Tri Vo
a532088e7f
Decouple system_suspend from hal attributes.
...
System suspend service is not a HAL, so avoid using HAL-specific macros
and attributes.
Use system_suspend_server attribute for ISystemSuspend.hal permissions.
Use system_suspend type directly for internal .aidl interface
permissions.
Bug: 126259100
Test: m selinux_policy
Test: blueline boots; wakelocks can still be acquired; device suspends
if left alone.
Change-Id: Ie811e7da46023705c93ff4d76d15709a56706714
2019-02-26 18:10:28 -08:00
Nick Kralevich
81159c7e52
allow shell rs_exec:file rx_file_perms am: 68e27caeb6
...
am: b464e1944e
2019-02-26 17:51:37 -08:00
Nick Kralevich
b464e1944e
allow shell rs_exec:file rx_file_perms
...
am: 68e27caeb6
2019-02-26 17:37:06 -08:00
Andreas Gampe
6d5baca452
Sepolicy: Move dex2oat and postinstall_dexopt to private
...
In preparation for additions that should be private-only, move the
types to private. Both have to be moved as they are dependent.
Bug: 125474642
Test: m
Change-Id: I6a76eba41b036bc6fb83588adbe9d63767d3e159
2019-02-26 13:13:45 -08:00
Andreas Gampe
f77bcdcf57
Sepolicy: Move dac_override checks to private
...
In preparation for moving other components to private, so that
private-only components can stay private.
Bug: 125474642
Test: m
Change-Id: Iff1ecabc4f45051d06e062b3338a117c09b39ff9
2019-02-26 13:12:05 -08:00
Nick Kralevich
68e27caeb6
allow shell rs_exec:file rx_file_perms
...
Hostside tests depend on being able to execute /system/bin/bcc. Allow
it.
From bug:
In the NDK:
$ ./checkbuild.py
$ virtualenv -p ../out/bootstrap/bin/python3 env
$ source env/bin/activate
$ ./run_tests.py --filter rs-cpp-basic
FAIL rs-cpp-basic.rstest-compute [armeabi-v7a-19]: android-28 marlin HT67L0200247 QPP1.190205.017
New RS 0xee70f000
Segmentation fault
FAIL rs-cpp-basic.rstest-compute [arm64-v8a-21]: android-28 marlin HT67L0200247 QPP1.190205.017
New RS 0x7a91e13000
Segmentation fault
02-23 23:00:45.635 9516 9518 V RenderScript: Successfully loaded runtime: libRSDriver_adreno.so
02-23 23:00:45.650 9518 9518 W rstest-compute: type=1400 audit(0.0:15): avc: denied { read } for name="bcc" dev="dm-0" ino=390 scontext=u:r:shell:s0 tcontext=u:object_r:rs_exec:s0 tclass=file permissive=0
02-23 23:00:45.651 9516 9518 E RenderScript: Cannot open file '/system/bin/bcc' to compute checksum
02-23 23:00:45.652 9516 9516 E rsC++ : Internal error: Object id 0.
Test: compiles
Fixes: 126388046
Change-Id: I28e591d660c4ba9a33135e940d298d35474ef0b6
2019-02-26 13:09:28 -08:00
Yiwei Zhang
ed8c27c6d8
Merge "Game Driver: allow statsd to ask gpuservice for stats" am: 4108c665a1 am: 505ced1158
...
am: ef7ad9a849
2019-02-26 11:09:28 -08:00
Yiwei Zhang
ef7ad9a849
Merge "Game Driver: allow statsd to ask gpuservice for stats" am: 4108c665a1
...
am: 505ced1158
2019-02-26 10:54:13 -08:00
Yiwei Zhang
505ced1158
Merge "Game Driver: allow statsd to ask gpuservice for stats"
...
am: 4108c665a1
2019-02-26 10:39:08 -08:00
Treehugger Robot
4108c665a1
Merge "Game Driver: allow statsd to ask gpuservice for stats"
2019-02-26 18:26:19 +00:00
Bo Hu
952d11807d
Merge "adbd: do not audit vsock_socket create" am: 67bce94bd4 am: 9aed610978
...
am: 3c3f2cc204
2019-02-26 09:26:41 -08:00
Bo Hu
3c3f2cc204
Merge "adbd: do not audit vsock_socket create" am: 67bce94bd4
...
am: 9aed610978
2019-02-26 09:22:35 -08:00
Bo Hu
9aed610978
Merge "adbd: do not audit vsock_socket create"
...
am: 67bce94bd4
2019-02-26 09:18:30 -08:00
Bo Hu
67bce94bd4
Merge "adbd: do not audit vsock_socket create"
2019-02-26 17:10:11 +00:00
Nicolas Geoffray
547fb9a5c6
Allow installd to access device_config_runtime_native_boot_prop. am: c8cb42e27d am: 6570371a68
...
am: 9061eb21b2
2019-02-26 07:47:25 -08:00
Nicolas Geoffray
9061eb21b2
Allow installd to access device_config_runtime_native_boot_prop. am: c8cb42e27d
...
am: 6570371a68
2019-02-26 07:43:04 -08:00
Nicolas Geoffray
6570371a68
Allow installd to access device_config_runtime_native_boot_prop.
...
am: c8cb42e27d
2019-02-26 07:38:39 -08:00
Nikita Ioffe
cfe7f7b2ab
Allow apexd to reboot device
...
In some scenarios (native watchdog finding a regression, apexd failing
to mount apexes), a rollback of apexd will be triggered which requires
device reboot.
Bug: 123622800
Test: manually triggered apexd rollback and verified it reboots phone
Change-Id: I4c5d785a69dd56a63348c75c1897601749db9bc5
2019-02-26 13:29:22 +00:00
Ray Essick
73ee97a7fc
Merge "Allow mediametrics to log records to statsd" am: 8f96c9fd67 am: 26c38b133c
...
am: 53eb378ab9
2019-02-26 03:36:52 -08:00
Ray Essick
53eb378ab9
Merge "Allow mediametrics to log records to statsd" am: 8f96c9fd67
...
am: 26c38b133c
2019-02-26 02:08:09 -08:00
Ray Essick
26c38b133c
Merge "Allow mediametrics to log records to statsd"
...
am: 8f96c9fd67
2019-02-26 01:44:50 -08:00
Nicolas Geoffray
c8cb42e27d
Allow installd to access device_config_runtime_native_boot_prop.
...
Test: m && boot
Bug: 119800099
Change-Id: I3d9c48b9474ed68c98cf65110ed9375a2c4c8aa1
2019-02-26 08:56:57 +00:00
Treehugger Robot
8f96c9fd67
Merge "Allow mediametrics to log records to statsd"
2019-02-26 08:40:42 +00:00
Nick Kralevich
0562521004
Merge "Fix dl.exec_linker* tests" am: 5946759331 am: d8233d3785
...
am: f84687ed7d
2019-02-26 00:28:33 -08:00
Jeff Vander Stoep
9d761df2e4
Merge "bug_map: remove tracking for b/79414024" am: 9ad7758c2e am: 13e75e148b
...
am: 9aa5231a4b
2019-02-26 00:24:51 -08:00
Hridya Valsaraju
ace382dc58
Merge "Fastbootd must be able to erase logical partitions" am: da446bf952 am: 6eac77068c
...
am: 43e7e50f65
2019-02-26 00:19:41 -08:00
Nick Kralevich
f84687ed7d
Merge "Fix dl.exec_linker* tests" am: 5946759331
...
am: d8233d3785
2019-02-25 23:55:02 -08:00
Jeff Vander Stoep
9aa5231a4b
Merge "bug_map: remove tracking for b/79414024" am: 9ad7758c2e
...
am: 13e75e148b
2019-02-25 23:46:19 -08:00
Hridya Valsaraju
43e7e50f65
Merge "Fastbootd must be able to erase logical partitions" am: da446bf952
...
am: 6eac77068c
2019-02-25 23:29:55 -08:00
Nick Kralevich
d8233d3785
Merge "Fix dl.exec_linker* tests"
...
am: 5946759331
2019-02-25 23:21:17 -08:00
shafik
a1693b83af
Allow installd to delete directories in staging dir am: 9f8ff76e35 am: 145d81f81b
...
am: f16dc52ecb
2019-02-25 23:14:58 -08:00
Jeff Vander Stoep
13e75e148b
Merge "bug_map: remove tracking for b/79414024"
...
am: 9ad7758c2e
2019-02-25 23:13:43 -08:00
Hridya Valsaraju
6eac77068c
Merge "Fastbootd must be able to erase logical partitions"
...
am: da446bf952
2019-02-25 23:10:10 -08:00
shafik
f16dc52ecb
Allow installd to delete directories in staging dir am: 9f8ff76e35
...
am: 145d81f81b
2019-02-25 23:04:24 -08:00
shafik
145d81f81b
Allow installd to delete directories in staging dir
...
am: 9f8ff76e35
2019-02-25 22:52:50 -08:00
Sundong Ahn
ed848e5554
Merge "Add ro.surface_flinger.display_primary*" am: 3e7ad0b081 am: c1f0e3cc95
...
am: 2c5a67ff89
2019-02-25 22:15:38 -08:00
Sundong Ahn
2c5a67ff89
Merge "Add ro.surface_flinger.display_primary*" am: 3e7ad0b081
...
am: c1f0e3cc95
2019-02-25 22:03:17 -08:00
Xin Li
1d9cd0bb54
[automerger skipped] Merge "DO NOT MERGE - Merge pi-dev@5234907 into stage-aosp-master" into stage-aosp-master am: e7cd7362fa -s ours
...
am: 14c3a64903
2019-02-25 21:39:04 -08:00
Xin Li
14c3a64903
[automerger skipped] Merge "DO NOT MERGE - Merge pi-dev@5234907 into stage-aosp-master" into stage-aosp-master
...
am: e7cd7362fa
2019-02-25 21:24:43 -08:00
Ray Essick
7438ec0497
Allow mediametrics to log records to statsd
...
to integrate mediametrics' upload scheme into statsd transport/mechanism.
Bug: 118782504
Test: statsd test harness
Change-Id: I95bf4d2a5c257e4b9001d832f775032f4daeb5bb
2019-02-25 20:09:54 -08:00
Treehugger Robot
5946759331
Merge "Fix dl.exec_linker* tests"
2019-02-26 03:08:38 +00:00
Xin Li
1f824a27f4
[automerger skipped] DO NOT MERGE - Merge pi-dev@5234907 into stage-aosp-master am: 9bdc97c311 -s ours
...
am: 62da15add8
2019-02-25 17:21:08 -08:00
Xin Li
62da15add8
[automerger skipped] DO NOT MERGE - Merge pi-dev@5234907 into stage-aosp-master
...
am: 9bdc97c311
2019-02-25 16:20:47 -08:00
Treehugger Robot
9ad7758c2e
Merge "bug_map: remove tracking for b/79414024"
2019-02-26 00:08:18 +00:00
Andreas Gampe
7a72b763e2
Sepolicy: Clean up moved files am: 2a9eaecf9a am: e522218f4e
...
am: 8673ace1c4
2019-02-25 15:41:23 -08:00
Andreas Gampe
f636788b9d
Sepolicy: Move some parts from public to private am: 4abfe60215 am: 759dc65385
...
am: 4da538494d
2019-02-25 15:39:03 -08:00
Andreas Gampe
4798c34c55
Sepolicy: Move dalvik cache neverallow to private am: 63c7b0fa18 am: 793c5067aa
...
am: 8c885e5cdb
2019-02-25 15:33:10 -08:00
Nick Chalko
1cf5e30f9b
Merge "Add sysfs_extcon for /sys/class/extcon" am: cac127c8fd am: 31bd5722e2
...
am: 574b1a3655
2019-02-25 15:29:52 -08:00
Tri Vo
df309f6afb
audit apps opening /dev/ashmem am: 877fe9dea6 am: 183fc3f2a2
...
am: fc61a3dd8b
2019-02-25 15:21:42 -08:00
Nick Kralevich
905b4000cb
Fix dl.exec_linker* tests
...
The dl.exec_linker* tests verify that the linker can invoked on an
executable. That feature still works, but not with the default
shell user, which is required for the CTS bionic tests.
Addresses the following denial:
audit(0.0:5493): avc: denied { execute_no_trans } for path="/bionic/bin/linker64" dev="loop3" ino=25 scontext=u:r:shell:s0 tcontext=u:object_r:system_linker_exec:s0 tclass=file permissive=0
Bug: 124789393
Test: compiles
Change-Id: I77772b2136fae97174eeba6542906c0802fce990
2019-02-25 15:11:40 -08:00
