682 commits

Author	SHA1	Message	Date
Pomai Ahlo	df3dd86f94	Merge "[ISap hidl2aidl] Update ISap in sepolicy" am: ab3a546000 am: 0824aff623 am: f2be496223 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2339122 Change-Id: Ia7b450f3a130465e63c1771114e27abd0acc5b14 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-12-13 22:19:59 +00:00
Pomai Ahlo	ab3a546000	Merge "[ISap hidl2aidl] Update ISap in sepolicy"	2022-12-13 20:57:24 +00:00
Treehugger Robot	7eaa454dca	Merge "Add all supported instance names for audio IModule" am: ffae136437 am: 7ea2e57cb2 am: 13fe16936e ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2336911 Change-Id: I9cce4e6a310eefabd0e46a7b05460ee6c2d4c803 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-12-13 20:15:04 +00:00
Treehugger Robot	1043456d8c	Merge "sepolicy: Add Bluetooth AIDL" am: 8cce74d7e0 am: 920af49203 am: f97fd45474 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2238140 Change-Id: Ie5597ee415918d1aa8449f1937ac5168bfabc26e Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-12-13 20:14:36 +00:00
Treehugger Robot	ffae136437	Merge "Add all supported instance names for audio IModule"	2022-12-13 19:30:00 +00:00
Treehugger Robot	8cce74d7e0	Merge "sepolicy: Add Bluetooth AIDL"	2022-12-13 18:26:03 +00:00
Mikhail Naganov	2293f5eb0b	Add all supported instance names for audio IModule ... In AIDL, there is no 'factory' interface for retrieving modules, instead each module is registered individually with the ServiceManager. Bug: 205884982 Test: atest VtsHalAudioCoreTargetTest Change-Id: I55cdae0640171379cda33de1534a8dc887583197	2022-12-13 01:17:46 +00:00
Chris Weir	4bead1ab07	Merge "SEPolicy for AIDL CAN HAL" am: caf905ff3c am: e640405f81 am: 448cfc4fb0 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2291528 Change-Id: I6403f38f89da90d3ca9fb285f100c3831b35b021 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-12-12 12:58:48 +00:00
Pomai Ahlo	5f4421fae5	[ISap hidl2aidl] Update ISap in sepolicy ... Change instances of android.hardware.radio.sim.ISap to android.hardware.radio.sap.ISap ISap is no longer going to be with IRadioSim in the sim directory. It will be in its own sap directory. Test: m Bug: 241969533 Change-Id: I362a0dc6e4b81d709b24b2fa2d879814ab232ad4	2022-12-10 01:13:13 +00:00
Chris Weir	caf905ff3c	Merge "SEPolicy for AIDL CAN HAL"	2022-12-09 22:09:12 +00:00
Chris Weir	eee59458c2	SEPolicy for AIDL CAN HAL ... CAN HAL moving to AIDL, SEPolicy will need to be adjusted. Bug: 170405615 Test: AIDL CAN HAL VTS Change-Id: I0d238d38aebb5895ae27fcb52cf43cd481327421	2022-12-09 11:00:10 -08:00
Pomai Ahlo	1bae94773e	Merge "[ISap hidl2aidl] Add ISap to sepolicy" am: 90d117d661 am: 992b8aa2f3 am: be4f240892 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2329593 Change-Id: I746bfd8f6866c070c889e4482a5cba4016b1cf91 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-12-08 18:41:42 +00:00
Pomai Ahlo	90d117d661	Merge "[ISap hidl2aidl] Add ISap to sepolicy"	2022-12-08 17:32:38 +00:00
Treehugger Robot	8696a544e8	Merge "Add permissions for remote_provisioning service" am: 61d823f9c7 am: aeaf422fe5 am: e3df03bc24 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2263548 Change-Id: I160a31da6e765e050c0278b8851a4f241619a951 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-12-07 18:57:57 +00:00
Charlie Wang	c1bbeb20bd	Merge "SELinux policy changes for Wearable Sensing APIs."	2022-12-07 14:09:46 +00:00
Seth Moore	3accea479a	Add permissions for remote_provisioning service ... Bug: 254112668 Test: manual + presubmit Change-Id: I54d56c34ad4a8199b8aa005742faf9e1e12583c3	2022-12-06 08:46:20 -08:00
Pomai Ahlo	ff82b77ae8	[ISap hidl2aidl] Add ISap to sepolicy ... Test: m Bug: 241969533 Change-Id: If9b67605481132d2908adae9fa1f9b1501c37ea0	2022-12-05 16:23:25 -08:00
Charlie Wang	bf61b00eb7	SELinux policy changes for Wearable Sensing APIs. ... API changes are in ag/20407841. Please note we're still going through security reviews here: b/249996246 and will incorporate feedback as we go through the process. These selinux policies will enable the WearableSensingService to run and unblock upstream development work. Test: Ensure no build failures, ensure no SecurityException on boot Bug: 249135378, 244181656 Ignore-AOSP-First: to prevent new feature leak. Change-Id: I597827766cc3ed68ae65fb177f518eaf874f1eda	2022-12-05 09:20:14 -08:00
Myles Watson	671a0c3bda	sepolicy: Add Bluetooth AIDL ... Bug: 205758693 Test: manual - boot local image with Cuttlefish Change-Id: Ic0c5408d83f8c352b72f79e9024212c7ff0c84c1	2022-12-02 13:08:26 -08:00
Steven Moreland	c3802445d0	Merge "sepolicy for SE HAL"	2022-11-29 22:30:40 +00:00
Devin Moore	45d8baf70d	Merge "Add sepolicy for new AIDL sensorservice"	2022-11-18 19:21:47 +00:00
Steven Moreland	4c6586817a	sepolicy for SE HAL ... Bug: 205762050 Test: N/A Change-Id: I76cd5ebc4d0e456a3e4f1aa22f5a932fb21f6a23	2022-11-15 22:41:09 +00:00
Devin Moore	e714ba95ed	Add sepolicy for new AIDL sensorservice ... Test: boot cuttlefish and check for avc denials Bug: 205764765 Change-Id: Ie9d02b43250ca3c5f642b2d87d2a5b532a9b5195	2022-11-14 17:26:24 +00:00
Sandeep Dhavale	d64fb55474	Merge "Fastboot AIDL Sepolicy changes"	2022-11-10 18:29:00 +00:00
Sandeep Dhavale	f0ea953e60	Fastboot AIDL Sepolicy changes ... Bug: 205760652 Test: Build & flash Change-Id: I2709c5cc2ca859481aac6fecbc99fe30a52a668b Signed-off-by: Sandeep Dhavale <dhavale@google.com>	2022-11-09 22:21:27 +00:00
Lakshman Annadorai	4d277b7baa	Revert "Add sepolicies for CPU HAL." ... This reverts commit f4ab6c9f3c. Reason for revert: CPU HAL is no longer required because the CPU frequency sysfs files are stable Linux Kernel interfaces and could be read directly from the framework. Change-Id: I8e992a72e59832801fc0d8087e51efb379d0398f	2022-11-09 16:47:07 +00:00
Lakshman Annadorai	f4ab6c9f3c	Add sepolicies for CPU HAL. ... Change-Id: Ia091bf8f597a25351b5ee33b2c2afc982f175d51 Test: Ran `m; emulator; adb logcat -b all -d > logcat.txt;` and verified CPU HAL is running without any sepolicy violation. Bug: 252883241	2022-11-04 18:13:00 +00:00
Treehugger Robot	e6a43ec4c9	Merge "Add selinux rules for android.hardware.usb.gadget.IUsbGadget AIDL migration"	2022-10-27 14:03:48 +00:00
Ricky Niu	fc1463c164	Add selinux rules for android.hardware.usb.gadget.IUsbGadget AIDL migration ... Covers the rules needed for the default AIDL implementation. 10-26 10:22:42.408 448 448 I auditd : type=1400 audit(0.0:95): avc: denied { read } for comm="android.hardwar" name="interrupts" dev="proc" ino=4026531995 scontext=u:r:hal_usb_gadget_default:s0 tcontext=u:object_r:proc_interrupts:s0 tclass=file permissive=0 Bug: 218791946 Test: reboot and check if AIDL service is running. Signed-off-by: Ricky Niu <rickyniu@google.com> Change-Id: I8bdab3a682398f3c7e825a8894f45af2a9b6c199	2022-10-27 15:42:56 +08:00
Gabriel Biren	b7e21bcfe7	Merge "Add SeLinux policy for WiFi Vendor HAL AIDL service."	2022-10-25 17:03:10 +00:00
Henry Fang	0c3f615602	Merge "Allow CAS AIDL sample HAL"	2022-10-25 16:38:20 +00:00
Wenhao Wang	e825ad2a62	Add sepolicy for background_install_control service ... The background_install_control service is going to detect background installed apps and provide the list of such apps. Bug: 244216300 Test: manual Change-Id: I6500f29ee063da4a3bc18e109260de419dd39218	2022-10-24 11:26:35 -07:00
Gabriel Biren	e310ef8163	Add SeLinux policy for WiFi Vendor HAL AIDL service. ... Bug: 205044134 Test: Manual - reboot phone and check if AIDL service is running. Change-Id: I242e6ef860d2defdb0ab0a3d649b2a4e3f0de5a6	2022-10-19 16:34:56 +00:00
Treehugger Robot	4a5c2dee68	Merge "Add policies for new services HDMI and HDMICEC"	2022-10-19 02:58:03 +00:00
Hunsuk Choi	24abed20f5	Add IRadioIms and IImsMedia context ... Bug: 216387835 Test: build & flash Change-Id: I7eb3a45e1b13ca702e6bab7e152c4b4722ceccdd (cherry picked from commit 26a4cc08701586459e1042604a204f6485c27d08) Merged-In: I7eb3a45e1b13ca702e6bab7e152c4b4722ceccdd	2022-10-13 06:17:30 +00:00
Shraddha Basantwani	bacf949002	Allow CAS AIDL sample HAL ... Bug: 230377377, 227673974 Test: manual Change-Id: Ied6822d8114404b85dbed56ae4806de1bfb43e54	2022-10-12 19:42:20 +05:30
Venkatarama Avadhani	38ff3b4115	Add policies for new services HDMI and HDMICEC ... Test: atest vts_treble_vintf_framework_test atest vts_treble_vintf_vendor_test Change-Id: Ic2c0525368218e207be236d073a3fe736151c43f	2022-10-10 15:40:42 +05:30
Peiyong Lin	33e03e09b4	Merge "Update SEPolicy for Thermal AIDL"	2022-10-07 04:00:17 +00:00
Peiyong Lin	4a5d0f13c4	Update SEPolicy for Thermal AIDL ... Bug: b/205762943 Test: build and boot Change-Id: I301b85dafbf8fbb1c4be388aa0291e22f4717c99	2022-10-05 00:55:20 +00:00
Steven Moreland	07c5387324	Merge "hidl2aidl: sepolicy changes for confirmationui aidl"	2022-10-03 19:10:31 +00:00
Subrahmanyaman	745efb4ced	hidl2aidl: sepolicy changes for confirmationui aidl ... Sepolicy changes for confirmationui while converting from hidl to aidl. Bug: b/205760172 Test: run vts -m VtsHalConfirmationUIV1_0Target Change-Id: Ib21038fd89789755b978489f5293725b221d86c4	2022-09-23 19:00:15 +00:00
Amos Bianchi	3189fafa2a	Add sepolicy for new module. ... Bug: b/241442337 Test: TH Change-Id: Ia58e2d4b205638509545a0a2c356cd68862beb1f	2022-09-23 10:40:47 -07:00
Vikram Gaur	f4382c5391	Merge "Add SELinux policy changes for rkpd"	2022-09-23 09:33:45 +00:00
Vikram Gaur	d25c80a951	Add SELinux policy changes for rkpd ... This is a part of changes to bring up Remote Key Provisioning Daemon module. See packages/modules/RemoteKeyProvisioning for more info. Change-Id: Iae4e98176491637acb03e2e09b9d8dbc269be616 Test: atest rkpd_client_test	2022-09-23 05:09:00 +00:00
Yu Shan	e799e9284c	Merge "Create selinux policy for remoteaccess HAL."	2022-09-22 01:17:00 +00:00
Weilin Xu	52546635b2	Applying new IBroadcastRadio AIDL ... Update Sepolicy for AIDL broadcast radio HAL. Ignore fuzzer default AIDL implementation for now. Bug: 170336130 Test: m -j Change-Id: Ie55c08c6a721de1f8dc40acc81de68565f99f7d7	2022-09-21 23:17:20 +00:00
Steven Moreland	5043c02262	Merge "hidl2aidl: conversion of gatekeeper hidl to aidl"	2022-09-21 21:26:01 +00:00
Reema Bajwa	396d34b7c8	Merge "Add SELinux changes for Credential Manager Service in system server Test: Built & Deployed on device locally."	2022-09-21 17:34:09 +00:00
Yu Shan	05a7389aa9	Create selinux policy for remoteaccess HAL. ... Will add fuzzer once the service is implemented. Test: Run remoteaccess HAL on gcar_emu. Verify the service is running. Bug: 241483300 Change-Id: I01b31a88414536ddd90f9098f422ae43a48cf726	2022-09-20 18:09:49 -07:00
Anna Zhuravleva	2864a66331	Add sepolicy for Health Connect system service. ... Add selinux policy so the healthconnect system service can be accessed by other processes. Bug: 246961138 Test: build Change-Id: I37e0e7f1a2b4696b18f8876a107c509d2906e850	2022-09-20 17:14:35 +00:00
Reema Bajwa	5b57bfaf7e	Add SELinux changes for Credential Manager Service in system server ... Test: Built & Deployed on device locally. Change-Id: I892107ed528e0ca7435aa29a0fa1e6dbf4f225c5	2022-09-19 17:51:06 +00:00
Subrahmanyaman	1d2a3fedcc	hidl2aidl: conversion of gatekeeper hidl to aidl ... Conversion of the gatekeeper hidl interface to stable aidl interface. Bug: 205760843 Test: run vts -m VtsHalGatekeeperTarget Change-Id: I44f554e711efadcd31de79b543f42c0afb27c23c	2022-09-19 17:43:26 +00:00
Yixiao Luo	aa98f8a58c	Merge "TV Input HAL 2.0 sepolicy"	2022-08-26 23:19:24 +00:00
Thiébaud Weksteen	c0fef5c1ae	Merge "Remove wpantund and lowpan_service"	2022-08-25 23:57:20 +00:00
Yixiao Luo	e83ae791aa	TV Input HAL 2.0 sepolicy ... Bug: 227673740 Test: atest VtsHalTvInputTargetTest Change-Id: I53f6537a8f911661e368824a5a5dc5db57413980	2022-08-25 14:31:49 -07:00
Shunkai Yao	3a6c68f2ba	AIDL effect: Add default Effect factory implementation to platform sepolicy ... Add example implementation services: IFactory under android.hardware.audio.effect. An audio HAL AIDL example service will register with the default implementations. Bug: 238913361 Test: m, and flash with Pixel 6a. Change-Id: Ib331899fd47b6b334b120e20617174d01e71ddb8	2022-08-22 19:27:26 +00:00
Thiébaud Weksteen	8439a1ff29	Remove wpantund and lowpan_service ... Bug: 235018188 Test: TH Change-Id: I0e2f03ad6d17f5d9223b2c500b6c3183835ec807	2022-08-22 14:09:01 +10:00
Xin Li	b347e9fd52	Merge tm-dev-plus-aosp-without-vendor@8763363 ... Bug: 236760014 Merged-In: I036e48530e37f7213a21b250b858a37fba3e663b Change-Id: Ic7d4432aea1d37546d342df3e2157b9dc8207770	2022-06-27 23:40:18 +00:00
Almaz Mingaleev	0e70ea793f	Merge "Remove TZUvA feature."	2022-06-23 07:47:26 +00:00
Neil Fuller	37888b33ba	Remove TZUvA feature. ... The feature was superseded by tzdata mainline module(s). Bug: 148144561 Test: see system/timezone Test: m selinux_policy Change-Id: I48d445ac723ae310b8a134371342fc4c0d202300 Merged-In: I48d445ac723ae310b8a134371342fc4c0d202300	2022-06-13 11:45:50 +00:00
Devin Moore	92c36611e3	Merge "Add permissions for new netd AIDL HAL" am: e47782171a am: ff958713a2 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2095165 Change-Id: I7d2b464664e78b2cb32820adef2595a248203969 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-06-10 20:30:09 +00:00
Devin Moore	309a355088	Add permissions for new netd AIDL HAL ... Netd is now serving an AIDL HAL to replace the old HIDL HAL. Bug: 205764585 Test: Boot and check for avc denials Change-Id: I1ca5ed4ff3b79f082ea2f6d3e81f60a64ca04855	2022-06-09 22:39:15 +00:00
Treehugger Robot	27945bccb0	Merge "Add sepolicy for IBootControl AIDL" am: 921af40c4b am: 8fbf709eb0 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2050816 Change-Id: Ib687153be4608959548009903420a48def7e9891 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-06-08 10:32:27 +00:00
Kelvin Zhang	187cb2c64c	Add sepolicy for IBootControl AIDL ... Test: th Bug: 227536004 Change-Id: I1206b4aae1aab904a76836c893ee583b5ce54624	2022-06-07 16:26:19 -07:00
Treehugger Robot	3e78ff7f5d	Merge "Iorapd and friends have been removed" am: f6fefa9d61 am: 74607b608e ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2098987 Change-Id: I6582ca6634d76a54e73900d76b9f3534cb04c192 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-05-19 09:57:40 +00:00
Jeff Vander Stoep	b07c12c39d	Iorapd and friends have been removed ... Remove references in sepolicy. Leave a few of the types defined since they're public and may be used in device-specific policy. Bug: 211461392 Test: build/boot cuttlefish Change-Id: I615137b92b82b744628ab9b7959ae5ff28001169	2022-05-18 12:07:39 +02:00
Joe Bolinger	3c372b2180	Add virtual fingerprint instance to policy. am: 197b314b4b am: 97db8c0c4d ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2072070 Change-Id: I5d603c34a7056865406310c68a644463f62626b8 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-22 07:50:18 +00:00
Joe Bolinger	197b314b4b	Add virtual fingerprint instance to policy. ... Bug: 228638448 Change-Id: Id9cd3565d731ba98f18e91c50fc19b6820bf3172 Test: N/A	2022-04-21 22:57:01 +00:00
Lorenzo Colitti	ce493bd00d	Merge "Connectivity Native AIDL interface Sepolicy" am: bf8af42bf5 am: 5ef1893f50 am: 4d7cd06a40 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1943988 Change-Id: I330642784c6fddd6949a55156d1fa6b198425a4a Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-01 22:36:20 +00:00
Lorenzo Colitti	bf8af42bf5	Merge "Connectivity Native AIDL interface Sepolicy"	2022-04-01 21:46:37 +00:00
Neha Pattan	1838513cca	Merge "Sepolicy changes for adding new system service for AdServices." am: dcb324bdb3 am: e5d6614096 am: c5c329718a ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2046744 Change-Id: I6f1d6ee7b30e7d6a5f26282268b4a56fa57cb873 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-04-01 19:33:33 +00:00
Neha Pattan	64ef8be1de	Sepolicy changes for adding new system service for AdServices. ... Test: build Bug: 216375107 Change-Id: I238ac3f8966ce05768aef17bd05217a9772cf2f3	2022-03-28 19:26:50 +00:00
Mikhail Naganov	d08f5c240f	Merge "Add AIDL audio HAL service to SEPolicy" am: 1704f61dcf am: ba497daa6c am: 3cb68e23a1 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2040968 Change-Id: Ice3516fe2dc57fd35c0b2c67b8cf9e397e2d3018 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>	2022-03-25 23:24:33 +00:00
Mikhail Naganov	676da7273f	Add AIDL audio HAL service to SEPolicy ... This adds the two top interfaces: IConfig and IModule to service context, allows the HAL service to call Binder, and registers the example implementation service executable. Bug: 205884982 Test: m Change-Id: I322e813c96123167ea29b6c25a08ec9677c9b4d1	2022-03-24 01:39:29 +00:00
Bram Bonne	b93f26fd89	Move sdk_sandbox sepolicy to AOSP. ... Bug: 224796470 Bug: 203670791 Bug: 204989872 Bug: 211761016 Bug: 217543371 Bug: 217559719 Bug: 215105355 Bug: 220320098 Test: make, ensure device boots Change-Id: Ia96ae5407f5a83390ce1b610da0d49264e90d7e2 Merged-In: Ib085c49f29dab47268e479fe5266490a66adaa87 Merged-In: I2215ffe74e0fa19ff936e90c08c4ebfd177e5258 Merged-In: I478c9a16032dc1f1286f5295fc080cbe574f09c9 Merged-In: Ibf478466e5d6ab0ee08fca4da3b4bae974a82db0 Merged-In: I5d519605d9fbe80c7b4c9fb6572bc72425f6e90a Merged-In: I05d2071e023d0de8a93dcd111674f8d8102a21ce Merged-In: I6572a7a5c46c52c9421d0e9c9fc653ddbd6de145 Merged-In: I1b6d1a778cb658bdfd930b684e4ba0640031b226 Merged-In: I9fb98e0caee75bdaaa35d11d174004505f236799	2022-03-17 10:22:33 +01:00
Tyler Wear	691def4fd5	Connectivity Native AIDL interface Sepolicy ... Sepolicy files for new ConnectivityNative service. This is a new service implemented in java accessible from native code. Stable aidl is used to avoid having to manually write the unparcling code in two different languages. A new service is required because there is no connectivity service in the system server that exposes a stable aidl interface. Bug: 179733303 Change-Id: If2372712a4a8ac7b0631a2195aabc910d1a829cc	2022-02-24 08:53:13 -08:00
Nikita Ioffe	e2da633ef7	Rename SupplementalProcess to SdkSandbox ... Ignore-AOSP-First: sepolicy is not in aosp, yet Bug: 220320098 Test: presubmit Change-Id: I9fb98e0caee75bdaaa35d11d174004505f236799	2022-02-23 20:44:20 +00:00
Treehugger Robot	a77159c365	Merge changes from topic "revert-1979386-revert-1967140-EVS_sepolicy_updates_T-MBLQTXKQEY-UVTCTRHQWF" am: 48f59f9ec2 am: 33f3804491 am: 35d788475c am: 05ef2c2c88 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1978173 Change-Id: Id411487bab280f9c0e5d5f575ec8d9e3154fd447	2022-02-10 22:06:17 +00:00
Changyeon Jo	eacb1095a8	Revert^2 "Updates sepolicy for EVS HAL" ... 418f41ad13 Bug: 216727303 Test: m -j selinux_policy on failed targets reported in b/218802298 Change-Id: Iec8fd2a1e9073bf3dc679e308407572a8fcf44d9	2022-02-10 17:21:54 +00:00
Changyeon Jo	8c12609bce	Revert^2 "Adds a sepolicy for EVS manager service" ... 0137c98b90 Bug: 216727303 Test: m -j selinux_policy on failed targets reported in b/218802298 Change-Id: I2ae2fc85a4055f2cb7d19ff70b120e7b7ff0957d	2022-02-10 17:21:14 +00:00
Mohammed Rashidy	1ea99c86e9	Merge changes from topic "revert-1967140-EVS_sepolicy_updates_T-MBLQTXKQEY" am: 7f1eaf1b45 am: aa0cb606c3 am: 3bed79292e am: f1ea833625 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1979387 Change-Id: I8ad7455e22999359816e3e47dfcb5b95845a63e4	2022-02-10 12:32:56 +00:00
Mohammed Rashidy	5e3beea9bc	Revert "Updates sepolicy for EVS HAL" am: 418f41ad13 am: 4d67e0d02b am: a46cbab128 am: 7f9b355e86 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1979386 Change-Id: I6e704950a709e76c8e2c5fdb3829487a4012f887	2022-02-10 12:32:54 +00:00
Mohammed Rashidy	0137c98b90	Revert "Adds a sepolicy for EVS manager service" ... Revert submission 1967140-EVS_sepolicy_updates_T Reason for revert: triggered revert due to breakage https://android-build.googleplex.com/builds/quarterdeck?branch=git_master&target=cf_x86_64_auto-userdebug&lkgb=8168894&lkbb=8168958&fkbb=8168947, bug b/218802298 Reverted Changes: I730d56ab1:Allows hal_evs_default to read directories I2df8e10f5:Updates sepolicy for EVS HAL Ie6cb3e269:Adds a sepolicy for EVS manager service Change-Id: I207c261bcf2c8498d937ab02c499bf709a5f1b15	2022-02-10 10:07:44 +00:00
Mohammed Rashidy	418f41ad13	Revert "Updates sepolicy for EVS HAL" ... Revert submission 1967140-EVS_sepolicy_updates_T Reason for revert: triggered revert due to breakage https://android-build.googleplex.com/builds/quarterdeck?branch=git_master&target=cf_x86_64_auto-userdebug&lkgb=8168894&lkbb=8168958&fkbb=8168947, bug b/218802298 Reverted Changes: I730d56ab1:Allows hal_evs_default to read directories I2df8e10f5:Updates sepolicy for EVS HAL Ie6cb3e269:Adds a sepolicy for EVS manager service Change-Id: I1cc37b0e56646db61bdb34cb209aefe7376c5a50	2022-02-10 10:07:44 +00:00
Treehugger Robot	47f43ab23c	Merge changes from topic "EVS_sepolicy_updates_T" am: 2cedd28cf9 am: 177cf20196 am: 85c9e1cf9e am: feb9f3f2c2 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1967009 Change-Id: I112edf374e2b96e74f786897d580d396bec33c29	2022-02-10 08:52:51 +00:00
Changyeon Jo	a083d7a8d8	Updates sepolicy for EVS HAL ... This CL updates hal_evs_default to be sufficient for the defautl EVS HAL implementation and modifies other services' policies to be able to communicate with EVS HAL implementations Bug: 217271351 Test: m -j selinux_policy and Treehugger Change-Id: I2df8e10f574d62f8b84e0ff0381656ab1b18b52f	2022-02-10 01:42:59 +00:00
Changyeon Jo	5c3bc58163	Adds a sepolicy for EVS manager service ... Bug: 170401743 Bug: 216727303 Test: m -j selinux_policy and TreeHugger Change-Id: Ie6cb3e269fc46a61b56ca93efd69fbc447da0e3d	2022-02-10 01:42:21 +00:00
Jayant Chowdhary	58c0794156	Merge "System wide sepolicy changes for aidl camera hals." am: b00bf9d282 am: 4c51fa993e am: f3ccb9095a am: 887847beaa ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1975831 Change-Id: If90113a972d3f96bed74db0ae65da50caff1afbf	2022-02-09 04:04:33 +00:00
Jayant Chowdhary	e3019be3db	System wide sepolicy changes for aidl camera hals. ... Bug: 196432585 Test: Camera CTS Change-Id: I0ec0158c9cf82937d6c00841448e6e42f6ff4bb0 Signed-off-by: Jayant Chowdhary <jchowdhary@google.com>	2022-02-08 09:37:17 +00:00
shubang	a1b9f186fb	SE policy: rename iapp -> interactive_app ... Bug: 205738783 Test: cuttlefish Change-Id: I15fd60a2dba79dd5e2a3cf57ed542e5a930680f1 Merged-In: I15fd60a2dba79dd5e2a3cf57ed542e5a930680f1	2022-02-07 07:54:32 +00:00
Seth Moore	3f7ee1390e	Add remotely provisioned key pool se policy am: a75cad0d0a am: 10ec76f621 am: 7a7ac7d5aa am: 38ed66df25 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1969539 Change-Id: If922ac778d3afbb210b284dfd167fc9212ef691f	2022-02-04 00:00:45 +00:00
Seth Moore	a75cad0d0a	Add remotely provisioned key pool se policy ... Keystore now hosts a native binder for the remotely provisioned key pool, which is used to services such as credstore to lookup remotely provisioned keys. Add a new service context and include it in the keystore services. Add a dependency on this new service for credstore. Also include a credstore dependency on IRemotelyProvisionedComponent, as it's needed to make use of the key pool. Bug: 194696876 Test: CtsIdentityTestCases Change-Id: I0fa71c5be79922a279eb1056305bbd3e8078116e	2022-02-02 15:07:26 -08:00
Treehugger Robot	a068287a1e	Merge "Adds selinux rules for ICarDisplayProxy service" am: 108fdbc5f7 am: 8a96be8df9 am: 2ac9d08d7e am: baebbb72fd ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1965562 Change-Id: Id6c66d646e8ee01db0250097c3cd967c2be8ecfe	2022-01-31 22:49:41 +00:00
Treehugger Robot	108fdbc5f7	Merge "Adds selinux rules for ICarDisplayProxy service"	2022-01-31 21:52:46 +00:00
Changyeon Jo	66eba13833	Adds selinux rules for ICarDisplayProxy service ... Bug: 170401743 Test: m -j selinux_policy Change-Id: Idf3f09d0bcf24de18d6eddb05e51991b4c5edbe8	2022-01-31 19:40:20 +00:00
Huihong Luo	a330140278	Merge "Migrate screenshot methods to AIDL" am: 9b82051367 am: 270ddf48d0 am: 703a0ffa08 am: 80e89afc85 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1954716 Change-Id: Ib79b61ae79f6ad766adca5eff0fec0bb9de34f12	2022-01-29 22:25:44 +00:00
Huihong Luo	9b82051367	Merge "Migrate screenshot methods to AIDL"	2022-01-29 21:17:18 +00:00
Robert Shih	5c11b33da4	Merge "Add sepolicy for DRM AIDL HAL" am: d70f0af2bf am: 0de1ba742a am: 77bf16ed0d am: 7295a03aec ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1918837 Change-Id: I116a39f718ce3d71dea6318191acd57aae8874a6	2022-01-28 19:55:47 +00:00
Robert Shih	d70f0af2bf	Merge "Add sepolicy for DRM AIDL HAL"	2022-01-28 18:40:53 +00:00
Treehugger Robot	35fde34cc4	Merge "Changes in SELinux Policy for cloudsearch API naming" am: 27416257f3 am: 45a466e098 am: fb1a824053 am: 51cf103457 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1963460 Change-Id: I4c834e7d376e61c26f7ec26d9ea55e2e8584ea14	2022-01-28 03:01:21 +00:00
Hui Wu	42d24fd59d	Changes in SELinux Policy for cloudsearch API naming ... Bug: 216507592 Test: Presubmit Tests Change-Id: I5aa647d146cfea0b44efb4c247d9856e0666ea86	2022-01-27 13:42:17 -08:00
Robert Shih	4968374205	Add sepolicy for DRM AIDL HAL ... Bug: 208486736 Test: atest VtsAidlHalDrmTargetTest Change-Id: Ia2b1488a564d94384d183d30291fbf5a6d2df4ab	2022-01-27 01:51:05 -08:00
Paul Hu	d4a42947c3	Merge "Add sepolicy for mdns service" am: 415a2f9b58 am: 1f935d64bf am: dc91d13405 am: 5f1b07275c ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1916037 Change-Id: Ibad85dfc0da838419d71f5a466d77152eb837e5d	2022-01-25 03:40:42 +00:00
Paul Hu	415a2f9b58	Merge "Add sepolicy for mdns service"	2022-01-25 02:35:42 +00:00
Hunsuk Choi	dfbaf937fc	Merge "Combining hal_radio_*_service into hal_radio_service" am: 5c27113222 am: f3e65b463f am: 13a711981a am: adee6a673c ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1958840 Change-Id: Ifbf8a50deaa0b5c61d5ee70eb5ed81d1cf0b0ebc	2022-01-25 01:52:56 +00:00
Hunsuk Choi	7938201cbb	Combining hal_radio_*_service into hal_radio_service ... Test: build and flash Bug: 198331673 Change-Id: Id5d699ffc77f708e2144ffea6d2a6805822e7f50	2022-01-24 19:42:42 +00:00
paulhu	70b0a77ee0	Add sepolicy for mdns service ... mdns service is a subset of netd-provided services, so it gets the same treatment as netd_service or dnsresolver_service Bug: 209894875 Test: built, flashed, booted Change-Id: I33de769c4fff41e816792a34015a70f89e4b8a8c	2022-01-25 00:50:21 +08:00
George Chang	32a844da1f	Merge "Add hal_nfc_service" am: 95113bbbed am: c3c16ea2b2 am: a0cae343bb am: 90e0a6832a ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1878147 Change-Id: I81761b15b3342d18cb2f11d588757a936da5979d	2022-01-22 02:57:37 +00:00
George Chang	95113bbbed	Merge "Add hal_nfc_service"	2022-01-22 01:46:41 +00:00
Sharon Su	2a5d8ecd56	Merge "Change in SELinux Policy for wallpaper effects generation API. Test: presubmit tests" am: 0cd7ba7617 am: 1da3471495 am: 2ca8a20307 am: e4fd25aa8d ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1955283 Change-Id: If5e653764f71e4f7f3f3d500158c88023f3147c0	2022-01-22 01:00:35 +00:00
Treehugger Robot	5929ac1cf0	Merge "Add sepolicy for IInputProcessor HAL" am: c23930818d am: e12bcb296e am: 4bec13cf50 am: 94ba617915 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1945423 Change-Id: I471ae65938d4088d05adb4aa0c1a28dc8e9022ad	2022-01-22 00:12:18 +00:00
Sharon Su	0cd7ba7617	Merge "Change in SELinux Policy for wallpaper effects generation API. Test: presubmit tests"	2022-01-22 00:06:00 +00:00
Kathy Chen	4ce608cf25	Merge "SELinux policy changes for AmbientContext system API." am: 7bb9120ba7 am: 49527e07b6 am: f46b2a87dd am: ad1efe3c75 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1920077 Change-Id: Ib119d650516410479097ba7e339529660f9ffa16	2022-01-21 22:54:30 +00:00
Treehugger Robot	c23930818d	Merge "Add sepolicy for IInputProcessor HAL"	2022-01-21 22:45:52 +00:00
Kathy Chen	082263f3bc	SELinux policy changes for AmbientContext system API. ... Context about this is on ag/16302285 Test: Ensure no build failures, ensure no SecurityException on boot Bug: 192476579 Change-Id: If5ba2fa41975acf91c0002a0f301da11eaebd6d2	2022-01-21 20:12:54 +00:00
Treehugger Robot	e88ae7f583	Merge "Add selinux policy for new BinaryTransparencyService" am: 158927ed5c am: c39826824d am: 53fab93545 am: d65a7b8b68 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1954957 Change-Id: I45a2571e463975829393a214f0e6c061ecbfdcd1	2022-01-21 20:09:37 +00:00
Treehugger Robot	158927ed5c	Merge "Add selinux policy for new BinaryTransparencyService"	2022-01-21 19:10:31 +00:00
Shubang Lu	11e8f96e7a	Merge "SE policy: rename iapp -> interactive_app"	2022-01-21 18:04:08 +00:00
Treehugger Robot	af73d1f622	Merge "Add Bluetooth Audio HAL rules" am: f53bb875bb am: 28f2f1e451 am: 076d9f8bd7 am: d45df014a5 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1942846 Change-Id: I178bf44ce9b364cf38b6311331a8f0fc93d010c6	2022-01-21 15:39:07 +00:00
Treehugger Robot	f53bb875bb	Merge "Add Bluetooth Audio HAL rules"	2022-01-21 14:40:12 +00:00
shubang	885bcd2ad6	SE policy: rename iapp -> interactive_app ... Bug: 205738783 Test: cuttlefish Ignore-AOSP-First: This change needs to be submit together with other changes which cannot be done in AOSP Change-Id: I30d6099c0821c4c75e2a8335ab08aa73aefcc986 Change-Id: I15fd60a2dba79dd5e2a3cf57ed542e5a930680f1	2022-01-21 02:28:35 -08:00
Sharon Su	cedde105ae	Change in SELinux Policy for wallpaper effects generation API. ... Test: presubmit tests Change-Id: I02f9545376534d1570cfa270dfe15c9df6f81d47	2022-01-21 09:28:49 +00:00
Badhri Jagan Sridharan	51033ba97d	Merge "Add selinux rules for android.hardware.usb.IUsb AIDL migration" am: 001b47c547 am: b0c62dd704 am: 289ec8f593 am: acfd07d0c3 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1955730 Change-Id: I85a53a5b7a1d4dc44b590bb7f07be27583250f3a	2022-01-21 06:23:52 +00:00
Siarhei Vishniakou	c655bece6a	Add sepolicy for IInputProcessor HAL ... This sepolicy is needed so that the vendor can launch a new HAL process, and then this HAL process could join the servicemanager as an impl for IInputProcessor. This HAL will be used to contain the previous impl of InputClassifier and also new features that we are going to add. Bug: 210158587 Test: use together with a HAL implementation, make sure HAL runs Change-Id: I476c215ad622ea18b4ce5cba9c07ae3257a65817	2022-01-20 23:40:05 +00:00
Badhri Jagan Sridharan	c887ea3965	Add selinux rules for android.hardware.usb.IUsb AIDL migration ... Covers the rules needed for the default AIDL implementation. Bug: 200993386 Signed-off-by: Badhri Jagan Sridharan <badhri@google.com> Change-Id: Ib152d12686e225e3c1074295a70c624a5115e9bd	2022-01-20 23:03:26 +00:00
John Reck	10056b058a	Merge "Add IAllocator stable-aidl" am: 423f4c7e93 am: 94f409898b am: d22fb4ed68 am: 2abe31e7a9 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1953816 Change-Id: I1af9325c0cc2b08b098912fa86c33c0060f741e6	2022-01-20 18:19:38 +00:00
John Reck	423f4c7e93	Merge "Add IAllocator stable-aidl"	2022-01-20 17:05:56 +00:00
George Chang	0ddfebb4e1	Add hal_nfc_service ... Bug: 204868826 Test: atest VtsAidlHalNfcTargetTest Change-Id: If01d1d0a74f5c787805d3744772d40a7aa7db9cb	2022-01-20 03:48:57 +00:00
Victor Hsieh	ba185494c0	Merge "Remove compos_internal_service" am: 2413e27cc6 am: 9d77739f87 am: 162ab210a4 am: dc6b9aa742 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1953531 Change-Id: I0d06b4186b0f05901b26e2e6b0aab988f8f6d8b8	2022-01-19 23:16:02 +00:00
Billy Lau	8bb3ed7451	Add selinux policy for new BinaryTransparencyService ... Bug: 197684182 Test: Manually verified that BinaryTransparencyService is correctly started and running. Change-Id: I4eaf5698dd2edb428205afcd57c22502d56d2ec2	2022-01-19 14:45:45 -08:00
Huihong Luo	9f2638913d	Migrate screenshot methods to AIDL ... A new service, SurfaceFlingerAIDL, is added to surfaceflinger during the process of mirgrating ISurfaceComposer interface to AIDL. Once migration is complete, this service will be deleted. Bug: 211037638 Test: screencap Change-Id: I0e41700b1af1f482cda6a6d6c67b057553485cfd	2022-01-19 10:21:19 -08:00
Josh Wu	759b4ef0df	Add Bluetooth Audio HAL rules ... Test: manual Bug: 203490261 Change-Id: Ic9994cdb8ed690996d83b46cfefbc228e35d34c3	2022-01-19 01:32:42 -08:00
John Reck	22903f0435	Add IAllocator stable-aidl ... Test: Builds & boots; no sepolicy errors logged Bug: 193558894 Change-Id: I11e162310548b67addc032ccc0d499cbf391e7f9	2022-01-18 19:40:26 -05:00
Victor Hsieh	6f6815efde	Remove compos_internal_service ... Bug: 210998077 Test: m; TH Change-Id: Id3c7fcab56de5f71b00e21bd53829b2471e07d77	2022-01-18 12:51:55 -08:00
Treehugger Robot	27af0aa678	Merge "Add sepolicy for logd and logcat services" am: d6a5b604ce am: 47f5daf227 am: 75852fc484 am: e646c94505 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1948849 Change-Id: Ibdec9f256a5602f2bf08e8992ceb7206111671ca	2022-01-14 21:43:37 +00:00
Wenhao Wang	6a656c0b67	Add sepolicy for logd and logcat services ... The logd binder service is on logd side. The logcat binder service is on system_server side. These two binder services facilitate the binder RPC between logd and system_server. Bug: 197901557 Test: manual Change-Id: I5f08bbb44a88dc72302331ab11c7d54f94db16ac	2022-01-13 11:38:43 -08:00
Jeremy Meyer	84558678f9	Merge "Add resources_manager_service" am: 0f72360b2f am: bebb429e43 am: 4833a09ba8 am: 81670747b9 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1944288 Change-Id: I8c867849177c82a0d7cb53b0d9589c521880fe9b	2022-01-12 21:46:53 +00:00
Jeremy Meyer	d8a3c2b156	Add resources_manager_service ... Test: manual, calling the service with `adb shell cmd` works Bug: 206615535 Change-Id: I8d3b945f6abff352991446e5d88e5a535a7f9ccf	2022-01-10 23:03:42 +00:00
Xinyi Zhou	ad7ee9515c	Merge "Allow system app to find NearbyManager" am: b6a6ff20ef am: ee85803987 am: 82606f8c6b am: 38da50d9ba ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1937217 Change-Id: Ic7bfe94398b6253528cb34688e2028e353c5f477	2022-01-06 20:53:41 +00:00
Xinyi Zhou	e9857ab5cf	Allow system app to find NearbyManager ... Bug: 189954300 Test: -build, flash, boot Change-Id: Ia21b10213311b0639f320b559e78963d562f30a3	2022-01-05 11:57:44 -08:00
Devin Moore	e966a379b7	Merge "Add policy for new AIDL IR hal" am: 4f85138c08 am: 4e044e5893 am: 570c442620 am: 6026ac4077 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1886401 Change-Id: Ia75ace8881d2761443b63b853558452c2b8d5eed	2021-12-22 22:52:58 +00:00
Devin Moore	4f85138c08	Merge "Add policy for new AIDL IR hal"	2021-12-22 21:44:17 +00:00
Hui Wu	a3a0a6aa0e	Merge "Changes in SELinux Policy for cloudsearch API" am: c66fb7aefc am: 39e16393b7 am: 9f75793c0f am: 82f06faacd ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1927577 Change-Id: Id9b1d96e40f6c1687b8e844febc24603a3dfdb90	2021-12-17 04:39:08 +00:00
Devin Moore	978b9e5d1c	Add policy for new AIDL IR hal ... IR interface is converted to AIDL and this contains the necessary permissions for the default service to serve the interface. Test: atest VtsHalIrTargetTest hal_implementation_test Test: check for permission issues after tests Bug: 205000342 Change-Id: I8d9d81d957bf6ef3c6d815ce089549f8f5337555	2021-12-16 20:24:27 +00:00
Hui Wu	f3e29c7066	Changes in SELinux Policy for cloudsearch API ... Bug: 210528288 Test: Presubmit Tests Change-Id: I344d28a95bf7d466620fced9cc85b50bbfcd1947	2021-12-16 19:31:53 +00:00
Treehugger Robot	82c5365ef2	Merge "Add hal_vehicle_service for AIDL VHAL service." am: 885bc3ca66 am: e197d7519c am: 908395f200 am: 2880a5cd82 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1914197 Change-Id: Ie8a90a36917c63a64e80dad6078fe62b81421bb0	2021-12-11 02:16:52 +00:00
Treehugger Robot	885bc3ca66	Merge "Add hal_vehicle_service for AIDL VHAL service."	2021-12-11 00:49:12 +00:00
Joanne Chung	c8bd82fea5	Add rule for new system service am: eed1918f7f am: f9637630c6 am: 025b236f3b am: 89a1a242a9 ... Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1891636 Change-Id: Ib4aa58bd2fb5f989bcf517735c382ed92acaefee	2021-12-10 10:03:11 +00:00
Joanne Chung	eed1918f7f	Add rule for new system service ... Update policy for new system service, used for Apps to present the toolbar UI. Bug: 190030331 Bug: 205822301 Test: manual. Can boot to home and get manager successfully. Change-Id: Iee88681a93ae272a90896ccd2a6b64c26c809e82	2021-12-10 13:30:55 +08:00
Xiaowen Lei	dfd02c5633	Update sepolicy for service renaming in ag/16267310. ... Note: the service was renamed following ApiLint.kt suggestions. Ignore-AOSP-First: tied to launch of new upcoming hardware. Test: atest CtsAppTestCases:CommunalManagerTest Bug: 206054365 Change-Id: Ieca5eba540e77af09d6a1cfe03cc29a988503b5b	2021-12-08 23:24:16 +00:00