Skip to content
Snippets Groups Projects
Select Git revision
  • aosp-new/busytown-mac-infra-release
  • aosp-new/sdk-release
  • aosp-new/main
  • aosp-new/master
  • aosp-new/simpleperf-release
  • aosp-new/android15-qpr2-release
  • aosp-new/android15-qpr2-s1-release
  • aosp-new/android15-qpr2-s2-release
  • aosp-new/tmp_24Q4_merged
  • aosp-new/android15-tests-release
  • aosp-new/android15-automotiveos-dev
  • aosp-new/android15-qpr1-release
  • aosp-new/android15-qpr1-s3-release
  • aosp-new/android15-qpr1-s4-release
  • aosp-new/android15-qpr1-s5-release
  • aosp-new/android15-tests-dev
  • aosp-new/tmp_24Q3_main
  • aosp-new/android15-platform-release
  • aosp-new/android15-prebuilt-test
  • aosp-new/android15-release
  • aml_tz6_351400020
  • aml_tz5_342903000
  • aml_mpr_351416060
  • aml_ext_351423040
  • aml_tet_351415080
  • aml_per_351410020
  • aml_hef_351420080
  • aml_art_351410020
  • aml_net_351410060
  • aml_wif_351410040
  • aml_con_351412000
  • aml_sta_351416000
  • aml_sdk_351415000
  • aml_ase_351412000
  • aml_odp_351421000
  • aml_ads_351420000
  • aml_doc_351412000
  • aml_cbr_351410000
  • aml_net_351410000
  • aml_ips_351410000
40 results
Search by author
  • Any Author
  • 72162444 72162444 72162444 72162444 gaochangning
  • Aakash Dave Aakash Dave aakash.dave
  • Aaron Kim Aaron Kim akim
  • Aaron Kloc Aaron Kloc akloc
  • Aaron Lan Aaron Lan aaron.lan
  • Aaron Nabil Aaron Nabil aaronna
  • Aaron Pohle Aaron Pohle aaron.pohle
  • Abbott Chung Abbott Chung chung.abbott
  • Abdallah Omar Abdallah Omar abdallah_omar
  • Abdessamii Chalbi Abdessamii Chalbi abdessamii.chalbi
  • Abdul Hussain Sirajudeen Abdul Hussain Sirajudeen abdul.hussain
  • Abdullah Alghamdi Abdullah Alghamdi a.alghamdi
  • Abdullah Elmarghany Abdullah Elmarghany abdullah_elmarghany
  • Abel Fang Abel Fang abel_fang
  • Abhijeet Badurkar Abhijeet Badurkar abhijeet.badurkar
  • Abhijit Adsule Abhijit Adsule adsule
  • Abhijit Murthy Abhijit Murthy abhijit
  • Abhi Khanal Abhi Khanal akhanal
  • Abhilash Sahoo Abhilash Sahoo abhilashsahoo
  • Abhimanyu Raj Abhimanyu Raj abhimanyu.raj
20 authors
  1. Jan 10, 2023
  3. Jan 09, 2023
  5. Dec 23, 2022
    • Wasb Liu's avatar
      sepolicy: add necessary sepolicy for dual battery · 49cdfcb3
      Wasb Liu authored 
      
12-22 16:24:51.964  1000   865   865 I auditd  : type=1400 audit(0.0:10): avc: denied { read } for comm="android.hardwar" name="logbuffer_maxfg_secondary" dev="tmpfs" ino=799 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0
12-22 16:24:51.968  1000   865   865 I auditd  : type=1400 audit(0.0:11): avc: denied { read } for comm="android.hardwar" name="logbuffer_maxfg_secondary_monitor" dev="tmpfs" ino=630 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0
12-22 16:24:51.968  1000   865   865 I auditd  : type=1400 audit(0.0:12): avc: denied { read } for comm="android.hardwar" name="logbuffer_dual_batt" dev="tmpfs" ino=1040 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:device:s0 tclass=chr_file permissive=0

12-22 16:23:17.056  1000   522   522 I auditd  : type=1400 audit(0.0:4): avc: denied { read } for comm="binder:522_1" name="wakeup65" dev="sysfs" ino=79686 scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs_batteryinfo:s0 tclass=dir permissive=0

Bug: 263496320
Test: no dual batt related denied
Change-Id: I021cd15d771524828a942fe1e4c63e3a24418ae8
Signed-off-by: default avatarWasb Liu <wasbliu@google.com>
      49cdfcb3
  7. Dec 15, 2022
  9. Dec 14, 2022
  11. Dec 01, 2022
  13. Nov 24, 2022
    • Mason Wang's avatar
      Allow dumpstate to access touch vendor nodes[DO NOT MERGE] · 3c82f575
      Mason Wang authored 
      Fix following avc denial log:
avc: denied { read } for name="driver_test" dev="proc" ino=4026535583 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { write } for name="driver_test" dev="proc" ino=4026535583 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/proc/fts/driver_test" dev="proc" ino=4026535583 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/sys/devices/platform/10950000.spi/spi_master/spi6/spi6.0/appid" dev="sysfs" ino=110523 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/sys/devices/platform/10950000.spi/spi_master/spi6/spi6.0/stm_fts_cmd" dev="sysfs" ino=110529 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/proc/fts_ext/driver_test" dev="proc" ino=4026535585 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { write } for name="stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { read } for name="stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { read } for name="appid" dev="sysfs" ino=108992 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 bug=b/240632721


Bug: 226475119
Bug: 254164096
Test: There are no above avc denial logs.
Change-Id: I0a136a7e259640e3e13ea66c945251cf26878b33
      3c82f575
  15. Nov 22, 2022
    • Nicole Lee's avatar
      Revert "Allow dumpstate to access touch vendor nodes" · d6fe8df1
      Nicole Lee authored 
      This reverts commit b1d4e8ab.

Reason for revert: DroidMonitor: Potential culprit for Bug 260019672 - verifying through ABTD before revert submission. This is part of the standard investigation process, and does not mean your CL will be reverted.

Change-Id: I8c3bf9982eb9c163e73e75624fd3265ddaa1de95
      d6fe8df1
  17. Nov 11, 2022
    • eddielan's avatar
      sepolicy: Allow fingerprint to access fwk hwservice · f544a5a6
      eddielan authored 
      11-11 19:57:30.203   464   464 E SELinux : avc:
denied  { find } for interface=android.frameworks.sensorservice::ISensorManager
sid=u:r:hal_fingerprint_capacitance:s0 pid=903
scontext=u:r:hal_fingerprint_capacitance:s0
tcontext=u:object_r:fwk_sensor_hwservice:s0
tclass=hwservice_manager permissive=0

Bug: 258783592
Test: Build pass
Change-Id: I58a31c04cbb45ab12b0bf42a10c57ddf4f065ee7
      f544a5a6
  19. Nov 03, 2022
  21. Oct 28, 2022
    • Mason Wang's avatar
      Allow dumpstate to access touch vendor nodes · b1d4e8ab
      Mason Wang authored 
      Fix following avc denial log:
avc: denied { write } for name="stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { open } for path="/sys/devices/platform/10950000.spi/spi_master/spi6/spi6.0/stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { read } for name="stm_fts_cmd" dev="sysfs" ino=113133 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=1 bug=b/240632721
avc: denied { read } for name="driver_test" dev="proc" ino=4026535565 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=0 bug=b/240632721
avc: denied { read } for name="appid" dev="sysfs" ino=108992 scontext=u:r:hal_dumpstate_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 bug=b/240632721


Bug: 226475119
Bug: 254164096
Test: There are no above avc denial logs.
Change-Id: Ie01104ebfb94154584d9d466cb295095eb634f48
      b1d4e8ab
  23. Oct 27, 2022
  25. Oct 26, 2022
    • Darren Hsu's avatar
      sepolicy: remove tracking bugs for PowerStatsHAL and SystemSuspend · 577965ec
      Darren Hsu authored 
      
b/240632970 is not reproducible on TD3A.221020.001.
b/240632822 has been fixed by ag/20209545.

Bug: 240632970
Bug: 240632822
Test: Capture bugreport and check no avc denails
Change-Id: I9a2290e2857415c3edecd98b88af6382a42530ff
Signed-off-by: default avatarDarren Hsu <darrenhsu@google.com>
      577965ec
    • eddielan's avatar
      Fix FPS servicemanager sepolicy issue · ef12403d
      eddielan authored 
      10-25 03:25:07.740   429   429 I auditd  : type=1400 audit(0.0:4):
avc: denied { call } for comm="servicemanager"
scontext=u:r:servicemanager:s0
tcontext=u:r:hal_fingerprint_capacitance:s0
tclass=binder permissive=0

Bug: 253533883
Test: make selinux_policy -j128 && check log on device
Change-Id: Ic3007d53398eb9770466c24b3aa49c1325bdbb47
      ef12403d
  27. Oct 19, 2022
  29. Oct 18, 2022
  31. Oct 17, 2022
    • eddielan's avatar
      Remove fingerprint tracking bug · 2fef9efc
      eddielan authored 
      Patch was merged on ag/19457937

Bug: 240633068
Test: make selinux_policy -j128
Change-Id: Ic25e266701993fadc51b12c25c9a170c38e29785
      2fef9efc
  33. Sep 07, 2022
  35. Aug 25, 2022
    • Adam Shih's avatar
      Update error on ROM 8979803 · 454e019b
      Adam Shih authored 
      Bug: 240632860
Test: SELinuxUncheckedDenialBootTest
Change-Id: Ie192b157e89f86fe36b99202e6ab8677a55c7cee
      454e019b
  37. Aug 24, 2022
    • Wasb Liu's avatar
      Add sepolicy for dual_batt_gauge power supply · 2dcb7cc9
      Wasb Liu authored 
      
08-23 02:45:54.456   860   860 I auditd  : type=1400 audit(0.0:4): avc: denied { read } for comm="android.hardwar" name="type" dev="sysfs" ino=100372 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Bug: 243491187
Test: reboot device and check the avc
Signed-off-by: default avatarWasb Liu <wasbliu@google.com>
Change-Id: I7600c816e743fc91afaf66db00ba332229b21e28
      2dcb7cc9
  39. Aug 19, 2022
  41. Aug 09, 2022
  43. Aug 04, 2022
  45. Aug 03, 2022
    • Ted Lin's avatar
      Sepolicy: fix the avc · fd1cdb48
      Ted Lin authored 
      
07-29 08:18:53.464   876   876 I auditd  : type=1400 audit(0.0:4): avc: denied { read } for comm="android.hardwar" name="type" dev="sysfs" ino=78463 scontext=u:r:hal_health_default:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0

Bug: 240632860
Test: reboot device and check the avc
Signed-off-by: default avatarTed Lin <tedlin@google.com>
Change-Id: Ibb1f93c2003e9229c1fd2b3bd14ee022fa6539cc
      fd1cdb48
  47. Aug 02, 2022
    • Adam Shih's avatar
      Update SELinux error · 342edcb7
      Adam Shih authored 
      Test: SELinuxUncheckedDenialBootTest
Bug: 241034024
Change-Id: I712b025aef59d838773ff55b62b8fb5ecbcbb35b
      342edcb7
  49. Aug 01, 2022
  51. Jul 29, 2022
    • eddielan's avatar
      Fix FPS hwservice sepolicy issue · 99914783
      eddielan authored 
       avc:  denied  { find } for interface=com.fingerprints42.extension::IFingerprintEngineering sid=u:r:hal_fingerprint_capacitance:s0 pid=895 scontext=u:r:hal_fingerprint_capacitance:s0 tcontext=u:object_r:default_android_hwservice:s0 tclass=hwservice_manager permissive=0

Bug: 240633068
Test: make selinux_policy -j128
Change-Id: Ifd13d8c73c97cef9a85555a7d09de4424548ca73
      99914783
    • Adam Shih's avatar
      Update SELinux error · 44f363e1
      Adam Shih authored 
      Test: SELinuxUncheckedDenialBootTest
Bug: 240632970
Bug: 240632821
Bug: 240632822
Bug: 240632721
Bug: 240633068
Bug: 240632860
Change-Id: I9b38d4edca95f2721d94c2d7bc1af046cd8382b9
      44f363e1
  53. Jul 25, 2022
  55. Jul 22, 2022
  57. Jul 21, 2022
  59. Jul 18, 2022
  61. Jul 15, 2022
  63. Jul 06, 2022
  65. Jul 04, 2022
    • eddielan's avatar
      fingerprint: Add new lable for capacitance fingerprint · c16dc8d2
      eddielan authored 
      u:object_r:hal_fingerprint_capacitance_exec:s0
android.hardware.biometrics.fingerprint-service.fpc42

Cherry-pick from ag/19085661

Bug: 235424180
Test: make selinux_policy -j128
Test: Check binary sepolicy on device
Change-Id: I8859965df77356b4691292ab66dbbb8c0b9db3b3
      c16dc8d2
  67. Jun 28, 2022
  69. Jun 14, 2022
  71. Jun 09, 2022