:object_r:radio_cdma_ecm_prop:s0 tclass=file

Bug: 197722115
Bug: 359381748
Test: make selinux_policy
Flag: EXEMPT bugfix
Change-Id: I56021bacf311c7ce7e7e2f2b44b2078cedc16f1c
 2024-09-25 08:39:17 +00:00
Nina Chen
1ded01dd86 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 369475712
Flag: EXEMPT NDK
Change-Id: Ib2752c70f24cd0ea35b13836556dc634d2721413
 2024-09-25 06:30:45 +00:00
Tej Singh
0507349a4b Make android.framework.stats-v2-ndk app reachable 
For libedgetpu

Test: TH
Bug: 354763040
Flag: EXEMPT bugfix
Change-Id: Id4f43ba150bd476426ace22c7d866ee87d5777a0
 2024-09-20 21:41:23 -07:00
Treehugger Robot
a1a07140ce Merge "Update SELinux error" into main 2024-09-20 10:12:17 +00:00
chenkris
ab3bd433f8 Allow fingerprint to access /dev/fth_fd 
Fix the following avc denial:
avc:  denied  { open } for  path="/dev/fth_fd" dev="tmpfs" ino=1575 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=1

Bug: 368517769
Test: enroll and authenticate fingerprint.
Change-Id: I46e59d0fb4526586ce6e95e1d715b22e08b4347d
 2024-09-20 09:15:44 +00:00
Nina Chen
2a4cb7b0a3 Update SELinux error 
Test: scanBugreport
Bug: 368188020
Test: scanAvcDeniedLogRightAfterReboot
Bug: 368187536
Flag: EXEMPT NDK
Change-Id: I0cb8cf650332bf2d518871f87c2175a4f3a20678
 2024-09-19 04:07:52 +00:00
Prochin Wang
90453768c7 Change vendor_fingerprint_prop to vendor_restricted_prop 
This is to allow the fingerprint HAL to access the property.

Bug: 366105474
Flag: build.RELEASE_PIXEL_BOOST_DATALAYER_PSA_ENABLED
Test: mm
Change-Id: Iba81a714af741edabdb587d8e5f9d6060dd133c5
 2024-09-16 02:12:26 +00:00
Nina Chen
2c4cebf4d5 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 366116096
Change-Id: I202f9031b89dbfbbce9d7fda6f8f50120df1698f
 2024-09-12 14:24:29 +08:00
Neo Yu
696b8a5777 Merge "Move sepolicy about hal_radioext_default to gs-common" into main 2024-09-06 01:41:13 +00:00
Wilson Sung
42fee8809a Move euiccpixel_app to vendor 
Bug: 312143882
Test: make selinux_policy
Flag: EXEMPT sepolicy refactor
Change-Id: I0f6ac76860c90b8022a85cafb80350a708d278c1
 2024-09-04 15:10:03 +00:00
Treehugger Robot
c5a02b45d4 Merge "Allow systemui_app to set 'debug.tracing.desktop_mode_visible_tasks' system property" into main 2024-09-04 12:20:22 +00:00
Ben Murdoch
88ed5f562f Allow systemui_app to set 'debug.tracing.desktop_mode_visible_tasks' system property 
See also: Iad8dc7a66765856ee7affb707f2dba6c1bbfbf49

Bug: 363893429
Flag: EXEMPT, SEPolicy
Test: Verified on device.
Change-Id: I6c68f97a7d42e635cadd2380cce7c64e812c1ffd
 2024-09-04 09:39:13 +00:00
Randall Huang
21194d2dc3 storage: move storage related device type to common folder 
Bug: 364225000
Test: forrest build
Change-Id: I3fb2a9a46d00ac27931ee8c1ad7b3ceef0920cdb
Signed-off-by: Randall Huang <huangrandall@google.com>
 2024-09-04 10:44:29 +08:00
Attis Chen
2f8ab31157 Merge "Label sysfs node power_mode as sysfs_display." into main 2024-09-02 04:54:18 +00:00
Neo Yu
d5626145f3 Move sepolicy about hal_radioext_default to gs-common 
Bug: 363665676
Test: verify with test roms
Flag: EXEMPT sepolicy refactor
Change-Id: I618742012138123329ae47c05c958e77f5573956
 2024-09-01 14:25:00 +08:00
Nattharat Jariyanuntanaet
11c0bf5839 Merge "Update sepolicy for nfc antenna selftest values" into main 2024-08-30 05:06:06 +00:00
KRIS CHEN
e1c773a1e5 Merge "Allow fingerprint to access sysfs_lhbm" into main 2024-08-29 08:40:44 +00:00
chenkris
dbc540c147 Allow fingerprint to access sysfs_lhbm 
Fix following avc denail:
android.hardwar: type=1400 audit(0.0:17): avc:  denied  { write } for  name="local_hbm_delay_frames" dev="sysfs" ino=83619 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_lhbm:s0 tclass=file permissive=0

Bug: 362149568
Test: enroll and authenticate fingerprint
Change-Id: I8c4b18b39fa5c391e9773c7780afe9e0de16e2a9
 2024-08-29 05:08:49 +00:00
Wilson Sung
b5d284c3b5 Update SELinux error 
Test: scanBugreport
Bug: 361726331
Flag: EXEMPT bugFix
Change-Id: Ib42816834dbb8258d5528a1c885a9a0945fe82d1
 2024-08-23 09:49:29 +00:00
Nattharat Jariyanuntanaet
4599e2be44 Update sepolicy for nfc antenna selftest values 
Allow persist.vendor.nfc.antenna. to be vendor public values for the NFC
companion app to access

avc:  denied  { read } for  name="u:object_r:vendor_nfc_antenna_prop:s0" dev="tmpfs" ino=414 scontext=u:r:untrusted_app:s0:c79,c257,c512,c768 tcontext=u:object_r:vendor_nfc_antenna_prop:s0 tclass=file permissive=0 app=com.google.android.apps.internal.nfcassistancetool

Bug: 361050657
Test: m selinux_policy
Flag: NONE add permission
Change-Id: I0e7c3580e4df332fa3d14c939eb5e588f7600601
 2024-08-23 02:42:23 +00:00
Joen Chen
e584e43da5 Merge "Label frame_interval and expected_present_time as sysfs_display" into main 2024-08-19 04:53:58 +00:00
Xiaofan Jiang
69e2169248 Merge "Revert^2 "modem_svc: update sepolicy for UMI"" into main 2024-08-15 20:44:27 +00:00
Xiaofan Jiang
5e80ce8f29 Revert^2 "modem_svc: update sepolicy for UMI" 
4cc3948d52

Change-Id: I54b2b463cc98b900eb3c82d8af65efb4e3b43365
 2024-08-15 19:26:21 +00:00
Priyanka Advani (xWF)
e8c57a7c6a Merge "Revert "modem_svc: update sepolicy for UMI"" into main 2024-08-15 18:30:35 +00:00
Priyanka Advani (xWF)
4cc3948d52 Revert "modem_svc: update sepolicy for UMI" 
Revert submission 28762313

Reason for revert: Droidmonitor created revert due to b/360059249.

Reverted changes: /q/submissionid:28762313

Change-Id: I6f4407caef36b9d86f9f5246900eb30b45504da3
 2024-08-15 16:16:12 +00:00
Wilson Sung
36d0a8ffc8 Update SELinux error 
Test: SELinuxUncheckedDenialBootTest
Bug: 360060705
Test: scanBugreport
Bug: 360060680
Test: scanAvcDeniedLogRightAfterReboot
Bug: 360060705
Flag: EXEMPT bugFix
Change-Id: Ia71aabae1c8bb6ad8b6d9cbeb925821c2612e116
 2024-08-15 09:25:37 +00:00
Xiaofan Jiang
cf6aa47742 Merge "modem_svc: update sepolicy for UMI" into main 2024-08-15 04:01:13 +00:00
Xiaofan Jiang
c765607120 modem_svc: update sepolicy for UMI 
Bug: 357139752

[   68.189198] type=1400 audit(1722986580.568:59): avc:  denied  { unlink } for  comm="binder:892_2" name="modem_svc_socket" dev="dm-52" ino=20239 scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=1
[   68.189448] type=1400 audit(1722986580.568:60): avc:  denied  { create } for  comm="binder:892_2" name="modem_svc_socket" scontext=u:r:modem_svc_sit:s0 tcontext=u:object_r:radio_vendor_data_file:s0 tclass=sock_file permissive=1

Flag: EXEMPT sepolicy

Change-Id: Ifb8acf20628b5c4c72c1c429216dcfac9d0eda27
 2024-08-15 03:52:58 +00:00
Treehugger Robot
1e60b2a664 Merge "fix bipchmgr sepolicy" into main 2024-08-14 02:28:12 +00:00
Tim Lin
89db879e0a fix bipchmgr sepolicy 
08-13 17:12:29.544   410   410 I auditd  : type=1400 audit(0.0:4): avc:  denied  { call } for  comm="servicemanager" scontext=u:r:servicemanager:s0 tcontext=u:r:bipchmgr:s0 tclass=binder permissive=0

Bug: 359428163
Change-Id: I49d9b02b0913b36a1cea7cf05ff2b61bee1d551f
Test: SELinuxUncheckedDenialBootTest
Flag: EXEMPT bugfix
 2024-08-13 14:27:46 +00:00
attis
99c09bbbba Label sysfs node power_mode as sysfs_display. 
Label power_mode to sysfs_panel to let it be allowed in dumpstate.

avc log:
08-07 18:44:42.192 21635 21635 W dump_display: type=1400 audit(0.0:30): avc:  denied  { read } for  name="power_mode" dev="sysfs" ino=83607 scontext=u:r:dump_display:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 bug=b/322917055

Test: ls -Z, adb bugreport.
Flag: EXEMPT bugfix
Bug: 358505990
Change-Id: I4aa8c13e7fb875e67457a15ea32caaf2ce422039
Signed-off-by: attis <attis@google.com>
 2024-08-12 10:53:54 +00:00
Joen Chen
e8d646b5e6 Label frame_interval and expected_present_time as sysfs_display 
Bug: 330392550
Flag: EXEMPT bugfix
Test: Check the files label by "adb shell ls -Z"
Change-Id: Iaf8a32671bce035f5c82bd1b34b81c433638ac39
 2024-08-12 06:37:33 +00:00
mikeyuewang
2ce93afc02 Grant the MDS assess the OemRil service AIDL interface. 
avc deny:
avc:  denied  { find } for pid=12125 uid=10269 name=vendor.samsung_slsi.telephony.hardware.radioExternal.IOemSlsiRadioExternal/default scontext=u:r:modem_diagnostic_app:s0:c512,c768 tcontext=u:object_r:hal_vendor_radio_external_service:s0 tclass=service_manager permissive=0
2024-08-09 19:48:22.634 12125-12138 ServiceManager          com.google.mds                       E

Bug: 357488411
Change-Id: I0d1381a7f63679880cdeffe5fe982007691d86fe
 2024-08-09 19:49:15 +00:00
Donnie Pollitz
cb18bb48d5 trusty: Allow linking/read tdp and td 
Background:
* storageproxyd needs to be able to create and read symlinks associated
  with TDP and TD.

08-07 08:13:44.868   750   750 W binder:750_2: type=1400 audit(0.0:18): avc:  denied  { create } for  name="0" scontext=u:r:tee:s0 tcontext=u:object_r:persist_ss_file:s0 tclass=lnk_file permissive=0
08-07 07:35:19.396   755   755 W binder:755_2: type=1400 audit(0.0:7): avc:  denied  { read } for  name="0" dev="sda1" ino=15 scontext=u:r:tee:s0 tcontext=u:object_r:persist_ss_file:s0 tclass=lnk_file permissive=0
08-07 08:34:24.956   742   742 W binder:742_2: type=1400 audit(0.0:8): avc:  denied  { read } for  name="persist" dev="dm-52" ino=406 scontext=u:r:tee:s0 tcontext=u:object_r:tee_data_file:s0 tclass=lnk_file permissive=0

Flag: EXEMPT resource only update
Bug: 357815590
Test: Tested by purging device and verifying fresh device
Change-Id: Ib239534bfb28d05de14095e84961ff0f84cde68d
Signed-off-by: Donnie Pollitz <donpollitz@google.com>
 2024-08-07 08:41:32 +00:00
Treehugger Robot
cae1a2aba4 Merge "allow power hal to access vendor_mm files" into main 2024-08-05 02:55:04 +00:00