summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2023-12-14Snap for 11216811 from 04bc1d210a874f0e90d93bd65048091da8fe9ee0 to 24Q1-releaseandroid-14.0.0_r37android-14.0.0_r36android-14.0.0_r35android-14.0.0_r34android-14.0.0_r33android-14.0.0_r32android-14.0.0_r31android-14.0.0_r30android-14.0.0_r29android14-qpr2-s5-releaseandroid14-qpr2-s4-releaseandroid14-qpr2-s3-releaseandroid14-qpr2-s2-releaseandroid14-qpr2-s1-releaseandroid14-qpr2-releaseAndroid Build Coastguard Worker
Change-Id: I99676f6472adc317340e2b5794e6ef0ce31447bf
2023-12-13sepolicy: add read wlc sysfs permissionJenny Ho
12-12 18:33:17.960000 1000 906 906 I auditd : type=1400 audit(0.0:10): avc: denied { read } for comm="android.hardwar" name="type" dev="sysfs" ino=75851 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:sysfs_wlc:s0 tclass=file permissive=0 Bug: 306534100 Change-Id: I3381aaa1e08637c1cc8eb278bd775c81b32ed3bd Signed-off-by: Jenny Ho <hsiufangho@google.com>
2023-12-12Snap for 11206181 from ea3f55a02626956e2111fd00741d32469b43dcc6 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I6e885d4709efd06482db3bd52a18e7758c9ba0bc
2023-12-11[automerger skipped] Merge Android 14 QPR1 am: 5f9cc46c75 -s ours am: ↵Xin Li
7af1b9d304 -s ours am: e8cb7392ba -s ours am skip reason: Merged-In I8ee515e5ae5498296342d1f432ba9fa5716f221d with SHA-1 3dbfb9e35f is already in history Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2866361 Change-Id: I2dfdcd71b09693fc3e9f6de7f3c376b94ee43846 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-12-11[automerger skipped] Merge Android 14 QPR1 am: 5f9cc46c75 -s ours am: ↵Xin Li
7af1b9d304 -s ours am skip reason: Merged-In I8ee515e5ae5498296342d1f432ba9fa5716f221d with SHA-1 3dbfb9e35f is already in history Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2866361 Change-Id: If5980ad15bebe1ae2b83e8ea8971044658c1cbd8 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-12-11[automerger skipped] Merge Android 14 QPR1 am: 5f9cc46c75 -s oursXin Li
am skip reason: Merged-In I8ee515e5ae5498296342d1f432ba9fa5716f221d with SHA-1 3dbfb9e35f is already in history Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2866361 Change-Id: Iee7d406102b238debd416fed74724025a032c946 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-12-11Fix rlsservice sepolicyBoon Jun Soh
Allows bugreport generation Bug: 315255760 Bug: 309379465 Test: abd bugreport & ensure lack of rls avc denied logs Change-Id: Ic390d6ddd6bac78e5979c78bc6d02262f08b3468
2023-12-11Update SELinux errorWilson Sung
Test: SELinuxUncheckedDenialBootTest Bug: 315720727 Test: scanBugreport Bug: 315721328 Bug: 315104479 Test: scanAvcDeniedLogRightAfterReboot Bug: 315104479 Bug: 315720727 Change-Id: I936dba39a2d2cfbd6c2924aed7c1e2f8b9e00fb2
2023-12-08Merge Android 14 QPR1Xin Li
Merged-In: I8ee515e5ae5498296342d1f432ba9fa5716f221d Bug: 315507370 Change-Id: Ifae34bf7561f1fd8f5997b3690ac0d9e5a0c3335
2023-12-08Snap for 11192287 from bf2cd60aaad8eb98ebb2cf23edfdf978fe891109 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I5f4156c5205649cb470bc4faf33ec53a29d7cb89
2023-12-07Snap for 11186783 from eca39285c5e3ab798f4291248a21ee1eeec02615 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: Icc13e7f0f74de8d16cfc3e08b1a069cd1b817426
2023-12-06Update SELinux errorWilson Sung
Test: SELinuxUncheckedDenialBootTest Bug: 315104803 Test: scanBugreport Bug: 315104594 Bug: 315104803 Test: scanAvcDeniedLogRightAfterReboot Bug: 315104803 Change-Id: Iad6a4ea7a3a58c161359a87a6083a015665d5b14
2023-12-06Add Secretkeeper HALDavid Drysdale
Test: VtsAidlAuthGraphSessionTest Bug: 306364873 Change-Id: I84d4098960d6445da1eb7e58e25a015cd591d6b3
2023-12-06Snap for 11180250 from e2d97955585ca6dbed6d6622a240c6879d171864 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: Ieff21452dd2fe4add4f11027de36f2760d090538
2023-12-05gs201: move sepolicy related to bootctrl hal to gs-commonJason Chiu
Bug: 265063384 Change-Id: I30a71900c2a305b05ae6e17d658df32d95097d14 Signed-off-by: Jason Chiu <jasoncschiu@google.com>
2023-12-02Snap for 11169761 from 505ad2718a5bd1f2e84e4f31b0149d9a48f301e1 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I884c987c9f0b4d88c032af9eb6c8d6220d3a619a
2023-12-01[automerger skipped] Removes duplicate hidraw_device type definition. am: ↵Daniel Norman
da3e268e93 am: bd29602190 -s ours am: 5d4faaf6e3 -s ours am skip reason: Merged-In Ia2f817ce99548c30f39a5164c8f6ec323db66155 with SHA-1 da3e268e93 is already in history Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2855385 Change-Id: I719477aa9af015d4939c978a01dbbafac5569c4c Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-12-01[automerger skipped] Removes duplicate hidraw_device type definition. am: ↵Daniel Norman
da3e268e93 am: bd29602190 -s ours am skip reason: Merged-In Ia2f817ce99548c30f39a5164c8f6ec323db66155 with SHA-1 da3e268e93 is already in history Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2855385 Change-Id: I7df8e98a28dbd73224a9ea246e704d077043018e Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-12-01[automerger skipped] Removes duplicate hidraw_device type definition. am: ↵Daniel Norman
da3e268e93 am: 3dbfb9e35f am: 15b83914ec -s ours am skip reason: Merged-In Ia2f817ce99548c30f39a5164c8f6ec323db66155 with SHA-1 b204558a73 is already in history Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2855385 Change-Id: I2ff31ebd9a9938a13c752d86c11e840a97420e0d Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-12-01Removes duplicate hidraw_device type definition. am: da3e268e93Daniel Norman
Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2855385 Change-Id: Ibde6e0c05689f4849c37564e310859d82af26c69 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-12-01Removes duplicate hidraw_device type definition. am: da3e268e93 am: 3dbfb9e35fDaniel Norman
Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2855385 Change-Id: I5a54857df8d56e73b69d2f14eb39c7c58eb58fa8 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-12-01Removes duplicate hidraw_device type definition. am: da3e268e93tmp_amf_315507370Daniel Norman
Original change: https://android-review.googlesource.com/c/device/google/gs201-sepolicy/+/2855385 Change-Id: I8ee515e5ae5498296342d1f432ba9fa5716f221d Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
2023-11-30Removes duplicate hidraw_device type definition.Daniel Norman
This type is now defined by the platform. Bug: 303522222 Test: ls -z /dev/hidraw0 (cherry picked from https://googleplex-android-review.googlesource.com/q/commit:b204558a731d6a6a79b701dc8d7c017f59e9af93) Merged-In: Ia2f817ce99548c30f39a5164c8f6ec323db66155 Change-Id: Ia2f817ce99548c30f39a5164c8f6ec323db66155
2023-11-30Suppress avc error log on debugfs's usb folder.Khoa Hong
The XHCI driver in kernel will write debugging information to DebugFS on some USB host operations (for example: plugging in a USB headphone). We are not using those information right now. Bug: 305880925 Bug: 311088739 Test: No error when plugging a USB headphone in. Change-Id: I3b53a3924a1fb3f2a37b0d8a1ae9df037cbc1dd2
2023-11-23Snap for 11135477 from 2bd12254f48fedb0ea1800a6c4e215931e3e1122 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: Id4264df30ec5df5d602e4c2ad15013cbf4e2b087
2023-11-22Move sg_device related policyRandall Huang
Bug: 312582937 Test: make selinux_policy Change-Id: I18617643e66d6d2fe5ff19e440dea204206b3035 Signed-off-by: Randall Huang <huangrandall@google.com>
2023-11-22Snap for 11130229 from 8f30df1dcf2ef47fb039237845e51714f409e308 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: Icc7ba59b9b9f3fd8d78b740e2c90426d13996b3f
2023-11-21Snap for 11124398 from 3b40f18e299c2b8f3ee7604fa39568f2651c20bb to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I8942421e38bd71856bcd534d87d4af1fd7864da6
2023-11-20aoc: add sysfs file entryAlex Iacobucci
Test: on device Bug: 309950738 Change-Id: Ie5437a02b3a4f69d05ecb274169b4bd328315a22 Signed-off-by: Alex Iacobucci <alexiacobucci@google.com>
2023-11-20Add Pixel Mapper as a sp-HALDevika Krishnadas
Bug: 267352318 Change-Id: I460f379d8d6904f5bda3f67a7158c0ac6f2e7b5f Signed-off-by: Devika Krishnadas <kdevika@google.com>
2023-11-18Snap for 11117647 from 7411947a02ec33a343ab3860f903bf8c1892ccff to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: Ie9cc2ce2dfbd6bc59475bf2df6f0c76825ee6bbf
2023-11-17dontaudit on dir search for vendor_votable_debugfsKyle Tso
Bug: 305880925 Bug: 309379994 Change-Id: I7317bdb4ec80eb73a57cbb924d3132579e0b4f98 Signed-off-by: Kyle Tso <kyletso@google.com>
2023-11-15Snap for 11097608 from b204558a731d6a6a79b701dc8d7c017f59e9af93 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I1a5ff1342489c49bc9fa44497cbe6f5befbce4c7
2023-11-10Removes duplicate hidraw_device type definition.Daniel Norman
This type is now defined by the platform. Bug: 303522222 Change-Id: Ia2f817ce99548c30f39a5164c8f6ec323db66155 Test: ls -z /dev/hidraw0
2023-11-09Snap for 11071763 from 551b83f7c585d62a273dffd4207eb4d74aa695d9 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I90ed2224785d3d0455c36c10eb9ba8455b2e686b
2023-11-08Change the MDS to platform app in selinux ap context.Mike Wang
The MDS will be signed with platform key and become a platform app. To make the selinux rules for modem_diagnostic_app work, need to set it to platform app in app context. Bug: 287683516 Test: Tested with both dev key or platform key signed MDS apps and the selinux rules works. Change-Id: Ia0dacafc5e096c101e115b7356d8490391cb6bbd
2023-11-08Snap for 11065517 from e22b188d9d7a7aa4f199bf89a95f8cc0663937c9 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: Ic7ce5376a8200d34a45f632f3cecada6b3215546
2023-11-07sensors: Move USF related sepolicy to gs-common.Rick Chen
Bug: 305120274 Test: Compile pass. Flash the build to WHI_PRO devices and no sensor related avc denied log. Change-Id: I48d959d439565e9c31ce83812bf29b6d8025c35b Signed-off-by: Rick Chen <rickctchen@google.com>
2023-11-07Snap for 11059422 from d50939ab22f2c8db84d230489e960d4337cf4dcf to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: Ib15b8aff4d1ad35aed22b1af85d996c8738838b4
2023-11-06Update SELinux errorWilson Sung
Test: scanBugreport Bug: 309379465 Bug: 309379994 Test: scanAvcDeniedLogRightAfterReboot Bug: 309379994 Change-Id: I45a01648f4c412b99e3fdcb70008e21c5d99fef3
2023-11-06Add selinux policy change to allow MDS access Samsung OemRil hal.Mike Wang
Bug: 301641283 selinux log: 11-03 15:32:38.850 2643 2643 I auditd : type=1400 audit(0.0:1616): avc: denied { call } for comm="binder:2643_3" scontext=u:r:modem_diagnostic_app:s0:c512,c768 tcontext=u:r:rild:s0 tclass=binder permissive=1 app=com.google.mds 11-03 15:32:38.850 2643 2643 I binder:2643_3: type=1400 audit(0.0:1616): avc: denied { call } for scontext=u:r:modem_diagnostic_app:s0:c512,c768 tcontext=u:r:rild:s0 tclass=binder permissive=1 app=com.google.mds 11-03 15:32:38.854 2643 2643 I auditd : type=1400 audit(0.0:1617): avc: denied { transfer } for comm="binder:2643_3" scontext=u:r:modem_diagnostic_app:s0:c512,c768 tcontext=u:r:rild:s0 tclass=binder permissive=1 app=com.google.mds 11-03 15:32:38.854 2643 2643 I binder:2643_3: type=1400 audit(0.0:1617): avc: denied { transfer } for scontext=u:r:modem_diagnostic_app:s0:c512,c768 tcontext=u:r:rild:s0 tclass=binder permissive=1 app=com.google.mds 11-03 15:32:38.854 1095 1095 I auditd : type=1400 audit(0.0:1618): avc: denied { call } for comm="HwBinder:1095_1" scontext=u:r:rild:s0 tcontext=u:r:modem_diagnostic_app:s0:c512,c768 tclass=binder permissive=1 11-03 15:32:38.854 1095 1095 I HwBinder:1095_1: type=1400 audit(0.0:1618): avc: denied { call } for scontext=u:r:rild:s0 tcontext=u:r:modem_diagnostic_app:s0:c512,c768 tclass=binder permissive=1 Change-Id: I62986e4bb0a4ed04616f8f3a8521f01934e63d74
2023-11-04Snap for 11051137 from 4f1d96210d0a090d4f2bde23cee1ccfe011478bf to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I9253dd57bc75c6fe82505df3a2cc199eb50fb64d
2023-11-03Update SELinux policies for rlsserviceJimiChen
1. Move rls_service context from vndservice_contexts to service_contexts. 2. Allow binder calls from rlsservice to servicemanager 3. Change rls_service type from vndservice_manager_type to service_manager_type. Bug: 301520085 Test: GCA Change-Id: Ief845b5691487f48d570c531de1ea99945087e42
2023-11-01Snap for 11031655 from 435e0aafa887e72ad900505696983ae3646c56a8 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I31a5f891830e6f4f3cacd70663ec19950ad648ac
2023-10-31pixelstats: Add Brownout Detection sepolicyGeorge Lee
Bug: 307392882 Test: Confirm lastmeal data upload Change-Id: I9f7386c6c813c2790dcba1c79ce80531b6819b65 Signed-off-by: George Lee <geolee@google.com>
2023-10-31Snap for 11025555 from 037d5cccf328e0d78d3e501377dcfd094fad5575 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I6116d86767693bccb6364bc0c97abdb8dca09169
2023-10-30Update SELinux errorWilson Sung
Test: SELinuxUncheckedDenialBootTest Bug: 307863370 Change-Id: I6efdf65cee3cb3c13fbf091659a7afaf01222d55
2023-10-28Snap for 11017726 from 042122f0dd6192e5f75be227a535311c9da18bc0 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I5b24bf34dd2ad74e7bd5f8e1e3bfa74e1be24f84
2023-10-26Update SELinux errorWilson Sung
Test: SELinuxUncheckedDenialBootTest Bug: 306344298 Test: scanBugreport Bug: 307863753 Change-Id: I8da3045a59949d41992ac4240f63609f9cc49fa3
2023-10-21Snap for 10985023 from d7f1523b35a96c4446a99680f64c09294dca86f3 to 24Q1-releaseAndroid Build Coastguard Worker
Change-Id: I1dfdfc0b89c35098e87596c6190e49a2bedd0c5a
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-22 12:28:47 +0000