tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
35130 commits 1 branch 0 tags 50 MiB
Commit graph

35130 commits

This branch
This branch
All branches
Author SHA1 Message Date
Treehugger Robot
e4548984ba Merge "Move mtectrl to private" am: 6003019fa8 am: d0a3b18e55 am: b709430731 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1958841

Change-Id: If649cdbae4162b1ccbf066e5cdd9ffc41e627482
 2022-01-26 10:20:49 +00:00
Treehugger Robot
b709430731 Merge "Move mtectrl to private" am: 6003019fa8 am: d0a3b18e55 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1958841

Change-Id: I306eb31a908e0639f74d1e41d436ade011ad677f
 2022-01-26 10:07:27 +00:00
Treehugger Robot
d0a3b18e55 Merge "Move mtectrl to private" am: 6003019fa8 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1958841

Change-Id: I9666cac77b262fd86581cd5e6b9c8d5f4970e692
 2022-01-26 09:43:44 +00:00
Treehugger Robot
6003019fa8 Merge "Move mtectrl to private" 2022-01-26 09:30:59 +00:00
Florian Mayer
c72b989836 Merge "[mte] add property to globally enable mte." am: 0f30f3d8ff am: b54919630f am: 81ace5cfd5 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959654

Change-Id: Icd485e2529c51c69d32336136c916a6ddd2c1ffe
 2022-01-26 00:40:59 +00:00
Florian Mayer
81ace5cfd5 Merge "[mte] add property to globally enable mte." am: 0f30f3d8ff am: b54919630f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959654

Change-Id: Ief84188881ede2a103aa468b7bd75d9c8ce8855a
 2022-01-26 00:22:46 +00:00
Florian Mayer
b54919630f Merge "[mte] add property to globally enable mte." am: 0f30f3d8ff 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959654

Change-Id: I71548ab12c26cacd10d0d40079a4b2d7cf01990e
 2022-01-26 00:10:26 +00:00
Inseob Kim
3bd63cc206 Move mtectrl to private 
Because mtectrl is a system internal domain, and we don't need to expose
the type to vendor.

Test: build and boot
Change-Id: Idb5c4a4c6f175e338722971944bf08ba99835476
 2022-01-26 08:59:55 +09:00
Florian Mayer
0f30f3d8ff Merge "[mte] add property to globally enable mte." 2022-01-25 23:59:01 +00:00
Seth Moore
bcbb78befd Merge "Revert "Allow default identity service to call keymint"" am: c725aaf974 am: 9c8fbe47ec am: af0f0903f4 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959803

Change-Id: I1747df830bd721a33a0e1dbd90c09b9db79c9445
 2022-01-25 23:45:52 +00:00
Seth Moore
af0f0903f4 Merge "Revert "Allow default identity service to call keymint"" am: c725aaf974 am: 9c8fbe47ec 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959803

Change-Id: I79f4147518c7f70ac2e4936e95d43f67213728e3
 2022-01-25 23:27:38 +00:00
Seth Moore
9c8fbe47ec Merge "Revert "Allow default identity service to call keymint"" am: c725aaf974 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959803

Change-Id: I98529c868fda5e1c76a25cb14c77be4e7a7d31be
 2022-01-25 23:18:25 +00:00
Seth Moore
ea3b7e8938 Revert^2 "Allow default identity service to call keymint" 
5a1e60c090

Change-Id: Ia04a96e6b5ce89b8ef5f34c33279e58c4de6430c
 2022-01-25 23:04:37 +00:00
Seth Moore
c725aaf974 Merge "Revert "Allow default identity service to call keymint"" 2022-01-25 23:03:24 +00:00
Seth Moore
5a1e60c090 Revert "Allow default identity service to call keymint" 
Revert submission 1956689-add rkp to identity-default

Reason for revert: Broke git-master. Will resubmit later.
Reverted Changes:
I96dcf3027:Add remote key provisioning to the IC HAL
Id686ac33a:Add dependency on keymint cpp lib
Ib368a2a00:Log to logd in the default identity service
I7d2906de0:Refactor IC support for RKP
Iae0f14f1c:Fix formatting of identity credential aidl
I01d086a4b:Allow default identity service to call keymint

Change-Id: I22a9e9bf8b7edc3d6b635b3e4a07a2efc4ff087a
 2022-01-25 22:44:24 +00:00
Treehugger Robot
5d24fc9135 Merge "Delete more unused policies by CompOS" am: fabaac131a am: 6d0eabd67b am: e5ffe2405e 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959643

Change-Id: Iea40d5271e2edc8f20d8207b38437416e44bf71d
 2022-01-25 21:18:00 +00:00
Treehugger Robot
7c368eaab4 Merge "Add context for ro.boot.microdroid.debuggable property" am: c8ff1677ed am: 66d98a7bbe am: aa6113093c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1958826

Change-Id: I9ca0f7d9c0b5bc6b9c7fd7cfd0a6232dd4d25bfc
 2022-01-25 21:17:51 +00:00
Seth Moore
6bd26b315c Merge "Allow default identity service to call keymint" am: 63fa21b46a am: 618c2d04cc am: 468746e437 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1954396

Change-Id: Ie0a11383fdfb0e0abb3788844dd6c46fe719204d
 2022-01-25 21:12:15 +00:00
Treehugger Robot
e5ffe2405e Merge "Delete more unused policies by CompOS" am: fabaac131a am: 6d0eabd67b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959643

Change-Id: I44b7747fe32e33f39901571d368c28e0d528bf14
 2022-01-25 21:08:12 +00:00
Treehugger Robot
aa6113093c Merge "Add context for ro.boot.microdroid.debuggable property" am: c8ff1677ed am: 66d98a7bbe 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1958826

Change-Id: Ieae0f55918799d0130947fa694f94af480594bd0
 2022-01-25 21:08:03 +00:00
Seth Moore
468746e437 Merge "Allow default identity service to call keymint" am: 63fa21b46a am: 618c2d04cc 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1954396

Change-Id: I93419bbdd8e29870c9701a471f92ffce3badbfb4
 2022-01-25 21:07:35 +00:00
Treehugger Robot
6d0eabd67b Merge "Delete more unused policies by CompOS" am: fabaac131a 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959643

Change-Id: I5f85e8f63a09bc65900daf0490004ef4bbf2b258
 2022-01-25 21:02:33 +00:00
Treehugger Robot
fabaac131a Merge "Delete more unused policies by CompOS" 2022-01-25 20:54:41 +00:00
Treehugger Robot
66d98a7bbe Merge "Add context for ro.boot.microdroid.debuggable property" am: c8ff1677ed 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1958826

Change-Id: I0ee83d33a3642a6bf10bff80a4f82a5852ab88be
 2022-01-25 20:54:29 +00:00
Seth Moore
618c2d04cc Merge "Allow default identity service to call keymint" am: 63fa21b46a 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1954396

Change-Id: I519466daae1613657463a2d589182a864e094a4d
 2022-01-25 20:53:30 +00:00
Treehugger Robot
c8ff1677ed Merge "Add context for ro.boot.microdroid.debuggable property" 2022-01-25 20:41:07 +00:00
Seth Moore
63fa21b46a Merge "Allow default identity service to call keymint" 2022-01-25 20:33:01 +00:00
Andrew Scull
7c44f10839 Give DICE HAL access to driver am: f451a1407f am: 20558224de am: cf6a6262b2 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959022

Change-Id: Ie4f3a63aef29ecfbcfd0764c8a486608615cd11c
 2022-01-25 18:34:22 +00:00
Andrew Scull
cf6a6262b2 Give DICE HAL access to driver am: f451a1407f am: 20558224de 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959022

Change-Id: I8d234bb01bd052ef99d6a8fd89ed17ab815db923
 2022-01-25 18:17:25 +00:00
Andrew Scull
20558224de Give DICE HAL access to driver am: f451a1407f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1959022

Change-Id: I1898ab6807ecdb18fa4b3dff236867bc0424b074
 2022-01-25 17:59:46 +00:00
Florian Mayer
be3197c996 [mte] add property to globally enable mte. 
Bug: 216305376

Change-Id: I25d0b3c9d0e7e6bba14eedf9b833c5e07786ec71
 2022-01-25 17:21:58 +00:00
Victor Hsieh
ea38d6925d Delete more unused policies by CompOS 
Bug: 205750213
Test: TH
Change-Id: Ie08465e8801a74d61f85715e85a856293c4232d5
 2022-01-25 08:40:46 -08:00
Andrew Scull
30373f3015 Add context for ro.boot.microdroid.debuggable property 
This property is read by microdroid_manager to check whether the VM is
in debug mode. Give it a context to satisfy the sepolicy.

Bug: 214231981
Test: atest MicrodroidTestApp
Change-Id: I9d4bda5e487324c95229c7978e8fe0a53fa9f616
 2022-01-25 16:07:21 +00:00
Andrew Scull
f451a1407f Give DICE HAL access to driver 
The driver facilitates the handover of values from the bootloader so
needs to be accessible by the HAL.

Bug: 214231981
Test: run microdroid with a "google,open-dice" DT node
Change-Id: Ib5317e6a42befe22d8f1dbefeb9803f5ec92b061
 2022-01-25 15:22:42 +00:00
Etienne Ruffieux
d30f5d496b Merge "Added new context declaration for Bluetooth configs" am: 0a19dbdcd3 am: e1da066e3d am: f38dd0b771 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1944887

Change-Id: Id4051e64b775629c3899e80915e27eb473542607
 2022-01-25 15:02:13 +00:00
Etienne Ruffieux
f38dd0b771 Merge "Added new context declaration for Bluetooth configs" am: 0a19dbdcd3 am: e1da066e3d 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1944887

Change-Id: I59b387bae6f3191f9f0523fecb19d1e40d798ff9
 2022-01-25 14:44:55 +00:00
Etienne Ruffieux
e1da066e3d Merge "Added new context declaration for Bluetooth configs" am: 0a19dbdcd3 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1944887

Change-Id: Ide7ccb4aa9f82d0f2f795c1bf62dbac5c2ad2ae5
 2022-01-25 14:22:27 +00:00
Seth Moore
c29c18592e Merge "Add keystore2 permission to get attestation keys" am: 883c50c443 am: 9b47a0ab38 am: 7b939d4773 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1922579

Change-Id: I0ba3bc6d36077e9a247327ee278f91449bdec380
 2022-01-25 14:01:48 +00:00
Etienne Ruffieux
0a19dbdcd3 Merge "Added new context declaration for Bluetooth configs" 2022-01-25 14:00:08 +00:00
Seth Moore
7b939d4773 Merge "Add keystore2 permission to get attestation keys" am: 883c50c443 am: 9b47a0ab38 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1922579

Change-Id: I1f978b50d1e11ae751f47e14f65a95d0038dd055
 2022-01-25 13:44:30 +00:00
Seth Moore
9b47a0ab38 Merge "Add keystore2 permission to get attestation keys" am: 883c50c443 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1922579

Change-Id: I726ef9912127c1e83f1dfbb7b9f54316f42444c6
 2022-01-25 13:27:20 +00:00
Seth Moore
883c50c443 Merge "Add keystore2 permission to get attestation keys" 2022-01-25 13:11:34 +00:00
Treehugger Robot
b01c8b042c Merge "Add use_bionic_libs macro" am: d9befdb685 am: 138fc583dd am: bc453f9d64 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1956088

Change-Id: Ia82fa51826b63070467ded5e014b6791c4cb57ba
 2022-01-25 05:24:39 +00:00
Treehugger Robot
bc453f9d64 Merge "Add use_bionic_libs macro" am: d9befdb685 am: 138fc583dd 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1956088

Change-Id: I678836666c7a4b12db07e82647ed8a0baf5d5a72
 2022-01-25 05:08:13 +00:00
Treehugger Robot
138fc583dd Merge "Add use_bionic_libs macro" am: d9befdb685 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1956088

Change-Id: I99e9cf2aac70655d11ddb79d3be0f560038b3eca
 2022-01-25 04:51:41 +00:00
Treehugger Robot
d9befdb685 Merge "Add use_bionic_libs macro" 2022-01-25 04:37:07 +00:00
Paul Hu
5f1b07275c Merge "Add sepolicy for mdns service" am: 415a2f9b58 am: 1f935d64bf am: dc91d13405 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1916037

Change-Id: Ifcb79175989a33ec933943e96ec9382a61526b90
 2022-01-25 03:22:53 +00:00
Maciej Żenczykowski
149a2b2866 Merge "Allow bpfloader to execute btfloader" am: fa7683c9ad am: 554cbd7ddf am: ea0c5e94f0 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1954078

Change-Id: Id63686d126f68b9cc6ddf03aea8de6c7efed10e7
 2022-01-25 03:22:38 +00:00
Paul Hu
dc91d13405 Merge "Add sepolicy for mdns service" am: 415a2f9b58 am: 1f935d64bf 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1916037

Change-Id: I2b54065e3a623f74540140ff40a3772d4ec59b1c
 2022-01-25 03:05:19 +00:00
Maciej Żenczykowski
ea0c5e94f0 Merge "Allow bpfloader to execute btfloader" am: fa7683c9ad am: 554cbd7ddf 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1954078

Change-Id: I87854f5343720f6ec91be7ef3ce1ff9d549ef8f6
 2022-01-25 03:05:03 +00:00