tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
47708 commits 1 branch 0 tags 50 MiB
Commit graph

468 commits

Author SHA1 Message Date
Alice Wang
0407c993d8 Revert^2 "[avf][rkp] Allow virtualizationservice to register RKP HAL" 
Revert submission 2812435-revert-2778549-expose-avf-rkp-hal-GTFGLMUUKQ

Reason for revert: This change relands the topic
https://r.android.com/q/topic:%22expose-avf-rkp-hal%22
The SELinux denial has been fixed in system/sepolicy

Reverted changes: /q/submissionid:2812435-revert-2778549-expose-avf-rkp-hal-GTFGLMUUKQ

Bug: 308596709
Bug: 274881098
Change-Id: Ib23ac4680b0f37b760bff043e1f42ce61a58c3e2
 2023-10-31 20:06:23 +00:00
Alice Wang
a0febe15c6 Merge "Revert "[avf][rkp] Allow virtualizationservice to register RKP H..."" into main am: 072d8fc0db am: d4a966612b am: b306d31843 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2812436

Change-Id: I1b3de61cd344fb7b8eefba653b0d3bbb96e18eb2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-10-31 16:47:51 +00:00
Alice Wang
072d8fc0db Merge "Revert "[avf][rkp] Allow virtualizationservice to register RKP H..."" into main 2023-10-31 15:13:01 +00:00
Alice Wang
ece557dc7a Revert "[avf][rkp] Allow virtualizationservice to register RKP H..." 
Revert submission 2778549-expose-avf-rkp-hal

Reason for revert: SELinux denial
avc:  denied  { find } for pid=3400 uid=10085 name=android.hardware.security.keymint.IRemotelyProvisionedComponent/avf scontext=u:r:rkpdapp:s0:c85,c256,c512,c768 tcontext=u:object_r:avf_remotelyprovisionedcomponent_service:s0 tclass=service_manager permissive=0


Reverted changes: /q/submissionid:2778549-expose-avf-rkp-hal

Bug: 308596709
Change-Id: If8e448e745f2701cf00e7757d0a079d8700d43c0
 2023-10-31 15:01:18 +00:00
Alice Wang
426e26ea5e Merge "[avf][rkp] Allow virtualizationservice to register RKP HAL service" into main am: 7109a31496 am: 3df9e4901a am: 47305be260 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2738393

Change-Id: Icc12780b236a978824702d73dc732860f29291b5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-10-31 14:03:19 +00:00
Alice Wang
7109a31496 Merge "[avf][rkp] Allow virtualizationservice to register RKP HAL service" into main 2023-10-31 12:21:41 +00:00
Alex Xu
1b90443ad7 Merge "Add sepolicy for security_state service." into main am: f82b6897cf am: 5d058e9399 am: 7688d9ead2 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2803335

Change-Id: Ib9ca9c1845f65b568e1a8a57c38bda95dfb5b68e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-10-27 20:18:44 +00:00
Alex Xu
f82b6897cf Merge "Add sepolicy for security_state service." into main 2023-10-27 19:20:58 +00:00
Alice Wang
104626ca99 [avf][rkp] Allow virtualizationservice to register RKP HAL service 
Bug: 274881098
Test: atest MicrodroidHostTests
Change-Id: Ib0953fa49f27719be63bb244071b132bc385dca3
 2023-10-27 09:26:42 +00:00
Alex Xu
902a010aaa Add sepolicy for security_state service. 
security_state service manages security state (e.g. SPL) information across partitions, modules, etc.

Bug: 307819014
Test: Manual
Change-Id: I4ebcd8431c11b41f7e210947b32cf64c2adf3901
 2023-10-26 06:11:58 +00:00
David Drysdale
c4ab01baad Add sepolicy for non-secure AuthGraph impl 
Bug: 284470121
Bug: 291228560
Test: hal_implementation_test
Test: VtsAidlAuthGraphSessionTest
Change-Id: I85bf9e0656bab3c96765cc15a5a983aefb6af66d
 2023-10-26 02:00:43 +00:00
Thiébaud Weksteen
ed34733266 Accept test_data attribute for file_contexts_test am: b6e7430dad am: aea4c3cd42 am: 10adc59832 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2795979

Change-Id: I043e04553116e85f7b6b1459a1fbb5121a4525de
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-10-23 08:27:42 +00:00
Thiébaud Weksteen
b6e7430dad Accept test_data attribute for file_contexts_test 
If file_contexts_test is given a test_data attribute, it will use
`checkfc -t` to validate the file_context against it, instead of using
the policy. Both options are mutually exclusive.

Bug: 299839280
Test: m
Change-Id: I3f541e0d0bb5d03ed146e27d67bc811cda3164b1
 2023-10-23 16:10:18 +11:00
Thiébaud Weksteen
581a44501b Merge changes I3a6f9db9,Ifb4453d0,I33d88b42 into main am: a8bcaec228 am: f34096a021 am: 913f4ecc82 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2795978

Change-Id: If0133963429a6ac077c44b851b4c8db96e04b963
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-10-23 05:08:36 +00:00
Thiébaud Weksteen
a69e14f342 Refactor contextsTestModule 
Keep the type of context and decides on the flags within
GenerateAndroidBuildActions. This is a no-op but will help supporting
other options for checkfc.

Bug: 299839280
Test: mm
Change-Id: I3a6f9db9d890e0a0ccb3eca37c01b2977fa2e2d1
 2023-10-23 11:21:58 +11:00
Vladimir Komsiyski
8391781258 Merge "Policy for virtualdevice_native service." into main am: 6e07de8088 am: b18914551c am: d6c42ac1d9 am: 693355160c am: 072014db30 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2774807

Change-Id: Iee6b49abb42ff3f8634193b5907506e32ba799c7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-10-07 00:56:34 +00:00
Vladimir Komsiyski
6e07de8088 Merge "Policy for virtualdevice_native service." into main 2023-10-06 14:20:09 +00:00
Vladimir Komsiyski
31facf0677 Policy for virtualdevice_native service. 
A parallel implementation of certain VDM APIs that need to
be exposed to native framework code.

Similar to package_native_service.

Not meant to be used directly by apps but should still be
available in the client process via the corresponding native
manager (e.g. SensorManager).

Starting the service: ag/24955732
Testing the service: ag/24955733

Bug: 303535376
Change-Id: I90bb4837438de5cb964d0b560585b085cc8eabef
Test: manual
 2023-10-06 12:52:42 +00:00
Wonsik Kim
dc186679f9 Merge "Add a fuzzer for media.c2 HAL" into main am: c8eacad5a8 am: 98acf4400b am: 8daf98e40d am: 0341015df6 am: 6c3d458baf 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2736097

Change-Id: I0a30aba1e841801b5d449e0f781034d8c82a8967
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-12 19:34:06 +00:00
Wonsik Kim
98acf4400b Merge "Add a fuzzer for media.c2 HAL" into main am: c8eacad5a8 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2736097

Change-Id: If12e0ee24d2b44868a281079f2cd7222ec817284
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-12 17:00:49 +00:00
Wonsik Kim
c8eacad5a8 Merge "Add a fuzzer for media.c2 HAL" into main 2023-09-12 16:14:49 +00:00
Treehugger Robot
83dff7a804 Merge "C2 AIDL sepolicy update" into main am: 8342def00a am: d065d025ed am: 234c6ed967 am: 983b92e6d9 am: 70ccf50712 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2721424

Change-Id: I0858ee5d1b65dbdfc63434881e4ef5b92e12e89d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-07 23:01:22 +00:00
Treehugger Robot
d065d025ed Merge "C2 AIDL sepolicy update" into main am: 8342def00a 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2721424

Change-Id: I096e99c403f513a203040cf97e199392dc794177
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-07 19:52:25 +00:00
Treehugger Robot
8342def00a Merge "C2 AIDL sepolicy update" into main 2023-09-07 17:54:05 +00:00
Treehugger Robot
68390df049 Merge changes Ia2c07331,I93f0d222 into main am: f476f5c8f1 am: 31406c242e am: 0f0286303f am: 332e63bee5 am: 3149017ddb 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2742356

Change-Id: Ic47bf3a0e0641de8f914b48ae6a4c93cd7145026
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-07 11:39:59 +00:00
Treehugger Robot
31406c242e Merge changes Ia2c07331,I93f0d222 into main am: f476f5c8f1 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2742356

Change-Id: If3a6af8553b6d645653ae38e898c3770b7dab868
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-07 09:14:47 +00:00
Inseob Kim
5d7423ff3d Build prebuilt policy with Soong 
... and remove redundant Makefile codes. This also updates commit hook
as we now only use Soong to build sepolicy.

Bug: 296875906
Test: m selinux_policy
Change-Id: I93f0d222a0c10e31c51c9380780a8927c47d62b1
 2023-09-07 16:32:30 +09:00
Wonsik Kim
53e5ae799d Add a fuzzer for media.c2 HAL 
Bug: 251850069
Test: presubmit
Change-Id: I4c58df29641465c019147b86bfd58b0e37961b1f
 2023-09-06 14:31:27 -07:00
Wonsik Kim
a981983e70 C2 AIDL sepolicy update 
Bug: 251850069
Test: presubmit
Change-Id: Ica39920472de154aa01b8e270297553aedda6782
 2023-09-06 14:30:26 -07:00
Treehugger Robot
557643c917 Merge "Relax freeze_test to check only compatibility" into main am: b316f8bf95 am: d1710c749b am: a05b914242 am: f64415ac50 am: 6c5dbcc0f5 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2737118

Change-Id: I3f1eaa33585eb3b17c4877cc790cb28747ff2f72
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-05 09:44:23 +00:00
Treehugger Robot
d1710c749b Merge "Relax freeze_test to check only compatibility" into main am: b316f8bf95 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2737118

Change-Id: I575c28928e4c5690fc1b87ee09938cf0ed451476
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-05 07:06:46 +00:00
Inseob Kim
36d9d39e6e Relax freeze_test to check only compatibility 
For now, freeze_test compares prebuilts against sources with diff, to
ensure that sources are identical to prebuilts. However, it could be the
case that the branch should be able to build both REL and ToT. In that
case, changes to the sources are inevitable and the freeze test will
fail.

To fix the issue, freeze_test will now only check compatibility. To be
specific, it will check if any public types or attributes are removed.
Contexts files and neverallow rules are not checked, but they may be
added later. Also to support the new freeze_test

- build_files module is changed to use glob (because REL version won't
  be in compat versions list)
- plat_pub_policy modules are added under prebuilts/api (because
  freeze_test needs that)

Bug: 296875906
Test: m selinux_policy
Change-Id: I39c40992965b98664facea3b760d9d6be1f6b87e
 2023-09-05 03:37:18 +00:00
Inseob Kim
474d55be33 Merge "Remove code about mixed sepolicy build" into main am: 726bcb500c am: 9f976cba9d am: 0ef311bb03 am: e17efa09b9 am: d0c62947e9 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2733319

Change-Id: I2efb104be69c791017c21ce61a82b88c8d8c59e9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-01 04:52:51 +00:00
Inseob Kim
9f976cba9d Merge "Remove code about mixed sepolicy build" into main am: 726bcb500c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2733319

Change-Id: I3b3099e72f547e09f1abca1cec1b7c55b6d91593
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-09-01 01:33:44 +00:00
Inseob Kim
6c6aa01ae4 Remove code about mixed sepolicy build 
There is no one actively using mixed sepolicy build, and it made
sepolicy codes too complicated. As we are deprecating mixed build,
removing such code for cleanup.

Bug: 298305798
Test: boot cuttlefish
Change-Id: I8beedd5a281fa957532deecb857da4e1bb66992a
 2023-08-31 16:54:17 +09:00
Inseob Kim
3356000a6e Use board api level for seapp coredomain check am: 06518b14f7 am: da15aa9d1b am: 572f6bccb8 am: ea842578c3 am: 37058d508f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2727834

Change-Id: I01f19584649194dc95829be1d5ab99aa865fd0b7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-29 22:28:18 +00:00
Inseob Kim
da15aa9d1b Use board api level for seapp coredomain check am: 06518b14f7 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2727834

Change-Id: Ia96fef6b3b70fbe0743efc0cedf6e6767ba584d8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-29 01:56:08 +00:00
Xin Li
80690d5086 Merge "Merge Android U (ab/10368041)" into aosp-main-future 2023-08-28 22:13:48 +00:00
Inseob Kim
06518b14f7 Use board api level for seapp coredomain check 
Rather than PRODUCT_SHIPPING_API_LEVEL, use board api level
(BOARD_API_LEVEL or BOARD_SHIPPING_API_LEVEL) to determine whether we
check coredomain violations or not.

Bug: 280547417
Test: see build command of vendor_seapp_contexts
Change-Id: I20859d6054ab85f464b29631bdfd55ade3e78f53
 2023-08-25 21:20:08 +09:00
Kangping Dong
213911b5cc Merge "[Thread] add sepolicy rules for Thread system service" into main am: 5e82983ee4 am: 56a37f87bb am: fe68cdff1f am: 9117eb6072 am: 53fa730b2c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2689228

Change-Id: I844d368aba417f1e43becc9a42dd31f8b9ab9db3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-24 09:36:18 +00:00
Kangping Dong
fe68cdff1f Merge "[Thread] add sepolicy rules for Thread system service" into main am: 5e82983ee4 am: 56a37f87bb 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2689228

Change-Id: I4a552ea21369e9801fd4cb6646fea15568d268d7
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-24 07:39:46 +00:00
Kangping Dong
5e82983ee4 Merge "[Thread] add sepolicy rules for Thread system service" into main 2023-08-24 06:42:08 +00:00
Xin Li
e07dbe0a63 Merge Android U (ab/10368041) 
Bug: 291102124
Merged-In: Id2cc5dbbafffb4633706e5cc728cb44abd417340
Change-Id: I77e68f17a1273958bcdc32b5a4b6a0ff3ffdfd2a
 2023-08-23 17:20:59 -07:00
Treehugger Robot
27ee0fd69d Merge "Skip building compat files if REL" into main am: ff9b6459f9 am: 11784290b5 am: 07418dc2de am: 9cdc3c056a am: e7bf9359c9 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2722779

Change-Id: I82b281a7bd9306d9a8d2afef4b1f247baaf78b8e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-23 17:22:03 +00:00
Treehugger Robot
07418dc2de Merge "Skip building compat files if REL" into main am: ff9b6459f9 am: 11784290b5 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2722779

Change-Id: Ia5f2672be007f1d4e4cde1c6e04d2d8c7348f173
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-23 15:26:30 +00:00
Treehugger Robot
29011affdf Merge changes from topic "revert-2715179-BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN-HHKXHMATFW" into main am: 90bf7fe34c am: 0966f72cd2 am: 6a90f5389c am: 52e4bd66d9 am: 5586ac157f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2722534

Change-Id: I23c7036c8a96ded04f2de94724cf7eb4991b3ce8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-23 09:44:06 +00:00
Inseob Kim
8248745c42 Revert "Add BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN" am: d7b381caca am: 93e492b7dd am: d88ebd53d4 am: 5317afd51a am: 8cf00e3d5b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2722774

Change-Id: I49567d25b8cd2c2dae5400d5323df359b3007167
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-23 09:44:04 +00:00
Kangping Dong
45efca84e5 [Thread] add sepolicy rules for Thread system service 
Add SEPolicy for the ThreadNetworkService
Add Fuzzer exception, thread_network service is java only

FR: b/235016403

Test: build and start thread_network service
bug: 262683651
Change-Id: Ifa2e9500dd535b0b4f2ad9af006b8dddaea900db
 2023-08-23 17:08:58 +08:00
Inseob Kim
61d6beb39e Skip building compat files if REL 
Bug: 296780580
Test: build with next
Change-Id: I588d249f35fc7049d0db3b64692ed818050af0ed
 2023-08-23 08:41:44 +00:00
Treehugger Robot
6a90f5389c Merge changes from topic "revert-2715179-BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN-HHKXHMATFW" into main am: 90bf7fe34c am: 0966f72cd2 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2722534

Change-Id: Idaaf3ae002b1fcb8deeee174eca3faa4a4473a55
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-23 07:52:01 +00:00
Inseob Kim
d88ebd53d4 Revert "Add BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN" am: d7b381caca am: 93e492b7dd 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2722774

Change-Id: I8668b12cd6b8b930d56780ba9a368147ddf5359d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-23 07:51:58 +00:00
Inseob Kim
76d9f26019 Don't check seapp violations for U or prior 
Bug: 280547417
Test: build
Change-Id: Ie71d7b4884f4e6981bd1d78bb0586111dc4fc72a
 2023-08-23 12:54:10 +09:00
Inseob Kim
d7b381caca Revert "Add BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN" 
Revert submission 2715179-BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN

Reason for revert: not needed

Reverted changes: /q/submissionid:2715179-BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN

Change-Id: I4595a648691e11b0f3860b0d1414fbc9b9c94791
 2023-08-23 02:07:47 +00:00
Treehugger Robot
bbd374d9c6 Merge "Add BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN" into main am: 54bacb776d am: 43c16bb862 am: 30be961a64 am: 91fe4f822e am: b6638a25d6 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2715179

Change-Id: I605fdb8a61126abc46ac0b53425976183f9ed63f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-22 05:20:51 +00:00
Treehugger Robot
30be961a64 Merge "Add BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN" into main am: 54bacb776d am: 43c16bb862 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2715179

Change-Id: I246ca42a28663320cd90dbe8f1b4adb73f577fa6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-22 03:32:46 +00:00
Inseob Kim
d8de8757ae Add BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN 
Starting from Android V, vendor seapp_contexts files can't assign
coredomain to vendor apps, as it's Treble violation. This build broken
variable is to suppress the enforcement for devices launching with U or
prior.

Bug: 280547417
Test: set BUILD_BROKEN_VENDOR_SEAPP_USES_COREDOMAIN := true and build
Change-Id: I7b91db8183a867aa490e490e56cb872ea830b21f
 2023-08-21 15:15:34 +09:00
Jeff Pu
edcaac62fd Merge "Add biometric face virtual hal service" into main am: 5a70ae0fc8 am: c7518dd417 am: eb5d11211f am: 1d60f4711f am: 827340f866 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2709670

Change-Id: I0afc11e844131b8cd5662bc6e8790e5be149d5b4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-18 15:06:03 +00:00
Jeff Pu
eb5d11211f Merge "Add biometric face virtual hal service" into main am: 5a70ae0fc8 am: c7518dd417 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2709670

Change-Id: I6a7d4504737edfcd9c323367457b125868146956
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-18 13:36:46 +00:00
Jeff Pu
fb5d221b27 Add biometric face virtual hal service 
Bug: 228638448
Test: Manually following face virtual hal provisioning procedure
Change-Id: I1f61b687be4abe53c62c21769fb57dc9cf9daf45
 2023-08-16 17:00:08 -04:00
Igor Zaslavsky
bef94b9a51 Merge "Add RemoteAuthService" into main am: 805daca25e am: ee962c027c am: ac6c122924 am: 9703f80cba am: bcbcc7dec5 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2693411

Change-Id: If03fd2307624c8fd3a026370417454b62bf64cfb
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-08 20:29:07 +00:00
Igor Zaslavsky
ac6c122924 Merge "Add RemoteAuthService" into main am: 805daca25e am: ee962c027c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2693411

Change-Id: If093d85c0fcb16c542e59bbeb9274c15fb5b9ba1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-08 18:16:22 +00:00
Jakob Schneider
cf9de37946 Merge "Add SEPolicy for the ArchiveManager/Service." into main am: 09916a69c9 am: ec62d1395c am: 8989b19ac4 am: bd99287bfd am: 2cf7d7d37e 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2683127

Change-Id: I2c2313b57775d2217dd3d92bd5b2c81b3030ea8c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-04 19:56:57 +00:00
igorzas
7489e93613 Add RemoteAuthService 
Add SEPolicy for the RemoteAuth Manager/Service
Add Fuzzer exception, remote_auth service is going to be in Java and
Rust only

Design doc: go/remote-auth-manager-fishfood-design

Test: loaded on device.
Bug: 290092977
Change-Id: I4decb29b863170aed5e7c85da9c4b50c0675d3bd
 2023-08-04 17:55:14 +00:00
Jakob Schneider
8989b19ac4 Merge "Add SEPolicy for the ArchiveManager/Service." into main am: 09916a69c9 am: ec62d1395c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2683127

Change-Id: I30b8344bc537ec4ed11240fc601bc3d5ba5dc9a0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-04 17:38:17 +00:00
Jakob Schneider
09916a69c9 Merge "Add SEPolicy for the ArchiveManager/Service." into main 2023-08-04 16:10:01 +00:00
Jakob Schneider
5c5a6af643 Add SEPolicy for the ArchiveManager/Service. 
Test: boots - CTS coming in a future change
Change-Id: Ia42bc21e1523c7b225b7c84c3a3f18dd3ed1a54f
 2023-08-04 14:13:03 +01:00
Kangping Dong
52d81d653f Merge "add sepolicy rules for OT daemon binder service" into main am: 9d965761ca am: 0fb33095a4 am: 3d003e1519 am: 39f874cbed am: 872e6ef0e7 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2648124

Change-Id: I1d8efc5cd19b825e094cad26941ab7fff9c31c14
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-03 18:12:16 +00:00
Kangping Dong
3d003e1519 Merge "add sepolicy rules for OT daemon binder service" into main am: 9d965761ca am: 0fb33095a4 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2648124

Change-Id: I2948438cddbe921c244e05f05b1a357675dbcef4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-03 16:00:51 +00:00
Kangping Dong
9d965761ca Merge "add sepolicy rules for OT daemon binder service" into main 2023-08-03 14:13:21 +00:00
Kangping Dong
0b3e8c62ee add sepolicy rules for OT daemon binder service 
Bug: 262681784
Change-Id: I3b4d3603709a761ad1410b81c0e5b4e4fc51c43c
 2023-08-03 13:31:53 +08:00
Treehugger Robot
be318de74d Merge "Add permission for VFIO device binding" into main am: 6ebc7deb48 am: 5b2f696b93 am: 1efce2fe90 am: 5c02b42429 am: 4585c9c223 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2682786

Change-Id: I344dceb3cf6b976b66a92bdfa84f845bf109f0d4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-02 14:13:12 +00:00
Treehugger Robot
1efce2fe90 Merge "Add permission for VFIO device binding" into main am: 6ebc7deb48 am: 5b2f696b93 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2682786

Change-Id: Idbe7867385fe39c7d8556d785b7370033d24cb9b
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-08-02 12:05:46 +00:00
Inseob Kim
825056de9a Add permission for VFIO device binding 
vfio_handler will bind platform devices to VFIO driver, and then
return a file descriptor containing DTBO. This change adds
permissions needed for that.

Bug: 278008182
Test: adb shell /apex/com.android.virt/bin/vm run-microdroid \
      --devices /sys/bus/platform/devices/16d00000.eh --protected
Change-Id: Ie947adff00d138426d4703cbb8e7a8cd429c2272
 2023-08-02 15:06:51 +09:00
Inseob Kim
5d296d6a59 Ensure vendor seapp contexts can't use coredomain am: d7d3609af7 am: b2d5c7529c am: add7efee41 am: fa230d5e36 am: aeb73ff642 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2638235

Change-Id: I4c71a2ddc9846d2eb19143d3d4573be07e35717d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-31 05:24:52 +00:00
Inseob Kim
add7efee41 Ensure vendor seapp contexts can't use coredomain am: d7d3609af7 am: b2d5c7529c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2638235

Change-Id: Ic6a9f623746875170434ecd10ae2f8e2df630a13
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-31 03:19:58 +00:00
Inseob Kim
d7d3609af7 Ensure vendor seapp contexts can't use coredomain 
Bug: 280547417
Test: build
Change-Id: Iadff17523767f91f073c6569400e17f1da55fbdc
 2023-07-28 16:18:11 +09:00
Vadim Caen
1debb1f293 Merge "Policy for virtual_camera" into main am: bb59231998 am: 2199233cfd am: 3674481782 am: 96c681a8a1 am: 81bc867e73 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2655420

Change-Id: Ic708afb2898331a07a6c24f92ac9ae739d1406b0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-26 14:44:18 +00:00
Vadim Caen
3674481782 Merge "Policy for virtual_camera" into main am: bb59231998 am: 2199233cfd 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2655420

Change-Id: Ic8d5d7b1cdd0d72777cd8ac1bd58ad0a4f5fa619
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-26 12:53:11 +00:00
Vadim Caen
d64cf75c48 Policy for virtual_camera 
Adds a policy to run the virtual_camera process which:
 - registers a service implementing the camera HAL
 - registers a service to reveive communicate with virtual cameras via
   system_server

Bug: 253991421
Test: CTS test
android.virtualdevice.cts.VirtualDeviceManagerBasicTest#createDevice_createCamera

Change-Id: I772d176919b8dcd3b73946935ed439207c948f2b
 2023-07-25 19:27:48 +00:00
Akshata Kadam
fbbfed4751 Added entries for audioflinger and audiopolicy aidl fuzzer 
Test: m
Bug: 202897137
Bug: 244152048

Change-Id: I8b9d3a3d9184d8d602fd8df339338007793d2bfa
 2023-07-04 13:25:39 +05:30
Zhanglong Xia
598767a95d Merge "Add sepolicy rules for Thread Network HAL" am: 87c6069fe1 am: a1c3cc2c1c am: b883c879d0 am: cc85dcfce1 am: 30bede645d am: b3b81fe79a 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2646219

Change-Id: I896829516320004bbf146d883aea742f07593a43
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-01 04:11:28 +00:00
Zhanglong Xia
cc85dcfce1 Merge "Add sepolicy rules for Thread Network HAL" am: 87c6069fe1 am: a1c3cc2c1c am: b883c879d0 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2646219

Change-Id: I034e65e721add0682536f9a3534aa91a466c9398
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-07-01 02:00:13 +00:00
Zhanglong Xia
b2d1fbb7b2 Add sepolicy rules for Thread Network HAL 
Bug: b/283905423
Test: Build and run the Thread Network stack in Cuttlefish.
Change-Id: I783022c66b80274069f8f3c292d84918f41f8221
 2023-06-30 10:56:38 +08:00
Dave Mankoff
b07f8d7c81 SE Linux perimissions for Feature Flags Service am: 665cad0d2c am: 2793152d6f am: d28466469a am: ca71c58731 am: f9d8b6c725 am: adc96ed50b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2638309

Change-Id: I143b1710ac8ac550949ab5536761d1ed5b1f6b9e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-27 01:16:03 +00:00
Dave Mankoff
ca71c58731 SE Linux perimissions for Feature Flags Service am: 665cad0d2c am: 2793152d6f am: d28466469a 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2638309

Change-Id: I39b99d528fce3c45756ff502ccdd6fb003dd4dc2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-26 21:06:54 +00:00
Dave Mankoff
665cad0d2c SE Linux perimissions for Feature Flags Service 
Bug: 279054964
Test: build && flash
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:a1f8ca3cd3c4861a06c5042148aab6623a563651)
Merged-In: I5fffaccba61e218496ac82ccf9ba308cf9892868
Change-Id: I5fffaccba61e218496ac82ccf9ba308cf9892868
 2023-06-26 13:42:45 +00:00
Treehugger Robot
b4000d369b Merge "Add MediaPlayerService fuzzer to bindings" am: 289fe96dc8 am: f0d5eb54ff am: f08a62ecd0 am: d36e33e82a am: 7ec0d19fe4 am: f83c9bd2d0 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2631949

Change-Id: If9d95e097e6eb174b4efd276e5946df27d18d32d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-23 23:17:55 +00:00
Treehugger Robot
d36e33e82a Merge "Add MediaPlayerService fuzzer to bindings" am: 289fe96dc8 am: f0d5eb54ff am: f08a62ecd0 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2631949

Change-Id: I7840a706313458384edc8d3ed6d31046a9c6e65a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-23 20:04:59 +00:00
Treehugger Robot
289fe96dc8 Merge "Add MediaPlayerService fuzzer to bindings" 2023-06-23 17:35:27 +00:00
Treehugger Robot
4e738540dd Merge "Remove flatten_apex: property" am: 7f7e8d79a9 am: d947550b6f am: a7627cf627 am: 8743379791 am: 2e5e101971 am: ec1771e501 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2628996

Change-Id: Ib132bbd0b7e08061101f4bde288c92fe994b7412
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-21 09:12:07 +00:00
Treehugger Robot
8743379791 Merge "Remove flatten_apex: property" am: 7f7e8d79a9 am: d947550b6f am: a7627cf627 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2628996

Change-Id: I928001ab7426a6a247315293d0b6a86e176f8bf1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-21 06:29:40 +00:00
Pawan Wagh
9f118c8d62 Add MediaPlayerService fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I669c427279ce43fa614c68a02a468c3e64002537
 2023-06-20 22:50:45 +00:00
Jooyung Han
804e234ced Remove flatten_apex: property 
We no longer have targets using flattened apexes. Flattened apexes will
be removed from the build system.

Bug: 278826656
Test: m
Change-Id: I657e01dbfd2525b07c29a234277062d5ac2fab9f
 2023-06-20 15:41:05 +09:00
Pawan Wagh
08dfe8890d Merge "Add update service fuzzer to bindings" am: b4f463824c am: 02c84cec70 am: cf602ed963 am: 9e7493abb8 am: 3fb258b287 am: 320a3e4228 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2619905

Change-Id: I42d861aad0cd30b40751210de057cf655acd000e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-14 22:21:10 +00:00
Pawan Wagh
9e7493abb8 Merge "Add update service fuzzer to bindings" am: b4f463824c am: 02c84cec70 am: cf602ed963 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2619905

Change-Id: I179defcdef57cb4abe5e02c71e3c1e134bcc0f5f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-14 20:04:05 +00:00
Pawan Wagh
b4f463824c Merge "Add update service fuzzer to bindings" 2023-06-14 17:33:23 +00:00
Pawan Wagh
a620d1a96b Merge "Add credstore service fuzzer to bindings" am: 767dc6be06 am: e0f268a982 am: 252e98a0dc am: 01a43aec9b am: bc0bea24d0 am: 2f605f7560 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2619904

Change-Id: Ifabba81ab70025fa3c2b99f9a5e5a1fb60ff4aa8
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-13 21:45:29 +00:00
Pawan Wagh
01a43aec9b Merge "Add credstore service fuzzer to bindings" am: 767dc6be06 am: e0f268a982 am: 252e98a0dc 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2619904

Change-Id: I6d6397e345bdb94149fd21a343eaa0a58abed686
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-13 18:03:17 +00:00
Pawan Wagh
767dc6be06 Merge "Add credstore service fuzzer to bindings" 2023-06-13 15:30:53 +00:00
Pawan Wagh
21f6f52922 Add update service fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I9532d1d473d3b053f464df48169dc9b23951a095
 2023-06-09 00:01:54 +00:00
Treehugger Robot
9e607fa973 Merge "Add wificond service fuzzer to bindings" am: 34814e6d48 am: 5ed2584008 am: 1e8251cd60 am: 0aff4d4a79 am: 99b5189803 am: d5cb271637 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2611796

Change-Id: Id9ee6ff4a951c2cf2f339e9fe9f7b2907d9f1415
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 22:40:41 +00:00
Pawan Wagh
38cfa74af2 Add credstore service fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: Ie47e0e7a479f130935ada52a28d4e26e3bf07041
 2023-06-08 21:28:46 +00:00
Treehugger Robot
0aff4d4a79 Merge "Add wificond service fuzzer to bindings" am: 34814e6d48 am: 5ed2584008 am: 1e8251cd60 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2611796

Change-Id: Ieca50440bfed78bd54f5550454cf55d4eb0df510
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 20:35:22 +00:00
Treehugger Robot
34814e6d48 Merge "Add wificond service fuzzer to bindings" 2023-06-08 18:30:49 +00:00
Steven Moreland
7f50f46f4d Merge "sepolicy: take sepolicy split in .mk" am: 394de71b25 am: 4f8749fb39 am: 41dee692bc am: 2d3ec65eab am: 979237002d am: 9c763bea9c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2608418

Change-Id: I7a230f35ea1516350e6a141b62029d8a8da7d5ba
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-06 02:45:31 +00:00
Steven Moreland
2d3ec65eab Merge "sepolicy: take sepolicy split in .mk" am: 394de71b25 am: 4f8749fb39 am: 41dee692bc 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2608418

Change-Id: I0b3d3aaffefb25d74bbb5085a5c1766afb0f8570
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-06 00:28:19 +00:00
Steven Moreland
394de71b25 Merge "sepolicy: take sepolicy split in .mk" 2023-06-05 23:08:24 +00:00
Pawan Wagh
526efb51a5 Add wificond service fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I471296a8b33862199ce9c27fca7ceae2db8105ea
 2023-06-03 01:29:14 +00:00
Steven Moreland
721f5af6a3 sepolicy: take sepolicy split in .mk 
This value is always set to true in the core build
system. Removing reads of it so we can mark it as
obsolete.

Bug: 257176017
Test: build
Change-Id: Ie7a72496bd4712583944ed833cd4364c5e3c520b
 2023-06-02 16:14:17 +00:00
Pawan Wagh
94b5d92bcb Add media extractor service fuzzer to bindings am: 7f90d50ae0 am: 0e74d4e69e am: bb06602cc1 am: e0260436a3 am: 3edb02fcd8 am: 8c5017d143 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2600804

Change-Id: Ia5b571f71554dd75cd81407d16b904822b80ae28
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-31 13:55:32 +00:00
Pawan Wagh
e0260436a3 Add media extractor service fuzzer to bindings am: 7f90d50ae0 am: 0e74d4e69e am: bb06602cc1 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2600804

Change-Id: I073576df149593ff8a71b7b208a1c7d67229da31
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-31 11:16:53 +00:00
Pawan Wagh
7f90d50ae0 Add media extractor service fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I660c54df153993056668b6774d177072d8eadc3b
 2023-05-31 01:19:21 +00:00
Pawan Wagh
e76d6207d8 Merge "Add media metrics aidl fuzzer to bindings" am: 144cad1b19 am: cf26f9e29b am: 31fe43e0da am: a4a07e3fb4 am: 161ff34d1c am: 057ad9d7e4 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2601825

Change-Id: I53388ce116ffaede74e309885efdc5de31b103b4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-25 07:10:09 +00:00
Pawan Wagh
a4a07e3fb4 Merge "Add media metrics aidl fuzzer to bindings" am: 144cad1b19 am: cf26f9e29b am: 31fe43e0da 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2601825

Change-Id: I070aa4b459e0953e3f502fb0b1daab4e8329aefe
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-25 00:53:20 +00:00
Pawan Wagh
144cad1b19 Merge "Add media metrics aidl fuzzer to bindings" 2023-05-24 23:01:42 +00:00
Pawan Wagh
d25d64796d Add media metrics aidl fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I6c645bf89fdded1dffdba8d40889eeb20b0734e1
 2023-05-23 22:55:15 +00:00
Treehugger Robot
042c9c1737 Merge "Parallelize singleton execution." am: bcb0e13831 am: ff97fdff7e am: 6ec2ab500f am: a251f9a6bb am: ef1d5673ac am: 231b8d66c1 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2593085

Change-Id: I8d8335f3c5b3b0eb82e51c24eee25bef64103895
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-22 20:17:41 +00:00
Treehugger Robot
a251f9a6bb Merge "Parallelize singleton execution." am: bcb0e13831 am: ff97fdff7e am: 6ec2ab500f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2593085

Change-Id: I629bb1e0770857d15d8a8febee705a5131ef08cc
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-22 19:00:24 +00:00
Treehugger Robot
1d88c50d4b Merge "Add installd service fuzzer to bindings" am: ae5be3dd8e am: a310d36da8 am: 6dc5922c2a am: 7337112178 am: a0eb10e733 am: b031963dd2 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2595030

Change-Id: Ia7144bac234ccabc6f6f3e55f94f26ff632ee7f3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-19 21:35:13 +00:00
Treehugger Robot
7337112178 Merge "Add installd service fuzzer to bindings" am: ae5be3dd8e am: a310d36da8 am: 6dc5922c2a 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2595030

Change-Id: I939b50cc2db4f7ee42a3fe8c7a8c1c6abcbfe1a0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-19 19:27:33 +00:00
LaMont Jones
3ee898434c Parallelize singleton execution. 
Bug: 281536768
Test: manual, presubmits
Change-Id: I35fe5f4ce5732942399edf0d68e561039d7c253d
 2023-05-19 18:19:28 +00:00
Treehugger Robot
ae5be3dd8e Merge "Add installd service fuzzer to bindings" 2023-05-19 17:21:07 +00:00
Pawan Wagh
acfbdcfae7 Add Camera service fuzzers to bindings am: c22df151ea am: f1063bac96 am: 40e8686279 am: 623c34140a am: 3eb905ebfd am: 27ada9df5f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2597151

Change-Id: Ib19a6b4a529dfb7b2370e4e3b0eb631105bd1a34
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-19 03:59:13 +00:00
Pawan Wagh
623c34140a Add Camera service fuzzers to bindings am: c22df151ea am: f1063bac96 am: 40e8686279 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2597151

Change-Id: I397a9101ade5e1368962389d60394fbd1b1eacd9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-19 01:44:00 +00:00
Pawan Wagh
c22df151ea Add Camera service fuzzers to bindings 
Test: m
Bug: 232439428
Change-Id: I7b2f535d4731503ea23de5b143e49bd41b6a5c71
 2023-05-18 18:39:32 +00:00
Pawan Wagh
34885a15a2 Merge "Add Suspend service fuzzers to bindings" am: c3fd0b60d8 am: cb01a56d01 am: 19cc928a78 am: c17d4cdbe5 am: 88c59499c0 am: 3a55a53d29 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2587575

Change-Id: I6d81c875eab11ffdb55b95f1453175c84dbbacf1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-18 03:48:41 +00:00
Weilin Xu
378f325a1d Merge "Add broadcast radio AIDL HAL fuzzer binding" 2023-05-18 00:43:46 +00:00
Pawan Wagh
c17d4cdbe5 Merge "Add Suspend service fuzzers to bindings" am: c3fd0b60d8 am: cb01a56d01 am: 19cc928a78 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2587575

Change-Id: Ic2bfff2aea2c9dfcc0bec93346d6a0c4af2f9c1d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-17 23:16:41 +00:00
Pawan Wagh
c3fd0b60d8 Merge "Add Suspend service fuzzers to bindings" 2023-05-17 21:17:48 +00:00
Pawan Wagh
c5eac2875b Add installd service fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I62f23f0e4a6e760be3bbab6c2af428f47285f588
 2023-05-17 20:35:44 +00:00
Weilin Xu
8411ca54f5 Add broadcast radio AIDL HAL fuzzer binding 
Ignore-AOSP-First: service not landed in AOSP yet
Bug: 246857025
Test: m
Change-Id: I0e8e3ae0cdef1c4a6bca5ff6de7d02cf901b9a95
 2023-05-17 17:31:00 +00:00
Pawan Wagh
5fdf17c01a Merge "Add incidentd_service_fuzzer to bindings" am: 8169c8fdd5 am: 2070ddc86e am: e602d8d9b2 am: 02929fc8f9 am: 1e76c3ff11 am: 58ec424a6b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2589492

Change-Id: Ifd2ed04498a96235f594b15f5529d0014aeaff09
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-17 01:25:36 +00:00
Pawan Wagh
02929fc8f9 Merge "Add incidentd_service_fuzzer to bindings" am: 8169c8fdd5 am: 2070ddc86e am: e602d8d9b2 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2589492

Change-Id: I803e0c0fa9c5f5c01774f2d4e0753c75793f7952
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-16 23:38:20 +00:00
Pawan Wagh
8169c8fdd5 Merge "Add incidentd_service_fuzzer to bindings" 2023-05-16 21:43:42 +00:00
Pawan Wagh
6d8487370b Add incidentd_service_fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I9d91a50af04a18d61c05f88a05e22bbb0920058a
 2023-05-16 00:53:11 +00:00
Pawan Wagh
251da94ec2 Merge "Add gpu_service_fuzzer to bindings" am: c9d2b575fc am: a10aea7bc8 am: a7270f7524 am: f28f614343 am: 5d34f64f86 am: 1539d8d199 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2587312

Change-Id: Id20bc2442bf19ab011ba00a08f8e69bd8843028a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-16 00:23:05 +00:00
Pawan Wagh
f28f614343 Merge "Add gpu_service_fuzzer to bindings" am: c9d2b575fc am: a10aea7bc8 am: a7270f7524 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2587312

Change-Id: I5f1b7ae705875be36f9210c666f0da332d7e981f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-05-15 22:33:27 +00:00
Pawan Wagh
a9d3164472 Add Suspend service fuzzers to bindings 
Test: m
Bug: 232439428
Change-Id: I43b2926c4db076a89f17d8856f4fdec9c4594c05
 2023-05-12 23:41:17 +00:00
Pawan Wagh
68efd7ab8c Add gpu_service_fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: If6da70d7eeeb686eebf69afcca2fa1213a1d8bf6
 2023-05-12 21:50:14 +00:00
Inseob Kim
0fbb5cc09c Use target specific intermediate paths am: 6c6f53b1a8 am: 01cf7fedc3 am: da9ba4e30c am: 4e554b8023 am: d4fef92541 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2563992

Change-Id: If7a4256e521a34ec4f6bd97e8895cf0c543f3322
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-28 01:07:40 +00:00
Thiébaud Weksteen
9e873385ff Merge "Remove comments in service_contexts" am: 97a5408aca am: 7d9b05e014 am: ebe909c195 am: f5d8bbb320 am: 667316c930 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2564530

Change-Id: I3be01d0897e4a230db12dd5397ed1c3175fb64a0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-28 00:44:23 +00:00
Inseob Kim
4e554b8023 Use target specific intermediate paths am: 6c6f53b1a8 am: 01cf7fedc3 am: da9ba4e30c 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2563992

Change-Id: I9ad490bf13aafb24c00185dbd995e6e57c0679bc
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 18:12:53 +00:00
Thiébaud Weksteen
f5d8bbb320 Merge "Remove comments in service_contexts" am: 97a5408aca am: 7d9b05e014 am: ebe909c195 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2564530

Change-Id: Iee037919d9ca5ee962aef517ff628a5e9e6e4452
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 18:01:13 +00:00
Pawan Wagh
b28419ea18 Merge "Add gatekeeperd_service_fuzzer to bindings" am: 94b3f498cd am: 541170435e am: ecc8b0e33b am: cde5152f6e am: e8f2a72e03 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2553744

Change-Id: Ief55f5659e1993ef9a3b28fd1f4ebdfe683c1f8c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 09:22:04 +00:00
Pawan Wagh
cde5152f6e Merge "Add gatekeeperd_service_fuzzer to bindings" am: 94b3f498cd am: 541170435e am: ecc8b0e33b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2553744

Change-Id: I0debe5e07a4e5ae5ccc7b4dec480692c8d8a24f0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-27 08:03:36 +00:00
Inseob Kim
6c6f53b1a8 Use target specific intermediate paths 
This won't be harmful and this can help reduce rebuilding sepolicy
artifacts upon lunch target change.

Bug: 279524023
Test: m selinux_policy
Change-Id: I859de6dc0ac1958b44d847159904960bd7f9a0c2
 2023-04-27 11:11:48 +09:00
Thiébaud Weksteen
97a5408aca Merge "Remove comments in service_contexts" 2023-04-26 23:42:00 +00:00
Steven Moreland
bcf3c206b6 Merge "aidl_lazy_test: additional service context" am: d8b05e70bf am: b5a4c528f7 am: 7537e74b96 am: dc10d40add am: f9cba81ea1 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2564270

Change-Id: Idf7edc880c5b56ad76d168d41355210d3315f243
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 23:09:26 +00:00
Steven Moreland
dc10d40add Merge "aidl_lazy_test: additional service context" am: d8b05e70bf am: b5a4c528f7 am: 7537e74b96 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2564270

Change-Id: I049e98038884725e7c31150f12ebe4520be1080e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-04-26 21:46:23 +00:00
Pawan Wagh
94b3f498cd Merge "Add gatekeeperd_service_fuzzer to bindings" 2023-04-26 19:37:15 +00:00