tequilaOS/platform_system_sepolicy

Author	SHA1	Message	Date
Xiao Ma	7703c2726c	Merge "revert ipmemorystore selinux policy." am: `f99aa3cb66` am: `a2d7ab7f4b` am: `ddabaebdec` Change-Id: Iaad8edaaa6a31a3fb23e57555fc4c5e1a4eaa332	2019-04-01 21:19:40 -07:00
Xiao Ma	ddabaebdec	Merge "revert ipmemorystore selinux policy." am: `f99aa3cb66` am: `a2d7ab7f4b` Change-Id: I618ed916d463264a4f07d4f5468291006ce8e9c3	2019-04-01 21:15:25 -07:00
Xiao Ma	a2d7ab7f4b	Merge "revert ipmemorystore selinux policy." am: `f99aa3cb66` Change-Id: I4e18cf1e457173365675e49e480b048674381db0	2019-04-01 21:11:15 -07:00
Xiao Ma	f99aa3cb66	Merge "revert ipmemorystore selinux policy."	2019-04-02 03:56:42 +00:00
Mrten Kongstad	f477e49f7e	Add rule for /oem/overlay am: `4bc3ca77e8` am: `f66df1ca82` am: `9018bd7807` Change-Id: I06cd123d2ded5fbc88d046a81b58655ed5185c97	2019-04-01 18:28:29 -07:00
Mrten Kongstad	9018bd7807	Add rule for /oem/overlay am: `4bc3ca77e8` am: `f66df1ca82` Change-Id: I38e9356b7cbf1ba6bb8d35cd5964ed851d3835af	2019-04-01 17:44:52 -07:00
Mrten Kongstad	f66df1ca82	Add rule for /oem/overlay am: `4bc3ca77e8` Change-Id: I8da499b0aea0a27b309669cbb3ce68833e349ea3	2019-04-01 17:15:05 -07:00
Mårten Kongstad	4bc3ca77e8	Add rule for /oem/overlay Bug: 121033532 Test: builds, boots Change-Id: I70b23b11831d57b3241e6057c745aa4ce9f795ef	2019-04-01 16:36:39 +00:00
Jaegeuk Kim	b9ac23f198	Merge "sepolicy: allow init to tune f2fs" am: `6273b696eb` am: `a3602ee5ec` am: `f88544580f` Change-Id: I88e76f29fb45e42e1f8d51860a30fdde9a277939	2019-04-01 09:34:42 -07:00
Jaegeuk Kim	f88544580f	Merge "sepolicy: allow init to tune f2fs" am: `6273b696eb` am: `a3602ee5ec` Change-Id: I80a6c33becfd151bc759073b203bf33441e4d723	2019-04-01 09:27:19 -07:00
Jaegeuk Kim	a3602ee5ec	Merge "sepolicy: allow init to tune f2fs" am: `6273b696eb` Change-Id: I09020b885cac54bfe522b2af25650bfe36019ca0	2019-04-01 09:23:03 -07:00
Treehugger Robot	6273b696eb	Merge "sepolicy: allow init to tune f2fs"	2019-04-01 16:10:28 +00:00
Xiao Ma	e2876a3d11	revert ipmemorystore selinux policy. Since ipmemorystore service has been moved to network stack from system service, also should revert the relevant sepolicy which is corresponding to the previous configuration. Bug: 128392280 Test: atest FrameworksNetTests NetworkStackTests Change-Id: I1ae09696e620b246f817db71e7b71c32aae9be05	2019-04-01 16:37:25 +09:00
Jeff Vander Stoep	337b919988	Merge "netutils_wrapper: suppress sysfs denials" am: `2c6a0eb2d9` am: `0a6b3fb5d7` am: `45a5881dad` Change-Id: I469f8e7b05f5870ae64bba5281609d1b98083413	2019-03-29 21:51:15 -07:00
Jeff Vander Stoep	45a5881dad	Merge "netutils_wrapper: suppress sysfs denials" am: `2c6a0eb2d9` am: `0a6b3fb5d7` Change-Id: Ic699ba428bfbdc9d45231401ea57e04634b378f8	2019-03-29 21:47:09 -07:00
Dan Harms	51d9f6318c	Merge " Allow radio server to client binder callback" am: `aed7273584` am: `827f3ac470` am: `a07b0c490f` Change-Id: I2824e96269339792c673ce2699cde53bebf4e7ec	2019-03-29 21:43:12 -07:00
Jeff Vander Stoep	0a6b3fb5d7	Merge "netutils_wrapper: suppress sysfs denials" am: `2c6a0eb2d9` Change-Id: I61581c46c004ab5c6fe941d80421ea0b13edf010	2019-03-29 21:43:05 -07:00
Dan Harms	a07b0c490f	Merge " Allow radio server to client binder callback" am: `aed7273584` am: `827f3ac470` Change-Id: Idff77309c10eb4c714b061da77f522081b21e049	2019-03-29 21:39:09 -07:00
Treehugger Robot	2c6a0eb2d9	Merge "netutils_wrapper: suppress sysfs denials"	2019-03-30 04:38:39 +00:00
Dan Harms	827f3ac470	Merge " Allow radio server to client binder callback" am: `aed7273584` Change-Id: I1945891364d46e472a0b96ce57f7f12ad208d2cb	2019-03-29 21:35:05 -07:00
Treehugger Robot	aed7273584	Merge " Allow radio server to client binder callback"	2019-03-30 04:28:09 +00:00
Peiyong Lin	51605b2e9b	[sepolicy] Add sysprop for SurfaceFlinger GPU protected contents. am: `d50d36242c` am: `5ff5900d16` am: `3c1bc0328a` Change-Id: I2bdd4e946a2aea0bea563a6a6ae034770c790445	2019-03-29 20:50:45 -07:00
Peiyong Lin	3c1bc0328a	[sepolicy] Add sysprop for SurfaceFlinger GPU protected contents. am: `d50d36242c` am: `5ff5900d16` Change-Id: I3da3dae6fedf4ae384f7f316e4c26ad04a1958e5	2019-03-29 20:46:41 -07:00
Peiyong Lin	5ff5900d16	[sepolicy] Add sysprop for SurfaceFlinger GPU protected contents. am: `d50d36242c` Change-Id: I7a89a97456025e7e2817b4f75aac351efc1a28a6	2019-03-29 20:42:35 -07:00
Dan Harms	c3b573598b	Allow radio server to client binder callback Test: Built, flashed, test radio Change-Id: Idb6f50386508119694afc54d52eb32df381df4b7	2019-03-29 15:22:16 -07:00
Jaegeuk Kim	4439b5785e	sepolicy: allow init to tune f2fs This allows init to tune some f2fs knobs like cp_interval. Bug: 127511432 Change-Id: I9353444578cb47bc7965cd7b068954a8270c5391 Signed-off-by: Jaegeuk Kim <jaegeuk@google.com>	2019-03-29 22:15:08 +00:00
Jeff Vander Stoep	c510da9918	netutils_wrapper: suppress sysfs denials Addresses spurious denials caused by users of netutils_wrapper which open files in /sys without O_CLOEXEC. avc: denied { read } for comm="iptables-wrappe" dev="sysfs" ino=47786 scontext=u:r:netutils_wrapper:s0 tcontext=u:object_r:sysfs_msm_subsys:s0 tclass=file Test: build Change-Id: I1c1f82428555be6a9798a189420dd85a9db107f7	2019-03-29 14:29:42 -07:00
Peiyong Lin	d50d36242c	[sepolicy] Add sysprop for SurfaceFlinger GPU protected contents. Not every device can support GPU protected contents, add a sysprop to allow configuration. BUG: 35315015 Test: N/A Change-Id: I59f1b3ea81db742bc4d0b5a22e82de7385a726b7	2019-03-29 14:12:51 -07:00
Tim Murray	af3639d08a	sepolicy: Grant system_server and init access to /proc/pressure/memory am: `251591fa04` am: `efd9d3fdb1` am: `50cd647f85` Change-Id: Iab4b3442c6e34595e660a8a4bbd01700eaedcec3	2019-03-29 13:37:17 -07:00
Tim Murray	50cd647f85	sepolicy: Grant system_server and init access to /proc/pressure/memory am: `251591fa04` am: `efd9d3fdb1` Change-Id: Ica65001d97a47112067cb95c0c367006306063a5	2019-03-29 13:12:28 -07:00
Tim Murray	efd9d3fdb1	sepolicy: Grant system_server and init access to /proc/pressure/memory am: `251591fa04` Change-Id: If2efaa5b5d5d7e65115a61760b2ff499a74f640c	2019-03-29 12:56:32 -07:00
Tim Murray	251591fa04	sepolicy: Grant system_server and init access to /proc/pressure/memory Need ability for system components to access psi memory pressure file. Add required permissions for system_server and init to access /proc/pressure/memory file. Bug: 129476847 Test: system_server can read /proc/pressure/memory Change-Id: I10ce4f4fe0e3618fa77539e93246d0aae933082c Signed-off-by: Tim Murray <timmurray@google.com> Signed-off-by: Suren Baghdasaryan <surenb@google.com>	2019-03-28 22:11:25 +00:00
Yifan Hong	bb9d64da64	Merge "super_block_device -> super_block_device_type" am: `93b81f30ae` am: `f0e9c939cc` am: `150f84e06c` Change-Id: Iaf25b3ca37135972e0552996b36bc709bb7defb0	2019-03-28 14:03:12 -07:00
Yifan Hong	150f84e06c	Merge "super_block_device -> super_block_device_type" am: `93b81f30ae` am: `f0e9c939cc` Change-Id: I3ac061c2bd24a0ab7af067bfcdcb8ca38bb0daca	2019-03-28 13:51:29 -07:00
Yifan Hong	f0e9c939cc	Merge "super_block_device -> super_block_device_type" am: `93b81f30ae` Change-Id: I274da84cce7985f97db2b3918c60f53304d999d8	2019-03-28 13:38:11 -07:00
Yifan Hong	93b81f30ae	Merge "super_block_device -> super_block_device_type"	2019-03-28 19:55:44 +00:00
Florian Mayer	491701f6e9	Merge "Allow heapprofd to read test files." am: `eda65027c7` am: `b3f934c382` am: `512ff44523` Change-Id: I1f2fc791bfef9b00f81702159ac8fedef0010f33	2019-03-28 12:03:54 -07:00
Florian Mayer	512ff44523	Merge "Allow heapprofd to read test files." am: `eda65027c7` am: `b3f934c382` Change-Id: I96f2c358aae4eeeb15ffead648228586499ee075	2019-03-28 11:46:08 -07:00
Florian Mayer	b3f934c382	Merge "Allow heapprofd to read test files." am: `eda65027c7` Change-Id: Ia98a1657e11d7fe93710b7ad2f7b4d9e73b955cd	2019-03-28 11:37:46 -07:00
Florian Mayer	eda65027c7	Merge "Allow heapprofd to read test files."	2019-03-28 18:21:10 +00:00
Yifan Hong	ab85caaa56	super_block_device -> super_block_device_type Domains that access super_block_device should instead access super_block_device_type, which includes appropriate block devices for retrofit DAP devices. Test: boots (sanity) Test: manual OTA Bug: 128991918 Change-Id: Ie025b1e3c17e82330042aaa4a3e2e4a02ec1265b	2019-03-28 18:08:19 +00:00
Florian Mayer	36b29c5e6f	Merge "Relabel /data/system/packages.list to new type." am: `7145b25226` am: `1d0b6aed97` am: `ba385e3116` Change-Id: Ibaa89cd23dcb95d34d333ede5b13de5af205a1e4	2019-03-28 10:56:04 -07:00
Florian Mayer	ba385e3116	Merge "Relabel /data/system/packages.list to new type." am: `7145b25226` am: `1d0b6aed97` Change-Id: I6c9b389f5e5120080a80afbdb77759bc3842714b	2019-03-28 10:52:00 -07:00
Florian Mayer	1d0b6aed97	Merge "Relabel /data/system/packages.list to new type." am: `7145b25226` Change-Id: Iaaaf871eddfdbee0f9d7adeb222965e17d1d17d2	2019-03-28 10:47:56 -07:00
Florian Mayer	7145b25226	Merge "Relabel /data/system/packages.list to new type."	2019-03-28 17:36:36 +00:00
YH_Lin	021c29b0ac	Merge "sepolicy: add sepolicy rules for vold to write sysfs gc_urgent" am: `a2186d08ca` am: `d155e2c768` am: `8dd0afad0d` Change-Id: Ie47df919a7727c3cd58d430fe08a48daf1fe5ca1	2019-03-28 07:36:43 -07:00
YH_Lin	8dd0afad0d	Merge "sepolicy: add sepolicy rules for vold to write sysfs gc_urgent" am: `a2186d08ca` am: `d155e2c768` Change-Id: I73538ae26a6543b88f3ae2c92375d8eb949ad02c	2019-03-28 07:32:19 -07:00
YH_Lin	d155e2c768	Merge "sepolicy: add sepolicy rules for vold to write sysfs gc_urgent" am: `a2186d08ca` Change-Id: I9073b91afeed049b683cdeb7a6d71a9d554052cd	2019-03-28 07:27:55 -07:00
Treehugger Robot	a2186d08ca	Merge "sepolicy: add sepolicy rules for vold to write sysfs gc_urgent"	2019-03-28 14:19:20 +00:00
Hector Dearman	54b6bc207e	Merge "Fix typos in genfs_contexts" am: `2d4894323c` am: `2344a6732c` am: `9bb344c5f3` Change-Id: Ied6a03001747a99d812803be7310a1d8f767b061	2019-03-28 04:09:42 -07:00

... 2 3 4 5 6 ...

20358 commits