tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
37519 commits 1 branch 0 tags 50 MiB
Commit graph

37519 commits

This branch
This branch
All branches
Author SHA1 Message Date
Christopher Morin
01eb69d408 Merge "Allow dumpstate to create tmpfs files" am: e65a7b3e2b am: c53a1e6720 am: 49719eb4de 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1983014

Change-Id: I2c60418c0d6ed22acc93c261b8707ca58ca5aaf8
 2022-03-08 01:55:03 +00:00
Evan Rosky
bd4cd1ac70 Merge "Add a persist.wm.debug property type and associated permissions" 2022-03-08 01:42:55 +00:00
Christopher Morin
49719eb4de Merge "Allow dumpstate to create tmpfs files" am: e65a7b3e2b am: c53a1e6720 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1983014

Change-Id: If625db4651792851ac8d8d3066bbd7f53c2552b9
 2022-03-08 01:34:08 +00:00
Christopher Morin
c53a1e6720 Merge "Allow dumpstate to create tmpfs files" am: e65a7b3e2b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1983014

Change-Id: I6aed68ae6f0c76e0482c555100bd55eac031a752
 2022-03-08 01:11:27 +00:00
Christopher Morin
e65a7b3e2b Merge "Allow dumpstate to create tmpfs files" 2022-03-08 00:34:42 +00:00
Xin Li
6875b8a827 Merge Android 12L 
Bug: 222710654
Merged-In: Ia6c46f2de07731b0e423da6bb32a27b8c1bbe171
Change-Id: Ia65e634d559b9ddc3eb9d4dccec9b9358648dddb
 2022-03-08 00:21:27 +00:00
Evan Rosky
5cfdf2bd6e Add a persist.wm.debug property type and associated permissions 
This is intended for wm properties related to wmshell/sysui.
Using this context allows sysui to manipulate these properties
in debug builds.

Bug: 219067621
Test: manual
Change-Id: I5808bf92dbba37e9e6da5559f8e0a5fdac016bf3
 2022-03-07 19:44:59 +00:00
Treehugger Robot
918c643845 Merge "Allow EVS HAL to access data from surfaceflinger" am: b774b141dc am: 071a0a1d17 am: 271c363aa4 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2010133

Change-Id: I92d7526b2bfacd5f34e0e90d5d3b248579b37c98
 2022-03-07 18:56:07 +00:00
Treehugger Robot
271c363aa4 Merge "Allow EVS HAL to access data from surfaceflinger" am: b774b141dc am: 071a0a1d17 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2010133

Change-Id: I7e96f4bdc16d793156499594a77cda74b939e5a4
 2022-03-07 18:34:23 +00:00
Treehugger Robot
071a0a1d17 Merge "Allow EVS HAL to access data from surfaceflinger" am: b774b141dc 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2010133

Change-Id: Ia6c46f2de07731b0e423da6bb32a27b8c1bbe171
 2022-03-07 17:57:06 +00:00
Treehugger Robot
b774b141dc Merge "Allow EVS HAL to access data from surfaceflinger" 2022-03-07 17:31:17 +00:00
Michael Eastwood
cedf8d9def Allow vendor domain to communicate with traced. am: 670b38baa9 am: b7c5fe9d56 am: 9cc7fc87c6 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2009117

Change-Id: I488c28014f4c341a7458f915d010502504a2cad1
 2022-03-07 16:40:25 +00:00
Michael Eastwood
9cc7fc87c6 Allow vendor domain to communicate with traced. am: 670b38baa9 am: b7c5fe9d56 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2009117

Change-Id: I78d3464bea9e68a6bd69381074781a53238348ea
 2022-03-07 16:18:39 +00:00
Michael Eastwood
b7c5fe9d56 Allow vendor domain to communicate with traced. am: 670b38baa9 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2009117

Change-Id: I87a0933db89b416a50072fbad8f21884f327d554
 2022-03-07 15:55:11 +00:00
Changyeon Jo
8c4ebe21f5 Allow EVS HAL to access data from surfaceflinger 
Bug: 216727303
Test: m -j selinux_policy
Change-Id: Id89a99372e334c87cd1c80c06b5b695e5c8d69e6
 2022-03-07 15:42:17 +00:00
Frank Wang
a5eb97af4b Remove Auxiliary module file context config. 
Ignore-AOSP-First: this feature is developed in an internal branch
Test: TH
Bug: 210728915
Change-Id: I92db5c20db20a39af554cbeb8347e7bfb0c823ca
 2022-03-05 07:20:59 +00:00
Michael Eastwood
670b38baa9 Allow vendor domain to communicate with traced. 
This is necessary for vendor code to be able to send trace packets to
Perfetto, which we are doing as part of an effort to provide more
detailed profiling of some vendor code.

Bug: 222684359
Test: (with downstream policy updates) m selinux_policy
Change-Id: I5ab1c04290f69e391d66a76c262d75cadb794f8d
 2022-03-04 08:30:29 -08:00
Bob Badour
d251dbb0a1 Move comment to license_note am: 97bef10ca6 am: bad80e1490 am: ebd2cc683c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2008274

Change-Id: I8a5f075e71f85f9ff5b5636e2e5555e55c361f93
 2022-03-04 09:13:28 +00:00
Bob Badour
ebd2cc683c Move comment to license_note am: 97bef10ca6 am: bad80e1490 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2008274

Change-Id: I0820ba97c2a5a1825ad8eea9fe2e8568eaed5769
 2022-03-04 08:51:27 +00:00
Bob Badour
bad80e1490 Move comment to license_note am: 97bef10ca6 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2008274

Change-Id: I728a46cbcb6466a466a38dcc24edb8fabd556fef
 2022-03-04 08:30:09 +00:00
Bob Badour
97bef10ca6 Move comment to license_note 
Comments not preserved during refresh.

Test: m nothing
Change-Id: Ifb0356ca49796b89446a50918bae95069b9c5fb4
 2022-03-03 14:58:45 -08:00
Nikita Ioffe
0e55cc2f4f Merge "Remove supplementalprocess APEX" into tm-dev 2022-03-03 16:31:55 +00:00
Inseob Kim
f754430769 Merge changes from topic "sepolicy_test" am: 4891dbefad am: 9acadc754d am: accf7af68d 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000471

Change-Id: I16d3e390e48aa08fce1713cdbbcbb345a2606517
 2022-03-03 05:15:12 +00:00
Inseob Kim
accf7af68d Merge changes from topic "sepolicy_test" am: 4891dbefad am: 9acadc754d 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000471

Change-Id: I7cc8bc6dfab8ca627d017a2740650476b65aff98
 2022-03-03 04:54:26 +00:00
Inseob Kim
9acadc754d Merge changes from topic "sepolicy_test" am: 4891dbefad 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000471

Change-Id: I865886016a9e02c6d53ff775c8b87746dae69a4a
 2022-03-03 04:29:57 +00:00
Inseob Kim
4891dbefad Merge changes from topic "sepolicy_test" 
* changes:
  Build vndservice_contexts with Android.bp
  Move sepolicy_test to Android.bp
 2022-03-03 04:02:25 +00:00
Zim
abfe4c00e7 Allow MediaProvider to access the media metrics service 
This allows MediaProvider call certain MediaCodec APIs

Also update prebuilts for API 32.

Test: atest TranscodeTest
Bug: 190422448
(cherry picked from commit 57401bc71f)
(cherry picked from commit c38b81ce4f)
Merged-In: Ied609152e6a9ba6d17b70db325ca33f1cb345eb8
Change-Id: Ied609152e6a9ba6d17b70db325ca33f1cb345eb8
 2022-03-02 18:17:57 -08:00
Nikita Ioffe
db8478cc37 Remove supplementalprocess APEX 
Ignore-AOSP-First: this code is not available in AOSP
Bug: 220320098
Test: m
Change-Id: I131bb9ed3ea7014a6010977117e6c4e9a83ec277
 2022-03-02 18:33:18 +00:00
sandrom
3459808cc9 Allow apexd to enable fsverity on /metadata am: 6446490287 am: 6bfe9b9115 am: 62107933ca 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1979766

Change-Id: If44a1dbf9b022f894e5c982bc3d9c743a7253273
 2022-03-02 09:14:01 +00:00
sandrom
62107933ca Allow apexd to enable fsverity on /metadata am: 6446490287 am: 6bfe9b9115 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1979766

Change-Id: I1ef3fd60e4a2d78a5f2927f152c9bfba1eabb812
 2022-03-02 08:52:06 +00:00
Inseob Kim
c7596c4e61 Build vndservice_contexts with Android.bp 
Bug: 33691272
Test: boot a device which uses vndservice_contexts
Change-Id: I28c36b74d4176954099f3b7e80a4869b7c44640f
 2022-03-02 17:26:44 +09:00
Inseob Kim
61257ca545 Move sepolicy_test to Android.bp 
Bug: 33691272
Test: m selinux_policy triggers sepolicy_test
Change-Id: I1618c2a35b3ce9d747db3955788427dc422fd532
 2022-03-02 17:25:52 +09:00
sandrom
6bfe9b9115 Allow apexd to enable fsverity on /metadata am: 6446490287 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1979766

Change-Id: I8bed12a4fe8145d50edf9b2425f1bf97d3b21772
 2022-03-02 08:21:21 +00:00
Nikita Ioffe
1bd088d1d0 Merge "Rename SupplementalProcess to SdkSandbox" into tm-dev 2022-03-01 17:07:16 +00:00
sandrom
6446490287 Allow apexd to enable fsverity on /metadata 
Bug: 218672709
Test: manual tests

Change-Id: Idaead3ecd3f3488512908febbdc368e184b7bca9
 2022-03-01 16:33:55 +00:00
Thiébaud Weksteen
dc06faa2b6 Merge "Remove bug_map for hal_wifi_default" am: 8ce2e156d0 am: 3886aa5237 am: 982982c3d3 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2001830

Change-Id: Ic2e440c0a10739a028e4069f3e184779dca6b71f
 2022-03-01 11:02:02 +00:00
Thiébaud Weksteen
982982c3d3 Merge "Remove bug_map for hal_wifi_default" am: 8ce2e156d0 am: 3886aa5237 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2001830

Change-Id: I8e73327f2ed95da43e68337d5e73c907201e18d3
 2022-03-01 10:14:36 +00:00
Thiébaud Weksteen
3886aa5237 Merge "Remove bug_map for hal_wifi_default" am: 8ce2e156d0 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2001830

Change-Id: I1e1a6e65af7e4b4cfd4db5f5a6af3f66b970e793
 2022-03-01 09:40:38 +00:00
Thiébaud Weksteen
8ce2e156d0 Merge "Remove bug_map for hal_wifi_default" 2022-03-01 09:06:30 +00:00
Thiébaud Weksteen
b8abcadd5b Remove bug_map for hal_wifi_default 
Bug: 220258444
Test: build & boot cuttlefish
Change-Id: I3b5c0ad1b9cbdca5f86e7615d243192163b99aaf
 2022-02-28 14:30:22 +11:00
Ankit Goyal
8d2bfa4c29 Merge "Add sepolicy for graphics IAllocator AIDL based HAL" am: b9314baf97 am: 07b5aa323e am: 6d2023b3e2 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000351

Change-Id: I102b6107cefe8da063d3845f1c1a8ec15ad451b1
 2022-02-25 20:29:55 +00:00
Robert Shih
480ed0f632 Merge "Allow dumpstate to call dump() on drm hals" am: 9846fb4082 am: 5869511f62 am: d74671eba8 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000271

Change-Id: I57c2996ac08da6d456793a8f23cc733b70dcdeb2
 2022-02-25 20:29:45 +00:00
Ankit Goyal
6d2023b3e2 Merge "Add sepolicy for graphics IAllocator AIDL based HAL" am: b9314baf97 am: 07b5aa323e 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000351

Change-Id: Icf4d4245e1ebf64be6c3ccca6f1fae70d814a03f
 2022-02-25 20:07:56 +00:00
Robert Shih
d74671eba8 Merge "Allow dumpstate to call dump() on drm hals" am: 9846fb4082 am: 5869511f62 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000271

Change-Id: Iae94775c4b33ad654230effb0992b9d06ae5b12b
 2022-02-25 20:07:50 +00:00
Ankit Goyal
07b5aa323e Merge "Add sepolicy for graphics IAllocator AIDL based HAL" am: b9314baf97 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000351

Change-Id: I799ec9df6349033df237f473e0c524bdd531b683
 2022-02-25 19:44:00 +00:00
Robert Shih
5869511f62 Merge "Allow dumpstate to call dump() on drm hals" am: 9846fb4082 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2000271

Change-Id: I794e8e754076e2e7dfbf67a7c5843906e010417d
 2022-02-25 19:43:49 +00:00
Ankit Goyal
b9314baf97 Merge "Add sepolicy for graphics IAllocator AIDL based HAL" 2022-02-25 19:34:38 +00:00
Robert Shih
9846fb4082 Merge "Allow dumpstate to call dump() on drm hals" 2022-02-25 19:19:46 +00:00
Alan Stokes
6adaa572ab Allow shell to read updated APEXes am: 5490752cfc am: 4c79e09417 am: 43d0092a86 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1998997

Change-Id: Ib61022b55630d3932379f738029eaba27c8ac8c7
 2022-02-25 15:53:16 +00:00
Alan Stokes
43d0092a86 Allow shell to read updated APEXes am: 5490752cfc am: 4c79e09417 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1998997

Change-Id: Ic33970b0feecbedca22299078c3c1b1166a54803
 2022-02-25 15:29:47 +00:00