drgreen/android_device_google_gs-common
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
341 Commits 2 Branches 0 Tags
Commit Graph

14 Commits

Author SHA1 Message Date
Joseph Jang
852cfb4fb7 Remove the libnos dependency if build without vendor 
Bug: 277188968
Change-Id: I4f6aa64d30a58aebb3fca246d0705e7f540bebb8
 2023-04-06 11:37:23 +00:00
ChengYou Ho
74dc039db5 Remove weaver/oemlock/authsecret HIDL services 
they're replaced by AIDL services

Bug: 176858088
Bug: 182976659
Change-Id: Ibc355cc02182b51e6f68feb251b59c7399aba727
 2022-12-20 18:12:37 +00:00
Chengyou Ho
1bfa9e6a2f Merge changes from topic "240932137" 
* changes:
  Add oemlock aidl service sepolicy
  gsc.mk: install oemlock aidl service
 2022-09-21 13:52:14 +00:00
Chengyou Ho
94f9ddc10e Merge changes from topic "b/246952216" 
* changes:
  Add weaver AIDL service sepolicy
  gsc.mk: install weaver AIDL service
 2022-09-21 13:51:48 +00:00
Adam Shih
f3105ca062 add missing dumpstate permission 
Bug: 247097496
Test: adb bugreport
Change-Id: Icccfe2c4610ae3a9e77d1ad2c17d828e2e860f1b
 2022-09-19 10:52:52 +08:00
ChengYou Ho
141c01ba0c Add oemlock aidl service sepolicy 
1. avc:  denied  { find } for pid=889 uid=1064 name=android.hardware.citadel.ICitadeld scontext=u:r:hal_oemlock_citadel:s0 tcontext=u:object_r:citadeld_service:s0 tclass=service_manager permissive=1
2. avc: denied { read } for name="vndbinder" dev="binder" ino=6 scontext=u:r:hal_oemlock_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
3. avc: denied { write } for name="vndbinder" dev="binder" ino=6 scontext=u:r:hal_oemlock_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
4. avc: denied { open } for path="/dev/binderfs/vndbinder" dev="binder" ino=6 scontext=u:r:hal_oemlock_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
5. avc: denied { ioctl } for path="/dev/binderfs/vndbinder" dev="binder" ino=6 ioctlcmd=0x6209 scontext=u:r:hal_oemlock_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
6. avc: denied { call } for scontext=u:r:hal_oemlock_citadel:s0 tcontext=u:r:vndservicemanager:s0 tclass=binder permissive=1

Bug: 240932137
Change-Id: I804d925e020f6adfe8cd0c34aedead366c99adc0
 2022-09-18 20:54:20 +00:00
ChengYou Ho
abfb0bafa5 gsc.mk: install oemlock aidl service 
Bug: 240932137
Test: VtsHalOemLockTargetTest
Change-Id: Ib46ddafc41f64858e4db099978b6ba89bfa119b9
 2022-09-18 20:54:08 +00:00
ChengYou Ho
f31f736d36 Add weaver AIDL service sepolicy 
avc: denied { call } for scontext=u:r:hal_weaver_citadel:s0 tcontext=u:r:citadeld:s0 tclass=binder permissive=1
avc:  denied  { find } for pid=3023 uid=1064 name=android.hardware.citadel.ICitadeld scontext=u:r:hal_weaver_citadel:s0 tcontext=u:object_r:citadeld_service:s0 tclass=service_manager permissive=1
avc: denied { read } for comm="android.hardwar" name="vndbinder" dev="binder" ino=6 scontext=u:r:hal_weaver_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { write } for comm="android.hardwar" name="vndbinder" dev="binder" ino=6 scontext=u:r:hal_weaver_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { open } for comm="android.hardwar" path="/dev/binderfs/vndbinder" dev="binder" ino=6 scontext=u:r:hal_weaver_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { ioctl } for comm="android.hardwar" path="/dev/binderfs/vndbinder" dev="binder" ino=6 ioctlcmd=0x6209 scontext=u:r:hal_weaver_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { map } for comm="android.hardwar" path="/dev/binderfs/vndbinder" dev="binder" ino=6 scontext=u:r:hal_weaver_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1


Bug: 246952216
Change-Id: Id77dc947327a0b9f963fd98bd0143a1b86f646dd
 2022-09-18 20:24:10 +00:00
ChengYou Ho
df8d456507 gsc.mk: install weaver AIDL service 
Bug: 246952216
Change-Id: I74531b175d3d88c17bf644800951ca4d61d11fd8
 2022-09-16 20:35:56 +00:00
ChengYou Ho
182bdd6c08 Add authsecret aidl hal sepolicy 
avc: denied { read } for comm="android.hardwar" name="vndbinder" dev="binder" ino=6 scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { write } for comm="android.hardwar" name="vndbinder" dev="binder" ino=6 scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { open } for comm="android.hardwar" path="/dev/binderfs/vndbinder" dev="binder" ino=6 scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { ioctl } for comm="android.hardwar" path="/dev/binderfs/vndbinder" dev="binder" ino=6 ioctlcmd=0x6209 scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
 avc: denied { map } for comm="android.hardwar" path="/dev/binderfs/vndbinder" dev="binder" ino=6 scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { call } for comm="android.hardwar" scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:r:vndservicemanager:s0 tclass=binder permissive=1
avc: denied { call } for comm="android.hardwar" scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:r:servicemanager:s0 tclass=binder permissive=1
avc: denied { transfer } for comm="android.hardwar" scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:r:servicemanager:s0 tclass=binder permissive=1
avc: denied { call } for comm="binder:1286_7" scontext=u:r:system_server:s0 tcontext=u:r:hal_authsecret_citadel:s0 tclass=binder permissive=1
avc: denied { ioctl } for comm="android.hardwar" path="/dev/binderfs/vndbinder" dev="binder" ino=6 ioctlcmd=0x6201 scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:object_r:vndbinder_device:s0 tclass=chr_file permissive=1
avc: denied { call } for comm="android.hardwar" scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:r:citadeld:s0 tclass=binder permissive=1
avc:  denied  { find } for pid=3023 uid=1064 name=android.hardware.citadel.ICitadeld scontext=u:r:hal_authsecret_citadel:s0 tcontext=u:object_r:citadeld_service:s0 tclass=service_manager permissive=0

Bug: 244746589
Change-Id: I8d950329e057a2f806817384e6b00baf6f26efee
 2022-09-13 15:52:31 +00:00
ChengYou Ho
9699b144cd Authsecret: install AIDL service 
Bug: 244746589
Change-Id: Ie7c57d8a16b1146225d84f510ce7817c4b81e772
 2022-09-12 04:07:54 +08:00
Adam Shih
33aa7718bc Move dauntless settings to gs-common 
Bug: 242479757
Test: build pass on all Gchip devices
Change-Id: Idfd52a88a420f04169b273a1ef575f10b92874c1
 2022-08-31 10:32:55 +08:00
Bob Badour
03c4764838 [LSC] Add LOCAL_LICENSE_KINDS to device/google/gs-common 
Added SPDX-license-identifier-Apache-2.0 to:
  dauntless/Android.bp

Bug: 68860345
Bug: 151177513
Bug: 151953481

Test: m all
Change-Id: I6e23c3e322c881318a63134560e41cdebb435056
 2022-08-25 11:18:17 -07:00
Adam Shih
d7aa396078 modularize gsc dump 
Bug: 242479757
Test: do bugreport that has the same content as before
Change-Id: I4098775fb4b3f40167920354b2c361d801b11594
 2022-08-24 02:39:51 +00:00