Evolution-X-Tensor/device_google_zumapro
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
713 commits 1 branch 0 tags 4 MiB
Commit graph

102 commits

Author SHA1 Message Date
Leo Hsieh
ac26d97317 Allow hal_fingerprint_default to access sysfs_aoc_udfps 
Fix the following avc denial:
avc:  denied  { search } for  name="17000000.aoc" dev="sysfs" ino=26962 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc:s0 tclass=dir permissive=1
avc:  denied  { write } for  name="udfps_set_clock_source" dev="sysfs" ino=110484 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc:s0 tclass=file permissive=1
avc:  denied  { read } for  name="udfps_get_disp_freq" dev="sysfs" ino=110486 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc:s0 tclass=file permissive=1
avc:  denied  { write } for  name="udfps_set_clock_source" dev="sysfs" ino=109423 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_aoc_udfps:s0 tclass=file permissive=0

Bug: 357976286
Test: Verify fingerprint HAL process can read/write to the sysfs node.
Flag: EXEMPT NDK
Change-Id: Ia8d6288812ef47dad2018d384f43374da7005a4a
 2024-09-30 08:44:07 +00:00
Attis Chen
2f8ab31157 Merge "Label sysfs node power_mode as sysfs_display." into main 2024-09-02 04:54:18 +00:00
chenkris
dbc540c147 Allow fingerprint to access sysfs_lhbm 
Fix following avc denail:
android.hardwar: type=1400 audit(0.0:17): avc:  denied  { write } for  name="local_hbm_delay_frames" dev="sysfs" ino=83619 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:sysfs_lhbm:s0 tclass=file permissive=0

Bug: 362149568
Test: enroll and authenticate fingerprint
Change-Id: I8c4b18b39fa5c391e9773c7780afe9e0de16e2a9
 2024-08-29 05:08:49 +00:00
attis
99c09bbbba Label sysfs node power_mode as sysfs_display. 
Label power_mode to sysfs_panel to let it be allowed in dumpstate.

avc log:
08-07 18:44:42.192 21635 21635 W dump_display: type=1400 audit(0.0:30): avc:  denied  { read } for  name="power_mode" dev="sysfs" ino=83607 scontext=u:r:dump_display:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 bug=b/322917055

Test: ls -Z, adb bugreport.
Flag: EXEMPT bugfix
Bug: 358505990
Change-Id: I4aa8c13e7fb875e67457a15ea32caaf2ce422039
Signed-off-by: attis <attis@google.com>
 2024-08-12 10:53:54 +00:00
Joen Chen
e8d646b5e6 Label frame_interval and expected_present_time as sysfs_display 
Bug: 330392550
Flag: EXEMPT bugfix
Test: Check the files label by "adb shell ls -Z"
Change-Id: Iaf8a32671bce035f5c82bd1b34b81c433638ac39
 2024-08-12 06:37:33 +00:00
Carlos Rodriguez
dd5b70f378 DisplayPort Stats: add sysfs access permission on Zumapro devices 
07-25 14:13:16.736  5784  5784 W pixelstats-vend: type=1400 audit(0.0:21): avc:  denied  { read } for  name="fec_dsc_supported" dev="sysfs" ino=82516 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-25 14:13:16.736  5784  5784 W pixelstats-vend: type=1400 audit(0.0:22): avc:  denied  { read } for  name="fec_dsc_not_supported" dev="sysfs" ino=82517 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-25 14:13:16.736  5784  5784 W pixelstats-vend: type=1400 audit(0.0:23): avc:  denied  { read } for  name="max_res_other" dev="sysfs" ino=82515 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0
07-25 14:13:16.736  5784  5784 W pixelstats-vend: type=1400 audit(0.0:24): avc:  denied  { read } for  name="max_res_1366_768" dev="sysfs" ino=82505 scontext=u:r:pixelstats_vendor:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Bug: 343602691
Bug: 317486088

Flag: EXEMPT bugfix
Test: Android built and flashed and error is gone
Change-Id: I594536581ea468d40c9153bdc1bdd6b1ab7282fd
 2024-07-25 21:14:55 +00:00
Roy Luo
71d51ce40a Merge "Add xhci-hcd-exynos.7 wakeup paths for suspend service" into main 2024-07-17 01:23:23 +00:00
Roy Luo
d1ad140faf Add xhci-hcd-exynos.7 wakeup paths for suspend service 
Bug: 334189230
Test: verified on device
Change-Id: I0adcbe0bb1aff8ff4442c16bb733603ad8c012cf
Signed-off-by: Roy Luo <royluo@google.com>
 2024-07-16 19:49:52 +00:00
Vishvam Mazumdar
88e0059ef0 Merge "Add SELinux policy to allow CPU Idle Histogram Stats in dumpstate." into main 2024-07-10 21:41:10 +00:00
Vishvam Mazumdar
d6b8239e73 Add SELinux policy to allow CPU Idle Histogram Stats in dumpstate. 
This change is to allow the CPU Idle Histogram Stats to be dumped in
bugreports so that there is more insight into the idle behavior of
devices in the field.

Test: build/flash
Test: adb bugreport
Bug: 344908619
Flag: EXEMPT bugfix
Change-Id: If19b9471cf91ddc6e16347e7a4ea18d3298783d5
Signed-off-by: Vishvam Mazumdar <vmazumdar@google.com>
 2024-07-10 21:39:23 +00:00
Jeremy DeHaan
b3d863d552 Allow HWC to access frame_rate node 
Flag: EXEMPT bugfix
Bug: 346461765
Change-Id: Id7b3195e76cdce3e612eb9c9d177af24145e70a2
Signed-off-by: Jeremy DeHaan <jdehaan@google.com>
 2024-07-04 19:47:10 +00:00
Jack Wu
ee58427ea3 add permission for rt9471 sysfs 
Bug: 347914940
Test: adb bugreport
Flag: EXEMPT bugfix
Change-Id: I155c58d857f676fc3a2ff6c2fe9be6262405c7b9
Signed-off-by: Jack Wu <wjack@google.com>
 2024-06-19 16:13:33 +08:00
Treehugger Robot
fd7f96c57c Merge "Allow hwc to access te_rate_hz & te_option" into main 2024-05-15 01:41:45 +00:00
Weizhung Ding
260af3904b add sysfs access permission on Zumapro devices. am: b5833b7ddf 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zumapro-sepolicy/+/27282713

Change-Id: Ibf10ea36cc1a257f0351daa7c154ba81a3d17226
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-05-10 06:54:30 +00:00
Weizhung Ding
b5833b7ddf add sysfs access permission on Zumapro devices. 
Bug: 339598226
Test: build and check log
Change-Id: Ia7a7f0f8a5ffc63ab52f41d7a012260d73c54153
 2024-05-09 11:49:19 +00:00
Shiyong Li
f99e596498 Merge "Add sepolicy for power_state sysfs node" into 24D1-dev am: 3806937561 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zumapro-sepolicy/+/27059981

Change-Id: Id35a52793ecd1d69bb8a54dc12101837f77d74e4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-05-09 05:21:38 +00:00
Shiyong Li
3806937561 Merge "Add sepolicy for power_state sysfs node" into 24D1-dev 2024-05-09 05:16:16 +00:00
Burney Yu
85e79a0734 Allow hwc to access te_rate_hz & te_option 
Bug: 315094023
Test: can access sysfs node te_rate_hz & te_option
Change-Id: Ib2f657560dcbab5a96a26dfa98e2f3a477702e00
 2024-05-09 10:18:19 +08:00
Wei Wang
dec7c70056 Merge "zumapro: sepolicy: Update gpu available_frequencies sepolicies." into 24D1-dev am: 6c9df27593 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zumapro-sepolicy/+/27088243

Change-Id: I1946280379f379c5566dfee2c2735734380d5769
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-05-06 16:41:34 +00:00
Wei Wang
6c9df27593 Merge "zumapro: sepolicy: Update gpu available_frequencies sepolicies." into 24D1-dev 2024-05-06 16:24:33 +00:00
Treehugger Robot
fb8ece30b7 Merge "sepolicy: allow hal_power_stats to read modem sysfs node" into 24D1-dev am: 3bfa8edd2d 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zumapro-sepolicy/+/27206477

Change-Id: Ic215eecf37588272b21a384c89550e4bacedcb6a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-05-06 04:34:04 +00:00
Darren Hsu
ae01acb475 sepolicy: allow hal_power_stats to read modem sysfs node 
avc:  denied  { read } for  name="link_duration" dev="sysfs"
ino=50065 scontext=u:r:hal_power_stats_default:s0
tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Bug: 338278462
Test: dumpsys android.hardware.power.stats.IPowerStats/default
Change-Id: I691955410fb2cc24f8a372c6176a4fb7490309c4
Signed-off-by: Darren Hsu <darrenhsu@google.com>
 2024-05-03 15:21:09 +08:00
Treehugger Robot
de8e4b1133 Merge "lights: Add LED sysfs sepolicy" into main 2024-05-02 00:31:33 +00:00
Chungjui Fan
91aa5ade23 lights: Add LED sysfs sepolicy 
Bug: 307424586
Change-Id: I5b919d56a72d98c7173004b1380ca50e3691aacc
Signed-off-by: Chungjui Fan <chungjuifan@google.com>
 2024-04-30 01:21:57 +00:00
YiKai Peng
660715f1f8 Merge "selinux: label wakeup for BMS I2C 0x5B, 0x61" into main 2024-04-29 06:30:42 +00:00
YiKai Peng
af3f9d9d62 selinux: label wakeup for BMS I2C 0x5B, 0x61 
Bug: 335557235
Test: v2/pixel-health-guard/device-boot-health-check-extra
Change-Id: If41db4725810a851f4a6a1a05566c2547f142da9
Signed-off-by: YiKai Peng <kenpeng@google.com>
 2024-04-26 07:28:52 +00:00
Peter (YM)
f1834f0d8c zumapro: sepolicy: Update gpu available_frequencies sepolicies. 
Apply similar group coverage to sysfs_devices_system_cpu, allow service
to read available frequences and avoid invalid behaiovr

Bug: 336698561
Test: ls -lZ /sys/devices/platform/1f000000.mali
Change-Id: I5a4f0766b4778fd8895e41d52f6d6b92f9d90de5
Signed-off-by: Peter (YM) <peterym@google.com>
 2024-04-25 06:42:28 +00:00
Kevin Ying
b5629419fe Add sepolicy for power_state sysfs node 
Bug: 329703995
Test: manual - use camera with DisplayMonitor update
Change-Id: Ifd738a1726ba1c2ff0931eac653737f9be7daa87
Signed-off-by: Kevin Ying <kevinying@google.com>
 2024-04-24 19:10:44 +00:00
Treehugger Robot
6cdcc7e516 Merge "Add capacity_headroom to gpu sysfs" into main 2024-04-17 18:53:24 +00:00
Kevin DuBois
4d50d35fcd Add capacity_headroom to gpu sysfs 
This allows userspace (notably the power HAL) to apply a boost to GPU
frequency independent of previously measured load.

Bug: 290625326
Test: boot, run modified Power HAL
Change-Id: I87b2e3d3dbb0a6c3eb68970fc3f3380b61586a46
 2024-04-12 19:40:56 -07:00
Cheng Chang
57c36bd644 Merge "sepolicy: sysfs to gnssif/wakeup node" into 24D1-dev am: a1d7364f1f 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zumapro-sepolicy/+/26795509

Change-Id: I4e42561e483036cb9d1c850cb8f36fef31cf45ff
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-04-10 03:47:51 +00:00
Cheng Chang
a1d7364f1f Merge "sepolicy: sysfs to gnssif/wakeup node" into 24D1-dev 2024-04-10 03:28:56 +00:00
Cheng Chang
cdd424134a sepolicy: sysfs to gnssif/wakeup node 
avc:  denied  { read } for  comm="binder:459_2" name="wakeup2" dev="sysfs" ino=54040 scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=0

Bug: 329334328
Test: abtd under b/329334328 device-boot-health-check-extra.
Test: boot and check logcat avc.
Change-Id: If0e95efee521d15928648d1042f87d02fd41c637
 2024-04-02 09:07:26 +00:00
Spade Lee
aac2240ca4 sepolicy: allow kernel to search vendor debugfs 
audit: type=1400 audit(1710259012.824:4): avc:  denied  { search } for  pid=128 comm="kworker/3:1" name="max77779fg" dev="debugfs" ino=24204 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_maxfg_debugfs:s0 tclass=dir permissive=0
audit: type=1400 audit(1710427790.680:2): avc:  denied  { search } for  pid=10 comm="kworker/u16:1" name="gvotables" dev="debugfs" ino=10582 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_votable_debugfs:s0 tclass=dir permissive=1
audit: type=1400 audit(1710427790.680:3): avc:  denied  { search } for  pid=211 comm="kworker/u16:4" name="google_charger" dev="debugfs" ino=16673 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_charger_debugfs:s0 tclass=dir permissive=1

Bug: 328016570
Bug: 329317898
Test: check all debugfs folders are correctly mounted
Change-Id: Ib25cc13a329b40bebe87fab43e955e2e4395de9e
Signed-off-by: Spade Lee <spadelee@google.com>
 2024-04-02 07:35:39 +00:00
Treehugger Robot
cb1d17b4ba Merge "usb: correct the xhci wakeup path" into main 2024-04-01 04:00:20 +00:00
Shiyong Li
7835c69828 Merge "Label te2_rate_hz and te2_option as sysfs_display" into 24D1-dev am: a06f6749c8 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zumapro-sepolicy/+/26481942

Change-Id: I23e6fe5f8f808ee1b6b32b187fafb59d9760ec8f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-03-28 21:37:16 +00:00
Chris Lu
2c3dc0c668 Label te2_rate_hz and te2_option as sysfs_display 
Bug: 307787644
Test: Check the files label: adb shell ls -Z
Change-Id: Iab036b86b6d0c28191212a3ac10be6ddb5dcbd2b
 2024-03-28 00:31:25 +00:00
Sam Ou
d03db6fe73 Merge "sepolicy: fix odpm scale value path" into 24D1-dev am: 69b8799f82 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/zumapro-sepolicy/+/26678608

Change-Id: I8cab9f4ee662b370e1118215f76841735631bf36
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2024-03-25 02:52:18 +00:00
samou
8ff89c21d0 sepolicy: fix odpm scale value path 
Extend odpm sysfs path to cover the
different startup sequence.

Bug: 330815850
Change-Id: Ifd346f379b71c790e175e08e74398bae0c0417df
Signed-off-by: samou <samou@google.com>
 2024-03-22 10:38:08 +00:00
Spade Lee
b3e3319964 Merge "sepolicy: allow kernel to search vendor debugfs" into main 2024-03-21 06:35:25 +00:00
Spade Lee
bac2d41b9c sepolicy: allow kernel to search vendor debugfs 
audit: type=1400 audit(1710259012.824:4): avc:  denied  { search } for  pid=128 comm="kworker/3:1" name="max77779fg" dev="debugfs" ino=24204 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_maxfg_debugfs:s0 tclass=dir permissive=0
audit: type=1400 audit(1710427790.680:2): avc:  denied  { search } for  pid=10 comm="kworker/u16:1" name="gvotables" dev="debugfs" ino=10582 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_votable_debugfs:s0 tclass=dir permissive=1
audit: type=1400 audit(1710427790.680:3): avc:  denied  { search } for  pid=211 comm="kworker/u16:4" name="google_charger" dev="debugfs" ino=16673 scontext=u:r:kernel:s0 tcontext=u:object_r:vendor_charger_debugfs:s0 tclass=dir permissive=1

Bug: 328016570
Bug: 329317898
Test: check all debugfs folders are correctly mounted
Change-Id: Ib25cc13a329b40bebe87fab43e955e2e4395de9e
Signed-off-by: Spade Lee <spadelee@google.com>
 2024-03-20 18:13:22 +00:00
Chris Lu
026570c6c7 Allow hwc to access te_info 
Bug: 315094023
Test: can access sysfs node te_info
Change-Id: I9d418ab92cc68e0234e19162812cc33a8c07e40c
 2024-03-18 11:57:24 +08:00
Yabin Cui
76c40d23cf Add SOC specific ETE sysfs paths 
Bug: 321061072
Test: run profcollectd on device
Change-Id: I7eb39a5e9f586e36edd11679b0988af2ff6b986b
 2024-03-07 19:53:25 +00:00
Yabin Cui
af6b895528 Add SOC specific ETE sysfs paths 
Bug: 321061072
Test: run profcollectd on device
Change-Id: I7eb39a5e9f586e36edd11679b0988af2ff6b986b
 2024-03-06 11:06:13 -08:00
Treehugger Robot
4d305706a5 Merge "add dsim wakeup labels" into main 2024-02-28 03:59:20 +00:00
Peter Lin
f88ffce8c7 add dsim wakeup labels 
Bug: 321733124
test: ls sys/devices/platform/19440000.drmdsim/19440000.drmdsim.0/wakeup -Z
Change-Id: I28bc16f23478131dfecf2ad61b306ce9ae1e2767
 2024-02-27 12:59:04 +00:00
Treehugger Robot
4f275afd4e Merge "moving charger nodes to user build" into main 2024-02-21 02:01:55 +00:00
Ken Yang
7da489c7ad SELinux: fix SELinux denials 
devices/platform/108d0000.hsi2c/i2c-6/6-0066/max77779-pmic-irq.2.auto/wakeup/wakeup69

Bug: 325680852
Change-Id: I974c65bab46f3de3bdcacb42c67257d91a3ecf8a
Signed-off-by: Ken Yang <yangken@google.com>
 2024-02-19 04:21:12 +00:00
Daniel Okazaki
7d46482f86 moving charger nodes to user build 
Bug: 323415060
Test: adb bugreport
Change-Id: I2f613d513b2c8a1eb5f52dbd6ba9f8381486a150
Signed-off-by: Daniel Okazaki <dtokazaki@google.com>
 2024-02-15 23:09:32 +00:00
Kuen-Han Tsai
25748e9d93 Set SEPolicy for the disable_contaminant_detection script 
This patch ports Zuma project SEPolicy and corrects the platform device
name.

init    : Command 'exec /vendor/bin/hw/disable_contaminant_detection.sh'
action=vendor.usb.contaminantdisable=true (/vendor/etc/init/hw/
init.zumapro.usb.rc:288) took 5ms and failed: Could not start exec
service: File /vendor/bin/hw/disable_contaminant_detection.sh(labeled
"u:object_r:vendor_file:s0") has incorrect label or no domain transition
from u:r:init:s0 to another SELinux domain defined. Have you configured
your service correctly?
https://source.android.com/security/selinux/device-policy#
label_new_services_and_address_denials. Note: this error shows up even
in permissive mode in order to make auditing denials possible.

Bug: 295127978
Test: manual test
Change-Id: I4269127f0101250615aad9218a9e2684579a653b
Signed-off-by: Kuen-Han Tsai <khtsai@google.com>
 2024-02-02 18:07:36 +08:00