Gitiles
Code Review Sign In
gerrit.omnirom.org / android_device_google_gs-common / 7462c63bdfaa3f6f52c613435700195a016f2f3c^2..7462c63bdfaa3f6f52c613435700195a016f2f3c / .
commit7462c63bdfaa3f6f52c613435700195a016f2f3c[log] [tgz]
authorRichard Hsu <hsuy@google.com>Tue Mar 12 18:03:20 2024 +0000
committerAndroid (Google) Code Review <android-gerrit@google.com>Tue Mar 12 18:03:20 2024 +0000
treef53dd94b1fb171659c85b8a14c89cc9da5b66c35
parent292145d81e4d8c008bd480b94265a0086b9bd8c0 [diff]
parentf9c463189171207c18b8e71c2dbe848f1715f9cd [diff]
Merge "[mlock] Allow edgetpu_app_service to call mlock()" into 24D1-dev
diff --git a/audio/sepolicy/common/hal_audio_default.te b/audio/sepolicy/common/hal_audio_default.te
index bfe72b1..fac4f1a 100644
--- a/audio/sepolicy/common/hal_audio_default.te
+++ b/audio/sepolicy/common/hal_audio_default.te

@@ -12,6 +12,8 @@
 allow hal_audio_default amcs_device:file rw_file_perms;
 allow hal_audio_default amcs_device:chr_file rw_file_perms;
 allow hal_audio_default sysfs_pixelstats:file rw_file_perms;
+allow hal_audio_default sysfs_extcon:dir search;
+allow hal_audio_default sysfs_extcon:file r_file_perms;
 
 #allow access to aoc and kernel boottime
 allow hal_audio_default sysfs_aoc:dir { search };

diff --git a/betterbug/betterbug.mk b/betterbug/betterbug.mk
new file mode 100644
index 0000000..f3ae647
--- /dev/null
+++ b/betterbug/betterbug.mk

@@ -0,0 +1,5 @@
+PRODUCT_PACKAGES += BetterBugStub
+PRODUCT_PACKAGES_DEBUG += BetterBug
+
+PRODUCT_PUBLIC_SEPOLICY_DIRS += device/google/gs-common/betterbug/sepolicy/product/public
+PRODUCT_PRIVATE_SEPOLICY_DIRS += device/google/gs-common/betterbug/sepolicy/product/private

diff --git a/betterbug/sepolicy/product/private/better_bug_app.te b/betterbug/sepolicy/product/private/better_bug_app.te
new file mode 100644
index 0000000..bb50612
--- /dev/null
+++ b/betterbug/sepolicy/product/private/better_bug_app.te

@@ -0,0 +1,15 @@
+typeattribute better_bug_app coredomain;
+
+app_domain(better_bug_app)
+net_domain(better_bug_app)
+
+allow better_bug_app shell_data_file:file read;
+allow better_bug_app privapp_data_file:file execute;
+
+allow better_bug_app app_api_service:service_manager find;
+allow better_bug_app system_api_service:service_manager find;
+allow better_bug_app mediaserver_service:service_manager find;
+
+set_prop(better_bug_app, ctl_start_prop)
+
+get_prop(better_bug_app, system_boot_reason_prop)

diff --git a/betterbug/sepolicy/product/private/seapp_contexts b/betterbug/sepolicy/product/private/seapp_contexts
new file mode 100644
index 0000000..261e710
--- /dev/null
+++ b/betterbug/sepolicy/product/private/seapp_contexts

@@ -0,0 +1,2 @@
+# BetterBug
+user=_app isPrivApp=true name=com.google.android.apps.internal.betterbug domain=better_bug_app type=app_data_file levelFrom=all

diff --git a/betterbug/sepolicy/product/public/better_bug_app.te b/betterbug/sepolicy/product/public/better_bug_app.te
new file mode 100644
index 0000000..9a14782
--- /dev/null
+++ b/betterbug/sepolicy/product/public/better_bug_app.te

@@ -0,0 +1 @@
+type better_bug_app, domain;

diff --git a/gps/lsi/sepolicy/gnssd.te b/gps/lsi/sepolicy/gnssd.te
index 42c974e..56ab51f 100644
--- a/gps/lsi/sepolicy/gnssd.te
+++ b/gps/lsi/sepolicy/gnssd.te

@@ -28,3 +28,6 @@
 
 # Allow gnssd to set GPS property
 set_prop(gnssd, vendor_gps_prop)
+
+# Read RIL property
+get_prop(gnssd, vendor_rild_prop)

diff --git a/mte/OWNERS b/mte/OWNERS
new file mode 100644
index 0000000..929e941
--- /dev/null
+++ b/mte/OWNERS

@@ -0,0 +1,4 @@
+eugenis@google.com
+pcc@google.com
+mitchp@google.com
+fmayer@google.com

diff --git a/mte/fullmte-pixel.mk b/mte/fullmte-pixel.mk
index da4e7b9..6cc525d 100644
--- a/mte/fullmte-pixel.mk
+++ b/mte/fullmte-pixel.mk

@@ -1,4 +1,7 @@
 include build/make/target/product/fullmte.mk
+
+PRODUCT_MODULE_BUILD_FROM_SOURCE := true
+
 BOARD_KERNEL_CMDLINE += bootloader.pixel.MTE_FORCE_ON
 # TODO(b/324412910): Remove this when the stack-buffer-overflow is fixed.
 PRODUCT_PRODUCT_PROPERTIES += \

diff --git a/thermal/dump/thermal.mk b/thermal/dump/thermal.mk
index 03b1dfa..4bb0344 100644
--- a/thermal/dump/thermal.mk
+++ b/thermal/dump/thermal.mk

@@ -1,3 +1,3 @@
 BOARD_VENDOR_SEPOLICY_DIRS += device/google/gs-common/thermal/sepolicy/dump
 
-PRODUCT_PACKAGES += dump/dump_thermal.sh
+PRODUCT_PACKAGES += dump_thermal.sh