Skip to content
Snippets Groups Projects
Select Git revision
  • android-7.1.2_r28_klist
  • master default protected
  • pie-cts-release
  • pie-vts-release
  • pie-cts-dev
  • oreo-mr1-iot-release
  • sdk-release
  • oreo-m6-s4-release
  • oreo-m4-s12-release
  • pie-release
  • pie-r2-release
  • pie-r2-s1-release
  • oreo-vts-release
  • oreo-cts-release
  • oreo-dev
  • oreo-mr1-dev
  • pie-gsi
  • pie-platform-release
  • pie-dev
  • oreo-cts-dev
  • android-o-mr1-iot-release-1.0.4
  • android-9.0.0_r8
  • android-9.0.0_r7
  • android-9.0.0_r6
  • android-9.0.0_r5
  • android-8.1.0_r46
  • android-8.1.0_r45
  • android-n-iot-release-smart-display-r2
  • android-vts-8.1_r5
  • android-cts-8.1_r8
  • android-cts-8.0_r12
  • android-cts-7.1_r20
  • android-cts-7.0_r24
  • android-o-mr1-iot-release-1.0.3
  • android-cts-9.0_r1
  • android-8.1.0_r43
  • android-8.1.0_r42
  • android-n-iot-release-smart-display
  • android-p-preview-5
  • android-9.0.0_r3
40 results
Search by author
  • Any Author
  • Werner Sembach Matombo
  • dex dex dex
2 authors
  1. Sep 27, 2017
  3. Sep 26, 2017
  5. Sep 24, 2017
  7. Sep 23, 2017
  9. Sep 21, 2017
  11. Sep 20, 2017
  13. Sep 19, 2017
  15. Sep 18, 2017
  17. Sep 16, 2017
  19. Sep 15, 2017
    • Bill Yi's avatar
      Merge remote-tracking branch 'aosp/oreo-cts-dev' into HEAD - DO NOT MERGE · 0d4b5539
      Bill Yi authored 
      am: c8ef107a  -s ours

Change-Id: I781386a8ae37105a5f8c494b0471f6625a84cf0b
      0d4b5539
    • Tomasz Wasilczyk's avatar
      resolve merge conflicts of c998f319 to stage-aosp-master · 6ba6705c
      Tomasz Wasilczyk authored 
      Test: after cherry-pick - it builds
Merged-In: I57c0150a52c13f1ce21f9ae2147e3814aad0fb7e
Change-Id: I7da8160a95e09946d283bd849628bd5392410353
      6ba6705c
    • Tomasz Wasilczyk's avatar
      Branch out Broadcast Radio 1.2 HAL. · a9159dd1
      Tomasz Wasilczyk authored 
      Bug: 62945293
Test: instrumentation, VTS
Change-Id: I7e896b64bf0ee907af21d08f6b78561fadc7f0e3
      a9159dd1
    • Bill Yi's avatar
      Merge remote-tracking branch 'aosp/oreo-cts-dev' into HEAD - DO NOT MERGE · c8ef107a
      Bill Yi authored 
      Change-Id: I88e2887b0691ce3c5018578556abf7c420fe5a1b
      c8ef107a
    • Tomasz Wasilczyk's avatar
      Merge "Move Broadcast Radio HAL to a separate binary." · c998f319
      Tomasz Wasilczyk authored
      c998f319
    • Tomasz Wasilczyk's avatar
      Move Broadcast Radio HAL to a separate binary. · 26ff5eb6
      Tomasz Wasilczyk authored 
      Bug: 63600413
Test: VTS, instrumentation, audit2allow
Test: after cherry-pick - it builds
Change-Id: I57c0150a52c13f1ce21f9ae2147e3814aad0fb7e
(cherry picked from commit 567b947d)
      26ff5eb6
    • Tri Vo's avatar
      Merge "Explicitly label logd's dependencies in /proc." · 82fe6916
      Tri Vo authored 
      am: cfdbaf33

Change-Id: I2206c2e99dbfc3c1efd5beee3b73c744187f7c32
      82fe6916
    • Tri Vo's avatar
      Merge "Explicitly label logd's dependencies in /proc." · cfdbaf33
      Tri Vo authored
      cfdbaf33
    • Mark Salyzyn's avatar
      bootstat: lock down *_boot_reason_prop · 67ec37a3
      Mark Salyzyn authored 
      am: 397b07b3

Change-Id: I59221e03d3cdbbaa4fb416605ba66e9243afb5b9
      67ec37a3
    • Mark Salyzyn's avatar
      bootstat: lock down *_boot_reason_prop · 397b07b3
      Mark Salyzyn authored 
      Add series of neverallow rules to restrict components from reading or
writing bootloader_boot_reason_prop, system_boot_reason_prop and
last_boot_reason_prop to trusted set of domains.

The policy is that bootloader_boot_reason_prop (ro.boot.bootreason)
has a compliance issue due to the sheer momentum of near unparseable
content as filed by the wide variety (8000 different devices at last
count) bootloaders and is only to be accessible to a series of
responsible system components.  It can be inaccurate as it provides
no means to evaluate a shutdown, likely reporting "cold" (from
initial power up) or the more generic "reboot".

The last_boot_reason_prop (persist.sys.boot.reason) contains
inaccurate information as it is only valid after a controlled reboot
or shutdown.  The value can linger around after less controlled
scenarios.  Since the information could be false, we do not want to
support it as an open API, so we again block access to only
responsible components.

The system_boot_reason_prop (sys.boot.reason) is a canonical boot
reason that takes into account parsing bootloader_boot_reason_prop,
boot_loader_boot_reason_prop and other system and HAL generated hints
to determine a parseable and most accurate reason for the last time
the system was rebooted.

For now the policy for system_boot_reason_prop is to audit users of
the API, and on a need to know basis via device additions to the
selinux rules.  If vendors need their components to access the boot
reason, they need to comply first with CTS tests and spirit with
regards to controlled reboot messaging and in turn read the
system_boot_reason_prop for the canonical information.  It will
contain validated content derived from bootloader_boot_reason_prop
in the scenarios that count.

The controlled reboot APIs include:
- android_reboot(ANDROID_RB_<TYPE>, int flag, const char* reason)
- PowerManagerService.lowLevelShutdown(String reason);
- PowerManagerService.lowLevelReboot(String reason);
- ShutdownThread.shutdown(context, String reason, boolean confirm);
- ShutdownThread.reboot(context, String reason, boolean confirm);
- PowerManager.shutdown(boolean confirm, String reason, boolean wait);
- PowerManager.reboot(String reason);

Any others (including the direct linux reboot syscall) create
problems for generating an accurate canonical boot reason.

Test: compile
Bug: 63736262
Bug: 65686279
Change-Id: I2e5e55bbea1c383c06472eb2989237cfeb852030
      397b07b3
    • Peng Xu's avatar
      Merge changes Id4ac3552,I2068f6f4 · 5d06d481
      Peng Xu authored 
      am: 48284512

Change-Id: I3096c5d0871872de5484f862f9f9878d6a8fce13
      5d06d481
    • Peng Xu's avatar
      Allow sensor to use gralloc handle and access ion device · e1ff551f
      Peng Xu authored 
      am: d1a9a2f4  -s ours

Change-Id: Ifa7aee2d178fe4187f59e4a5b35e2643f0e69459
      e1ff551f
  21. Sep 14, 2017
    • Treehugger Robot's avatar
      Merge changes Id4ac3552,I2068f6f4 · 48284512
      Treehugger Robot authored 
      * changes:
  Allow sensor hal to use wakelock
  Allow sensor to use gralloc handle and access ion device
      48284512
    • Tri Vo's avatar
      Explicitly label logd's dependencies in /proc. · 87ed5e8d
      Tri Vo authored 
      labeled /proc/kmsg as proc_kmsg, changed logd's access from proc to
proc_kmsg, and added a compat mapping.

Bug: 65643247
Test: device boots without selinux denials to the newly introduced proc_kmsg
Test: logd-unit-tests passes

Merged-In: I92c9f5694289eb6a94c4d90f14e2de4d46b5228e
Change-Id: I92c9f5694289eb6a94c4d90f14e2de4d46b5228e
(partial CP of commit 528da6fe)
      87ed5e8d
    • Peng Xu's avatar
      Allow sensor hal to use wakelock · 123bbe94
      Peng Xu authored 
      Added permission related to use of wake lock. Wakelock in sensor
HAL is used to gurantee delivery of wake up sensor events before
system go back to sleep.

Bug: 63995095
Test: QCOM and nanohub sensor hal are able to acquire wakelock
      successfuly.

Change-Id: Id4ac3552e18a1cad252017e3dc9ab3d4be8d4ab9
      123bbe94
    • Peng Xu's avatar
      Allow sensor to use gralloc handle and access ion device · d1a9a2f4
      Peng Xu authored 
      Allow sensor hal to sue gralloc handle and access ion device
so that sensor direct report feature can function correctly when
HardwareBuffer shared memory is used.

Test: SensorDirectReportTest passes without setenforce 0

Change-Id: I2068f6f4a8ac15da40126892e1326e0b90a6576f
Merged-In: I2068f6f4a8ac15da40126892e1326e0b90a6576f
      d1a9a2f4