Evolution-X-Tensor/device_google_zumapro
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
483 commits 1 branch 0 tags 4 MiB
Commit graph

483 commits

This branch
This branch
All branches
Author SHA1 Message Date
Treehugger Robot
ab36ea0ced Merge "Move kernel from legacy to vendor" into main 2023-12-18 23:22:26 +00:00
Treehugger Robot
b5908f969a Merge "sepolicy: allow hal_power_stats to read sysfs_edgetpu" into main 2023-12-18 10:41:05 +00:00
Wilson Sung
b818c2835e Merge "Enforce vendor_init and allow tee and display access" into main 2023-12-18 10:09:15 +00:00
Wilson Sung
c90cff2628 Merge "Enforce system_server" into main 2023-12-18 10:09:12 +00:00
Darren Hsu
38c42d88ac sepolicy: allow hal_power_stats to read sysfs_edgetpu 
Bug: 316238807
Test: dumpsys android.hardware.power.stats.IPowerStats/default
Change-Id: I5b146cf8bf6fc7b6d135a38a568b016d1e125f2a
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2023-12-18 18:00:06 +08:00
Treehugger Robot
a3d47e9c02 Merge "Remove dontaudit hal_usb_impl" into main 2023-12-18 08:24:16 +00:00
Wilson Sung
cbfa33fd92 Move kernel from legacy to vendor 
Bug: 312143882
Test: make sepolicy
Change-Id: I2ceb675b124aeeca2d94dd9c6095f0026df5a4bf
 2023-12-18 07:56:26 +00:00
Wilson Sung
c8be909cd1 Enforce system_server 
Fix: 307468690
Fix: 308381611
Test: make selinux_policy
Change-Id: Ie5044b8b18077d4077b7c6c8a16544498368a7d2
 2023-12-18 04:48:14 +00:00
Wilson Sung
3d57d2da26 Enforce vendor_init and allow tee and display access 
Fix: 307468733
Fix: 308381748
Fix: 312372803
Test: make selinux_policy
Change-Id: Ic9c987e34bf8337e9a743371a00fd910442fab10
 2023-12-18 04:42:33 +00:00
KRIS CHEN
7d98399d40 Merge "fingerprint: fix SELinux denials" into main 2023-12-18 03:27:57 +00:00
Chien Kun Niu
d728e700c5 Remove dontaudit hal_usb_impl 
The log does not show anymore.
12-04 08:13:49.098   415   415 I auditd  : avc:  denied  { find }
for pid=841 uid=1000 name=android.frameworks.stats.IStats/default
scontext=u:r:hal_usb_impl:s0 tcontext=u:object_r:fwk_stats_service:s0
tclass=service_manager permissive=0

Bug: 314719241
Test: SELinuxUncheckedDenialBootTest

Change-Id: I969dd0cb4d98b14253c74379fed59ac4748c1a5e
Signed-off-by: Chien Kun Niu <rickyniu@google.com>
 2023-12-15 17:43:39 +08:00
chenkris
a7c90de740 fingerprint: fix SELinux denials 
Fix following AVC denials:
1. Could not enable service: File /vendor/bin/hw/android.hardware.biometrics.fingerprint-service.goodix(labeled "u:object_r:vendor_file:s0") has incorrect label or no domain transition from u:r:init:s0 to another SELinux domain defined
2. Could not start service 'vendor.fps_hal' as part of class 'late_start': File /vendor/bin/hw/android.hardware.biometrics.fingerprint@2.1-service.goodix(labeled "u:object_r:vendor_file:s0") has incorrect label or no domain transition from u:r:init:s0 to another SELinux domain defined.
3. avc:  denied  { ioctl } for  path="/dev/goodix_fp" dev="tmpfs" ino=1499 ioctlcmd=0x6701 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=1

Bug: 315737323
Test: boot with no relevant error
Change-Id: Ideeac108b8470232a258254437086451550fcc8d
 2023-12-15 07:58:49 +00:00
Wilson Sung
d4ba73d604 Merge "Enforce kernel" into main 2023-12-14 06:09:26 +00:00
Treehugger Robot
8eeb0e8997 Merge "Update error on ROM 11213495" into main 2023-12-14 05:31:05 +00:00
Wilson Sung
8f63998c24 Merge "Move dump_gsa to vendor" into main 2023-12-14 03:57:13 +00:00
Wilson Sung
a74a2a8c46 Update error on ROM 11213495 
Bug: 316238807
Test: SELinuxUncheckedDenialBootTest
Change-Id: I07a1655ea915c3a189d6f0e2b2460c8f30db6c01
 2023-12-14 02:44:03 +00:00
Wilson Sung
31e85f7c60 Merge "Enforce network_stack" into main 2023-12-13 11:13:15 +00:00
Aaron Tsai
cd447908ec Add permission for setting gril property 
08-23 16:41:13.524     1     1 I auditd  : type=1107 audit(0.0:404): uid=0 auid=4294967295 ses=4294967295 subj=u:r:init:s0 msg='avc:  denied  { set } for property=vendor.gril.recovery.count pid=1024 uid=1001 gid=1001 scontext=u:r:hal_radioext_default:s0 tcontext=u:object_r:vendor_default_prop:s0 tclass=property_service permissive=1'

Bug: 203824024
Test: manual test
Change-Id: I0bc67815fde6651e54ea422e5fd3622846bb3c56
 2023-12-11 09:50:51 +00:00
Wilson Sung
3155bae89e Merge "Update error on ROM 11189630" into main 2023-12-11 04:46:58 +00:00
Wilson Sung
7ebbc9cc66 Enforce network_stack 
Fix: 307468731
Test: make selinux_policy
Change-Id: I4ddea23199ea7c595d1ba22c8a33aca899275930
 2023-12-11 04:46:38 +00:00
Wilson Sung
42505b5257 Enforce kernel 
Fix: 307468756
Test: boot and no related avc error
Change-Id: I284531a465cbeb264a04613aa0534cdb7f16dae2
 2023-12-11 04:06:26 +00:00
Treehugger Robot
b179da365f Merge "Remove hal_uwb_default tracking denial" into main 2023-12-11 02:56:23 +00:00
Wilson Sung
f2df883237 Update error on ROM 11189630 
Bug: 315105050
Test: SELinuxUncheckedDenialBootTest
Change-Id: I41998d0c1a7dc153372692a6a0d0559299ae90d3
 2023-12-11 02:37:49 +00:00
Hasan Awais
5fcda36d97 Remove hal_uwb_default tracking denial 
Bug: 307468767
Test: avc denials not found with UWB HAL
Change-Id: I2fb9f261d7ae21834acbaaf80dbab8a5ab41aa75
Signed-off-by: Hasan Awais <hasanawais@google.com>
 2023-12-08 09:15:11 -08:00
Treehugger Robot
13f760e70b Merge "allow RILD to access modem status property" into main 2023-12-08 09:48:29 +00:00
Treehugger Robot
c4e14e8ffa Merge "Add insmod-sh policy" into main 2023-12-08 01:09:35 +00:00
Donnie Pollitz
32d3293bfa Remove tee tracking denial 
Bug: 312894027
Bug: 314052376
Test: avc denials not found on boot: see b/312894027
Change-Id: I20c42056948f805e3eb7c6087cf7fde863f78d4e
Signed-off-by: Donnie Pollitz <donpollitz@google.com>
 2023-12-07 13:07:17 +00:00
Treehugger Robot
3b47e80f3a Merge "Suppress avc error log on debugfs's usb folder." into main 2023-12-07 06:46:35 +00:00
Wilson Sung
bf85d96523 Add insmod-sh policy 
Fix: 307468923
Fix: 312372936
Test: make selinux_policy
Change-Id: Icd42c4a74b44b7e593dc7c0598f3d23c3f251a2c
 2023-12-07 04:52:04 +00:00
Treehugger Robot
9c9376de63 Merge "Remove dump_wlan" into main 2023-12-06 23:09:15 +00:00
David Drysdale
ff861c8ab7 Merge "Add Secretkeeper HAL" into main 2023-12-06 10:21:03 +00:00
Wilson Sung
624effa7bb Remove dump_wlan 
Bug: 312143882
Test: make selinux_policy
Change-Id: I9e3cabf93c0d28a7d82ab367eff6c7daecf83131
 2023-12-06 09:15:36 +00:00
Wilson Sung
10eea971da Merge "Move charger_vendor from legacy to vendor" into main 2023-12-06 08:13:34 +00:00
Wilson Sung
8fc7e53bcb Merge "Move fsck rule to vendor" into main 2023-12-06 08:13:20 +00:00
Treehugger Robot
7ba631321f Merge "Move dumpstate to vendor" into main 2023-12-06 06:22:10 +00:00
Chien Kun Niu
7bb1437142 Suppress avc error log on debugfs's usb folder. 
The XHCI driver in kernel will write debugging information to DebugFS on
some USB host operations (for example: plugging in a USB headphone). We
are not using those information right now.

Bug: 311088739
Test: No error when plugging a USB headphone in.
Change-Id: I3e13d117ca6eb9c31c3eb67be87fcea684817911
Signed-off-by: Chien Kun Niu <rickyniu@google.com>
 2023-12-06 14:22:03 +08:00
Treehugger Robot
12f85dd7fd Merge "Move e2fs to vendor" into main 2023-12-06 06:20:49 +00:00
Treehugger Robot
2bc57f5c7e Merge "Move chre from legacy to vendor" into main 2023-12-06 06:19:31 +00:00
Treehugger Robot
0af7cc2cc4 Merge "Move con_monitor_app from legacy to vendor" into main 2023-12-06 06:19:30 +00:00
Treehugger Robot
1bd9d75f29 Merge "Allow audioserver access /dev/snd/pcmC0D0p" into main 2023-12-06 06:10:51 +00:00
Treehugger Robot
8d6c7dea5d Merge "Move bootanim to vendor" into main 2023-12-06 06:10:51 +00:00
Wilson Sung
79ac8029f8 Merge "Remove uwb app" into main 2023-12-06 02:32:11 +00:00
Wilson Sung
f61be88627 Merge "Move uwb service to vendor" into main 2023-12-06 02:31:23 +00:00
virkumar
379c836acd Allow pixelntnservice accessing SubscriptionManager 
Bug: 312575569
Test: manually check if there is any AVC denied.
Change-Id: Ic366fbc2f3a58c343fa8d28f82894d798ee2b0c7
 2023-12-05 12:10:36 +00:00
Rios Kao
94549b69f4 Merge "audio: move related sepolicy of audio to gs-common" into main 2023-12-05 11:31:46 +00:00
Wilson Sung
5ab436f824 Move fsck rule to vendor 
Bug: 312143882
Test: make selinux_policy
Change-Id: I3d27f928e0c02020d0028a0449f18467ce2a4391
 2023-12-05 11:29:51 +00:00
Wilson Sung
8b0e8aa04c Move e2fs to vendor 
Bug: 312143882
Test: make selinux_policy
Change-Id: Iba2258335ffb2866624d65966e7eed9235cd889d
 2023-12-05 11:25:17 +00:00
Wilson Sung
007718bd55 Move dumpstate to vendor 
Bug: 312143882
Test: make selinux_policy
Change-Id: I9f1a46b5c4c472a1f4ab01a91b17741bfc152ca9
 2023-12-05 11:14:52 +00:00
Wilson Sung
210b1492bf Move dump_gsa to vendor 
Bug: 312143882
Test: make selinux_policy
Change-Id: I090d7e1bb0b69aa2d06b19c7d71998498a490e7f
 2023-12-05 11:10:51 +00:00
Wilson Sung
0090cdb912 Move con_monitor_app from legacy to vendor 
Bug: 312143882
Test: make selinux_policy
Change-Id: I37a4d1e496d8c2a89506e712a01a66124f672c56
 2023-12-05 10:52:49 +00:00