tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
45609 commits 1 branch 0 tags 50 MiB
Commit graph

45609 commits

This branch
This branch
All branches
Author SHA1 Message Date
Thiébaud Weksteen
cadb6446a6 [automerger skipped] Revert^2 "Add permission for VFIO device binding" am: fa2999a627 -s ours am: 73158ce6a3 -s ours 
am skip reason: Merged-In Ie947adff00d138426d4703cbb8e7a8cd429c2272 with SHA-1 901385f711 is already in history. Merged-In was found from reverted change.

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2839696

Change-Id: Ic8cf8cbe31b73853c15e8da046d4f679e87dc571
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-21 05:29:39 +00:00
Thiébaud Weksteen
4adc0c8fca [automerger skipped] Merge "Revert^2 "Add permission for VFIO device binding"" into android14-tests-dev am: 1f621afeeb -s ours 
am skip reason: Merged-In Ie947adff00d138426d4703cbb8e7a8cd429c2272 with SHA-1 901385f711 is already in history. Merged-In was found from reverted change.

Reverted change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2829493

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2839696

Change-Id: I01827ca4d3ce34fc7cc53481cbc31a6a2274dc2c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-21 04:58:19 +00:00
Thiébaud Weksteen
73158ce6a3 [automerger skipped] Revert^2 "Add permission for VFIO device binding" am: fa2999a627 -s ours 
am skip reason: Merged-In Ie947adff00d138426d4703cbb8e7a8cd429c2272 with SHA-1 901385f711 is already in history. Merged-In was found from reverted change.

Reverted change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2829493

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2839696

Change-Id: Ibc9e068f581b31b4b986dc86d48bd08d392d5036
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-21 04:58:15 +00:00
Thiébaud Weksteen
1f621afeeb Merge "Revert^2 "Add permission for VFIO device binding"" into android14-tests-dev 2023-11-21 04:37:46 +00:00
Thiébaud Weksteen
fa2999a627 Revert^2 "Add permission for VFIO device binding" 
This reverts commit c6227550f7.

Reason for revert: Faulty merging paths have been removed

Change-Id: Icf56c2e977c5517af63e206a0090159e43dd71eb
Merged-In: Ie947adff00d138426d4703cbb8e7a8cd429c2272
 2023-11-21 02:18:30 +00:00
Justin Yun
90bee0995e Define ro.llndk.api_level 
ro.llndk.api_level shows the maxium vendor api level that the llndk
in the platform supports.

Bug: 312098788
Test: getprop ro.llndk.api_level
Change-Id: I139524724e458300a3c1430c94595e9fa25a85dd
 2023-11-21 11:13:09 +09:00
Shubang Lu
26e47c1bd9 Merge "Add SE policy for tv_ad_service" into main am: 0d65502e9e 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2831310

Change-Id: Icf09548281fd42d35c3f6878a717424d38a6d4e9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-20 19:49:58 +00:00
Shubang Lu
0d65502e9e Merge "Add SE policy for tv_ad_service" into main 2023-11-20 19:08:50 +00:00
Eric Laurent
255890ef0e Bluetooth: add system property for HID transport selection 
Add property bluetooth.core.le.dsa_transport_preference containing a
list of supported HID transport protocols for IMU data over LE Audio by
order of preference:

Bug: 307588546
Test: make
Change-Id: I7aef404a2c6c8cc872efb994e328a175d5b4efd4
 2023-11-20 16:38:56 +01:00
Jan Sebechlebsky
267b6a9cf1 Allow virtual camera service to access gpu. 
Bug: 301023410
Test: adb shell cmd virtual_camera enable_test_camera & OpenCamera

Change-Id: I0ca68d6c4831d624a0aa9ad87f7b44cbb02ac96a
 2023-11-20 10:42:47 +01:00
Ján Sebechlebský
5d6b66c8ea Revert^2 "Allow system_server to communicate with virtual_camera" 
This reverts commit 76a62dfb3e.

Reason for revert: Relanding with virtual_camera flag disabled to prevent test failures before rc entry is added for the service (which needs to be done after this cl is submitted to prevent boot test failing due to selinux denials).

Test: https://android-build.corp.google.com/builds/abtd/run/L11500030000350228
Change-Id: Ie621f89610b173918bb4c0b6eb1f35547f56f6b7
 2023-11-20 10:42:11 +01:00
Ted Wang
1193a9c1d6 Add bluetooth finder hal 
Bug: 307897939
Test: make
Change-Id: I5ebc1afc33532639fccffc0cf86e2680ab7c910f
 2023-11-20 06:01:13 +00:00
Ken Chen
8bf2e11e50 Merge "Delete mdns_service_fuzzer" into main am: 9449a6f2ef 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2825915

Change-Id: Ic9f92d79e9f067c948f3825701406106a039434f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-20 05:52:42 +00:00
Ken Chen
9449a6f2ef Merge "Delete mdns_service_fuzzer" into main 2023-11-20 05:28:21 +00:00
Kelvin Zhang
a77bd2c686 Merge "Add sepolicy for ro.virtual_ab.merge_delay_seconds" into main am: db2d9a23ad 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2834712

Change-Id: Ie5ca33f74fd79bc81f2725a99f65add1285e7ed2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-20 03:24:29 +00:00
Kelvin Zhang
db2d9a23ad Merge "Add sepolicy for ro.virtual_ab.merge_delay_seconds" into main 2023-11-20 02:57:46 +00:00
Treehugger Robot
82a787869f Merge "Fix flagging macros" into main am: c8fa84b81f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2835913

Change-Id: Id956f998e434f5019da248fc226e536d2648dafa
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-20 02:02:56 +00:00
Jeongik Cha
e113739003 Merge "declare setupwizard_mode_prop as system_vendor_config_prop" into main am: bfb5615f52 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2832590

Change-Id: I95e2d32c59af119280a637a7691649729522aff1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-20 02:02:27 +00:00
Treehugger Robot
c8fa84b81f Merge "Fix flagging macros" into main 2023-11-20 01:43:11 +00:00
Jeongik Cha
bfb5615f52 Merge "declare setupwizard_mode_prop as system_vendor_config_prop" into main 2023-11-20 01:22:22 +00:00
Thiébaud Weksteen
a34aeb737f Merge "Revert^2 "Introduce sdk_sandbox_audit SELinux domain"" into android14-tests-dev am: 2f98237c4d am: 1deccbb3f4 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2836555

Change-Id: Ic664c62edf985f61a308290334d71205d74c842d
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-20 00:23:23 +00:00
Thiébaud Weksteen
1deccbb3f4 Merge "Revert^2 "Introduce sdk_sandbox_audit SELinux domain"" into android14-tests-dev am: 2f98237c4d 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2836555

Change-Id: Iffd388a421177b61186f4a7b6e6076313206fd36
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-19 23:51:03 +00:00
Thiébaud Weksteen
2f98237c4d Merge "Revert^2 "Introduce sdk_sandbox_audit SELinux domain"" into android14-tests-dev 2023-11-19 23:34:25 +00:00
Kelvin Zhang
f34d7d238d Add sepolicy for ro.virtual_ab.merge_delay_seconds 
Bug: 311515963
Test: set ro.virtual_ab.merge_delay_seconds by PRODUCT_PROPERTY_OVERRIDES in mk files and run OTA
Change-Id: Ia9bac57879670e0dbd858705bffbb8dea7d58fba
 2023-11-17 12:02:54 +00:00
Sandro Montanari
1e9eb36ad2 Revert^2 "Introduce sdk_sandbox_audit SELinux domain" 
This reverts commit a41bfab758.

Reason for revert: Automerger path causing the regression is no more

Change-Id: I4c9ab6f2e18c9d8157f5667bc98fcce00e78f93d
 2023-11-17 09:54:33 +00:00
Inseob Kim
9868a0ce11 Fix flagging macros 
We should wrap the parameter because it will contain multiple lines of
codes which can probably contain comma.

Bug: 306563735
Test: build and see sepolicy output
Change-Id: I2f56f0a1ec2d5b14570fb9c5bb178d488bc023c9
 2023-11-17 18:07:11 +09:00
Inseob Kim
65cd3a1360 Merge "Simplify out path of checked vendor property_contexts" into main am: 5b98e30451 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2834710

Change-Id: I97d5b9467ad0b2f31fa822ff9585842be708ccfa
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-17 02:43:05 +00:00
Seungjae Yoo
a43ef400f7 Merge "Introduce vendor_microdroid_file for microdroid vendor image" into main am: e95f3f5bd3 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2831710

Change-Id: If1708562153d678a7d5a816977a44a0faea368a2
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-17 02:42:39 +00:00
Treehugger Robot
6696149be8 Merge "Correct path of android.hidl.memory@1.0-impl.so" into main am: e0289ae802 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2835910

Change-Id: Ic118a6d5c83a5215c15f8705bd3951deaca94160
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-17 02:41:37 +00:00
Inseob Kim
5b98e30451 Merge "Simplify out path of checked vendor property_contexts" into main 2023-11-17 02:24:33 +00:00
Seungjae Yoo
e95f3f5bd3 Merge "Introduce vendor_microdroid_file for microdroid vendor image" into main 2023-11-17 02:23:30 +00:00
Treehugger Robot
e0289ae802 Merge "Correct path of android.hidl.memory@1.0-impl.so" into main 2023-11-17 02:03:42 +00:00
Kiyoung Kim
6149e5238f Correct path of android.hidl.memory@1.0-impl.so 
Current sepolicy expects the library located under /vendor/lib(64), but
the actual location of the library is /vendor/lib(64)/hw, as it defines
relative path 'hw'. This change corrects location of
android.hidl.memory@1.0-impl.so, so it can be labeled with
same_process_hal_file as expected.

Bug: 311298012
Test: Failing test passed over ABTD
Change-Id: Ib84dbde0742716d399f04ce8ec11a0c4f24be8b0
 2023-11-17 09:41:40 +09:00
Shubang Lu
98dddde9f0 Add SE policy for tv_ad_service 
Bug: 303506816
Bug: 311074646
Test: cuttlefish;
Change-Id: I5dea6d65cf374392bb9b079dda9aa90fb63a4bbd
 2023-11-16 23:10:15 +00:00
Matt Stokes
d15c3ac74e Merge "Revert "Allow system_server to communicate with virtual_camera"" into main am: 61ba09b9a8 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2834733

Change-Id: I6a45394dd5f9284144f7c24e37535cfe49568d6c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-16 19:30:15 +00:00
Matt Stokes
61ba09b9a8 Merge "Revert "Allow system_server to communicate with virtual_camera"" into main 2023-11-16 18:58:19 +00:00
Matt Stokes
76a62dfb3e Revert "Allow system_server to communicate with virtual_camera" 
This reverts commit 45f1ecee7a.

Reason for revert: <Droid TestMonitor b/311401010>

Change-Id: I82716e9d52a66018c5e7d7d13c8292d7d19f253c
 2023-11-16 17:42:25 +00:00
Luca Stefani
0b2d711423 Simplify out path of checked vendor property_contexts 
Using Join with the fully fledged input path as string
breaks setting a custom $OUT_DIR

Test: export OUT_DIR=`pwd`/out_custom && m nothing
Change-Id: Ie5043c0eb8e5f854be0d0d318008ea24f3d94c09
 2023-11-16 17:50:56 +01:00
Jeongik Cha
6cb91a086e declare setupwizard_mode_prop as system_vendor_config_prop 
1. declare setupwizard_mode_prop for ro.setupwizard.mode
2. that prop could be set during vendor_init, so changed prop type

Bug: 310208141
Test: boot and check if there is no sepolicy issue
Change-Id: I89246ab2c686db139cad48550b860d69a41106ff
 2023-11-17 01:22:37 +09:00
Ján Sebechlebský
1a3b533557 Merge "Allow system_server to communicate with virtual_camera" into main am: 4b16e566e1 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2824498

Change-Id: I8759a11c9bd49d00d0f75eeee0cf7ca55a61a43f
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-16 12:08:04 +00:00
Ján Sebechlebský
4b16e566e1 Merge "Allow system_server to communicate with virtual_camera" into main 2023-11-16 11:20:43 +00:00
Jooyung Han
26bf264bc2 Add properties for vulkan apex am: f8c18cb0f2 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2821213

Change-Id: I1282e39f074dc01e3e51946c6a6037b4514b9968
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-16 08:19:47 +00:00
Seungjae Yoo
d2a0892121 Introduce vendor_microdroid_file for microdroid vendor image 
In AVF, virtualizationmanager checks the selinux label of given disk
image for proving whether the given image is edited maliciously.
Existing one(vendor_configs_file, /vendor/etc/*) was too wide to use for this purpose.

Bug: 285854379
Test: m
Change-Id: I6c966c92b238a2262d2eb7f41041ed4c359e9e0a
 2023-11-16 16:44:15 +09:00
Jooyung Han
3caea66cd7 Merge "apex_sepolicy_tests: check apex roots are search-able" into main am: a5463fd4b9 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2829353

Change-Id: Ibf25226c1917ad3c5c85da51800d7657703346f9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-15 05:10:36 +00:00
Jooyung Han
f8c18cb0f2 Add properties for vulkan apex 
ro.vulkan.apex property is added to tell which APEX provides vulkan
driver.

Bug: 205618237
Test: CtsGraphicsTestCases
Change-Id: Icdf6ee5ede16c08405f48d736ed38ad4117d8e2d
 2023-11-15 13:45:38 +09:00
Jooyung Han
a5463fd4b9 Merge "apex_sepolicy_tests: check apex roots are search-able" into main 2023-11-15 04:36:41 +00:00
Thiébaud Weksteen
7be4946321 [automerger skipped] Merge "Revert "Introduce sdk_sandbox_audit SELinux domain"" into android14-tests-dev am: 3195af1315 -s ours am: db2b83d8c8 -s ours 
am skip reason: Merged-In I9c5873181c925c6b8ebb411328d30aa519053acf with SHA-1 4db0e27a50 is already in history. Merged-In was found from reverted change.

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2829793

Change-Id: Ic2986330da02f9a35e2fe81997c4b468df7dca47
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-15 03:34:20 +00:00
Sandro Montanari
814f097900 [automerger skipped] Revert "Introduce sdk_sandbox_audit SELinux domain" am: a41bfab758 -s ours am: 6ed0dd8688 -s ours 
am skip reason: Merged-In I9c5873181c925c6b8ebb411328d30aa519053acf with SHA-1 4db0e27a50 is already in history. Merged-In was found from reverted change.

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2829793

Change-Id: Ice43c8ca2bdcd77027aa799cc2af5ced550e2fe4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-15 03:34:17 +00:00
Thiébaud Weksteen
90945326cd Revert "Prebuilt updates for aosp/2827450" am: b460885e50 am: c541c1eb80 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2830890

Change-Id: I6d5f197c9cb4a1728e0bd6bc9acf220f05ed05de
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-15 03:34:07 +00:00
Thiébaud Weksteen
db2b83d8c8 [automerger skipped] Merge "Revert "Introduce sdk_sandbox_audit SELinux domain"" into android14-tests-dev am: 3195af1315 -s ours 
am skip reason: Merged-In I9c5873181c925c6b8ebb411328d30aa519053acf with SHA-1 4db0e27a50 is already in history. Merged-In was found from reverted change.

Reverted change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2827450

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2829793

Change-Id: I5da5356a52c8cc132ca175b734c9e6679ef022e0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-11-15 03:03:01 +00:00