tequilaOS/platform_system_sepolicy

Author	SHA1	Message	Date
huans	3265c6efb2	emulator: Whitelist ro.kernel.qemu. parameters am: `66b55782b8` Change-Id: I1315d4150230ef4e2b513c582f824bca97600d30	2018-06-04 10:14:50 -07:00
huans	66b55782b8	emulator: Whitelist ro.kernel.qemu. parameters And ro.kernel.android.bootanim (used to en/disable boot-anim) Bug: 79941736 Test: Manual Change-Id: Ib486903dec92df88b4d33bad6262cbcfc2aa1c4c	2018-06-01 10:48:31 -07:00
Tri Vo	b4fe8e1feb	Remove neverallow coredomain to set vendor prop. am: `6f6fbebcef` Change-Id: Ie793eff4736f8a9b351114c3fd9bd1bdcd22ab49	2018-05-31 17:56:37 -07:00
Jiyong Park	029f415d48	Merge "add extended_core_property_type" into pi-dev am: `d009682c2e` Change-Id: Ie821be484067f0ff5d06aac66a3b020d6e853d1a	2018-05-31 17:08:35 -07:00
Tri Vo	6f6fbebcef	Remove neverallow coredomain to set vendor prop. We are not forbidding system_writes_vendor_properties_violators in P, i.e. this neverallow rule is not strictly enforced. Bug: 80466516 Bug: 78598545 Test: build policy Change-Id: Iaf0ebbd2b27adf8c48082caa874e53f32bf999fc	2018-05-31 23:46:02 +00:00
TreeHugger Robot	d009682c2e	Merge "add extended_core_property_type" into pi-dev	2018-05-31 22:45:21 +00:00
Jiyong Park	c0f8f2f82a	add extended_core_property_type The attribute is used to capture system properties added from outside of AOSP (e.g. by OEM), but are not device-specific and thus are used only inside the system partition. Access to the the system properties from outside of the system partition is prevented by the neverallow rule. Bug: 80382020 Bug: 78598545 Test: m -j selinux_policy Change-Id: I22c083dc195dab84c9c21a79fbe3ad823a3bbb46	2018-05-30 17:38:09 +09:00
Jeff Vander Stoep	b16d0e1272	Merge "Use non-expanded types in prop neverallows" into pi-dev am: `b5e493d821` Change-Id: Ib877668feb90ab58b21e5d62735f1bb03fc5eb9a	2018-05-24 16:57:07 -07:00
Joel Galenson	24b6158118	Hide bpfloader sys_admin denials. am: `d65f26f1b0` Change-Id: I0435b600f5a163089650c02417646109a97e3e56	2018-05-23 14:28:48 -07:00
TreeHugger Robot	b5e493d821	Merge "Use non-expanded types in prop neverallows" into pi-dev	2018-05-23 19:08:01 +00:00
Jeff Vander Stoep	7745770bca	Use non-expanded types in prop neverallows Using hal_foo attributes in neverallow rules does not work because they are auto-expanded to types. Use hal_foo_server types instead. Fixes the following error: unit.framework.AssertionFailedError: The following errors were encountered when validating the SELinuxneverallow rule: neverallow { domain -coredomain -bluetooth -hal_bluetooth } { bluetooth_prop }: property_service set; Warning! Type or attribute hal_bluetooth used in neverallow undefined in policy being checked. Test: CtsSecurityHostTestCases Bug: 80153368 Change-Id: I2baf9f66d2ff110a4f181423790a1160a6e138da	2018-05-23 10:03:15 -07:00
Joel Galenson	d65f26f1b0	Hide bpfloader sys_admin denials. Bug: 79524845 Test: Boot device and see no denials. Change-Id: I9316bfd0e3718818a7613a421aedff7da8c87108	2018-05-23 08:36:40 -07:00
Jordan Liu	7af4a1f110	Merge "Setup policy for downloaded apns directory" into pi-dev	2018-05-22 21:12:31 +00:00
Tom Cherry	e21e9e6373	Merge "Finer grained permissions for ctl. properties" into pi-dev am: `0e403c8242` Change-Id: I778a16ae2bcc5713ba3ca1c81fd90c97b0a5d64d	2018-05-22 13:26:42 -07:00
Tom Cherry	0e403c8242	Merge "Finer grained permissions for ctl. properties" into pi-dev	2018-05-22 20:15:07 +00:00
Alan Stokes	491a095435	Remove fixed bug from bug_map. am: `c8711592ad` Change-Id: Ib622f35e8adb682c5a2b0eef9ae02857d028597c	2018-05-22 10:52:15 -07:00
Tom Cherry	2208f96e9e	Finer grained permissions for ctl. properties Currently, permissions for ctl. property apply to each action verb, so if a domain has permissions for controlling service 'foo', then it can start, stop, and restart foo. This change implements finer grainer permissions such that permission can be given to strictly start a given service, but not stop or restart it. This new permission scheme is mandatory for the new control functions, sigstop_on, sigstop_off, interface_start, interface_stop, interface_restart. Bug: 78511553 Test: see appropriate successes and failures based on permissions Change-Id: Ibe0cc0d6028fb0ed7d6bcba626721e0d84cc20fa	2018-05-22 09:13:16 -07:00
Alan Stokes	c8711592ad	Remove fixed bug from bug_map. Bug: 77816522 Bug: 73947096 Test: Flashed device, no denial seen Change-Id: Ib2f1fc670c9a76abbb9ff6747fec00fa5bcde5af (cherry picked from commit `62913dbfd2`)	2018-05-22 08:41:23 -07:00
Tom Cherry	bab2435a06	Merge "neverallow coredomain from writing vendor properties" into pi-dev am: `e5cc744d18` Change-Id: I66f2965200090a4ded857c6eb9ac6b79ee5b596c	2018-05-21 22:10:10 -07:00
TreeHugger Robot	e5cc744d18	Merge "neverallow coredomain from writing vendor properties" into pi-dev	2018-05-22 05:04:40 +00:00
Bowgo Tsai	eb2ff1cbdd	Merge "ueventd: allow reading kernel cmdline" into pi-dev am: `fd00fd123d` Change-Id: I9421816a71b08b24f652f61dec994a153354e2df	2018-05-21 16:28:37 -07:00
TreeHugger Robot	fd00fd123d	Merge "ueventd: allow reading kernel cmdline" into pi-dev	2018-05-21 23:14:38 +00:00
Niklas Lindgren	780cd6df4b	Setup policy for downloaded apns directory apns downloaded will enter a new directory that TelephonyProvider can access. Bug: 79948106 Test: Manual Change-Id: I1e7660adf020dc7052da94dfa03fd58d0386ac55 Merged-In: I1e7660adf020dc7052da94dfa03fd58d0386ac55	2018-05-21 15:58:16 -07:00
Carmen Jackson	8640cffa1e	Merge "Add sync and fence tracepoints to user-visible list of tracepoints." into pi-dev am: `09648d9ae3` Change-Id: I1821400703aa5dc41a485d3430946345978045c0	2018-05-21 14:12:20 -07:00
TreeHugger Robot	09648d9ae3	Merge "Add sync and fence tracepoints to user-visible list of tracepoints." into pi-dev	2018-05-21 21:06:39 +00:00
Carmen Jackson	f47f0c3869	Add sync and fence tracepoints to user-visible list of tracepoints. The 'sync' tracepoint was updated to be 'fence' in kernel 4.9, so this change also adds that one to the list. Bug: 79935503 Test: Took a trace using 'sync' in user mode and saw the tracepoints being saved. Change-Id: I793c6f54cd9364f33853983f8c5dfb28b98c2708	2018-05-21 12:18:18 -07:00
Paul Crowley	c9e9b326d0	Merge "Move more metadata policy from device to here" into pi-dev am: `5252ad93e2` Change-Id: I591f253f82a91b1e953f46ff2c29e48e4929665b	2018-05-21 10:46:45 -07:00
TreeHugger Robot	5252ad93e2	Merge "Move more metadata policy from device to here" into pi-dev	2018-05-21 17:36:12 +00:00
Bowgo Tsai	282fc3e48e	ueventd: allow reading kernel cmdline This is needed when ueventd needs to read device tree files (/proc/device-tree). Prior to acccess, it tries to read "androidboot.android_dt_dir" from kernel cmdline for a custom Android DT path. Bug: 78613232 Test: boot a device without unknown SELinux denials Change-Id: Iff9c882b4fcad5e384757a1e42e4a1d1259bb574 (cherry picked from commit `98ef2abb12`)	2018-05-21 09:55:41 +08:00
Frank Salim	956b93623a	Merge "Add ro.hardware.keystore_desede" into pi-dev am: `a0f9509908` Change-Id: I8fed87b5514516d2dcb8d1796ee42ca081ee490d	2018-05-18 16:04:36 -07:00
Frank Salim	a0f9509908	Merge "Add ro.hardware.keystore_desede" into pi-dev	2018-05-18 22:49:00 +00:00
Paul Crowley	bb3ba3e5d9	Move more metadata policy from device to here Test: booted metadata-encrypted device Bug: 79781913 Change-Id: Ib4cb4a04145e5619994083da055f06fe7ae0137a	2018-05-18 14:12:40 -07:00
Frank Salim	6fe4ef7e8c	Add ro.hardware.keystore_desede This allows Android Keystore to statically register support for 3DES during zygote initialization based on the device's support for hardware backed 3DES keys. Bug: b/79986680 Test: keystore CTS Change-Id: Ic9a6653cdd623a3ab10e0efbcdb37c437e6c59b9	2018-05-18 18:25:44 +00:00
Tom Cherry	cdb1624c27	neverallow coredomain from writing vendor properties System properties can be abused to get around Treble requirements of having a clean system/vendor split. This CL seeks to prevent that by neverallowing coredomain from writing vendor properties. Bug: 78598545 Test: build 2017/2018 Pixels Test: build aosp_arm64 Change-Id: I5e06894150ba121624d753228e550ba9b81f7677	2018-05-18 20:15:19 +09:00
Jaegeuk Kim	5580a18255	Merge "dumpstate: allow /metadata for df" into pi-dev am: `e2f70ebc07` Change-Id: Ic56b485f0297178d45061c0b6b7fb44fbb0b0fa5	2018-05-17 18:14:01 -07:00
TreeHugger Robot	e2f70ebc07	Merge "dumpstate: allow /metadata for df" into pi-dev	2018-05-18 00:38:09 +00:00
TreeHugger Robot	4c2e89baf8	Merge "domain.te & kernel.te: allow kernel to write nativetest_data_file" into pi-dev	2018-05-16 16:36:26 +00:00
Yongqin Liu	8c3a74ad64	domain.te & kernel.te: allow kernel to write nativetest_data_file to workaround some VTS VtsKernelLtp failures introduced by change on vfs_iter_write here: `abbb65899a`%5E%21/#F3 for discussion please check threads here: https://www.mail-archive.com/seandroid-list@tycho.nsa.gov/msg03348.html Sandeep suggest to re-order the events in that thread, that should be the right solution, this change is only a tempory workaround before that change. Bug: 79528964 Test: manually with -m VtsKernelLtp -t VtsKernelLtp#fs.fs_fill_64bit Change-Id: I3f46ff874d3dbcc556cfbeb27be21878574877d1 Signed-off-by: Yongqin Liu <yongqin.liu@linaro.org> (cherry picked from commit `64ff9e9523`) Merged-In: I3f46ff874d3dbcc556cfbeb27be21878574877d1	2018-05-16 07:46:17 -07:00
Logan Chien	921a881bf8	Merge "Add ro.vndk.lite to property_contexts" into pi-dev am: `52fd4141b8` Change-Id: Ia4d8ebc74987c18a6390884a71ad0ea9b497b1cf	2018-05-16 02:46:03 -07:00
Logan Chien	52fd4141b8	Merge "Add ro.vndk.lite to property_contexts" into pi-dev	2018-05-16 09:38:57 +00:00
Jerry Zhang	afe305d489	Merge "Allow mediaprovider to search /mnt/media_rw" into pi-dev am: `6002126f88` Change-Id: I2774c1fe619e2872805d9188ee3c3df9dcc68568	2018-05-15 14:55:35 -07:00
Jerry Zhang	6002126f88	Merge "Allow mediaprovider to search /mnt/media_rw" into pi-dev	2018-05-15 21:35:43 +00:00
Jerry Zhang	31c4b4eabf	Allow mediaprovider to search /mnt/media_rw Mtp needs access to this path in order to change files on an sdcard. Fixes denial: 05-14 17:40:58.803 3004 3004 W MtpServer: type=1400 audit(0.0:46): avc: denied { search } for name="media_rw" dev="tmpfs" ino=10113 scontext=u:r:mediaprovider:s0:c512,c768 tcontext=u:object_r:mnt_media_rw_file:s0 tclass=dir permissive=0 b/77925342 app=com.android.providers.media Bug: 77849654 Test: no denials using mtp with emulated sdcard Change-Id: I27b5294fa211bb1eff6d011638b5fdc90334bc80	2018-05-15 11:46:52 -07:00
Pavel Maltsev	236085406b	Merge "Allow to use sockets from hal server for auto" into pi-dev am: `175f23eca4` Change-Id: Icf339629d09ddf5a316e21e39a05e42cb63c9b85	2018-05-14 18:29:06 -07:00
TreeHugger Robot	175f23eca4	Merge "Allow to use sockets from hal server for auto" into pi-dev	2018-05-15 01:18:18 +00:00
Joel Galenson	f8e1cf4354	Merge "Allow vendor_init to getattr vold_metadata_file." into pi-dev am: `e2c2a85e60` Change-Id: Ie09ba0e54a005eef0aacf159fd5795acfddf54cc	2018-05-14 16:55:39 -07:00
TreeHugger Robot	e2c2a85e60	Merge "Allow vendor_init to getattr vold_metadata_file." into pi-dev	2018-05-14 23:42:19 +00:00
Pavel Maltsev	4cafae77a4	Allow to use sockets from hal server for auto Add an exemption to neverallow rule to use sockets from HAL servers only for automotive build Bug: 78901167 Test: assign this attribute to hal_vehicle_default and try to open socket from HAL implementation Test: verify that new CTS test will fail for non-automotive build with this attribute buing used Test: make cts && cts-tradefed run singleCommand cts --skip-device-info --skip-preconditions --abi arm64-v8a --module CtsSecurityHostTestCases -t android.security.cts.SELinuxHostTest Change-Id: I27976443dad4fc5b7425c089512cac65bb54d6d9	2018-05-14 14:36:19 -07:00
Joel Galenson	597be44e96	Allow vendor_init to getattr vold_metadata_file. This relaxes the neverallow rule blocking vendor_init from doing anything to vold_metadata_file. The rules above it still prevent it from doing anything other than relabelto and getattr. Bug: 79681561 Test: Boot device and see no denials. Change-Id: I1beb25bb9f8d69323c9fee53a140c2a084b12124	2018-05-14 13:08:46 -07:00
Joel Galenson	f222b1bbeb	Merge "Track cppreopts SELinux denial." into pi-dev am: `ce52208134` Change-Id: Iceb3a1d039719b53f1a18f317a7a4e4fde5c5960	2018-05-14 12:31:33 -07:00

1 2 3

144 commits