tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
41753 commits 1 branch 0 tags 50 MiB
Commit graph

41753 commits

This branch
This branch
All branches
Author SHA1 Message Date
Eric Biggers
95930cf6a7 Allow vold to rename system_data_file directories 
To fully close a race condition where processes can access per-user
directories before an encryption policy has been assigned, vold is going
to start creating these directories under temporary names and moving
them into place once fully prepared.  To make this possible, give vold
permission to rename directories with type system_data_file.

Bug: 156305599
Bug: 285239971
Change-Id: Iae2c8f7d2dc343e7d177e6fb2e893ecca1796f7f
 2023-06-13 16:22:03 +00:00
Pawan Wagh
767dc6be06 Merge "Add credstore service fuzzer to bindings" 2023-06-13 15:30:53 +00:00
Treehugger Robot
53931795c0 Merge "Allow app_process to link /data/asan/system_ext/lib/*" am: 06d79cdc4e 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2620909

Change-Id: I54cc818c3cbd8318dbd23c7ac57c358803f8ac5a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-12 11:37:15 +00:00
Treehugger Robot
06d79cdc4e Merge "Allow app_process to link /data/asan/system_ext/lib/*" 2023-06-12 10:54:27 +00:00
Jeff Pu
80dec42b4b Merge "Allow hal_fingerprint_default to have pipe read access" am: f19025e663 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2605987

Change-Id: I25ce105f8eeaa2b6199c7e7f017fd6f93620b413
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-09 19:42:10 +00:00
Jeff Pu
f19025e663 Merge "Allow hal_fingerprint_default to have pipe read access" 2023-06-09 19:09:58 +00:00
Jeff Pu
1e09f2ebf7 Allow hal_fingerprint_default to have pipe read access 
Bug: 284488745
Test: atest BiometricsE2eTests:BiometricPromptAuthSuccessTest
Change-Id: Ie69193964232b1a6b97877c650182fcdcd5b2cea
 2023-06-09 13:56:28 +00:00
Treehugger Robot
0fa23e0be1 Merge "Allow VMs to log to shell pts" am: 550f10eaeb 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2617777

Change-Id: I9737b5d4a1ca946b6aed006dfb5a14dcb472b2b1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-09 09:29:49 +00:00
Treehugger Robot
550f10eaeb Merge "Allow VMs to log to shell pts" 2023-06-09 09:03:29 +00:00
Jooyung Han
cef75edc33 Merge "Allow vendor_overlay_file from vendor apex" am: ad08877b4d 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2618632

Change-Id: I762e8a8848868268804b2d9d2012246e5fcc0707
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-09 06:31:34 +00:00
Jooyung Han
ad08877b4d Merge "Allow vendor_overlay_file from vendor apex" 2023-06-09 05:56:20 +00:00
Inseob Kim
20a9d569d2 Add missing properties to microdroid am: deaa8b9f4a 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2106044

Change-Id: I847ae3fac14c423243f9e113c1ba1a44bd294aa5
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-09 05:01:04 +00:00
Weiwei.Zhang
0179ede5a4 Allow app_process to link /data/asan/system_ext/lib/* 
app_process couldn't map /data/asan/system_ext/lib/libgpud_sys.so
avc:  denied  { execute } for  path="/data/asan/system_ext/lib/libgpud_sys.so"
dev="dm-43" ino=784 scontext=u:r:zygote:s0 tcontext=u:object_r:system_data_file:s0
tclass=file permissive=0

Bug: 286479817
Test: bootup, app_process can work well with asan enabled.
Change-Id: I577105fe1b0c4cb7fa98ccb33eac0f59a0e645f6
 2023-06-09 04:43:52 +00:00
Jooyung Han
7c4f8a87d3 Allow vendor_overlay_file from vendor apex 
Path to vendor overlays should be accessible to those processes with
access to vendor_overlay_file. This is okay when overlays are under
/vendor/overlay because vendor_file:dir is accessible from all domains.
However, when a vendor overlay file is served from a vendor apex, then
the mount point of the apex should be allowed explicitly for 'getattr'
and 'search'.

Bug: 285075529
Test: presubmit tests
Change-Id: I393abc76ab7169b65fdee5aefd6da5ed1c6b8586
 2023-06-09 13:43:11 +09:00
Inseob Kim
deaa8b9f4a Add missing properties to microdroid 
The main motivation is to reduce log spams.

Bug: 268333203
Test: atest MicrodroidTests MicrodroidHostTestCases
Change-Id: Idffdcd7d543590d8c580b2282098d3abd8214f86
 2023-06-09 11:30:24 +09:00
Treehugger Robot
e930e1de6b Merge "Allow app_zygote to open vendor_overlay_file from vendor apex" am: 9f254ba368 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2618492

Change-Id: I8bef8ca004f5dce791cdfe83b2308ea495cd6c1a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-09 01:55:30 +00:00
Treehugger Robot
9f254ba368 Merge "Allow app_zygote to open vendor_overlay_file from vendor apex" 2023-06-09 01:06:38 +00:00
Pawan Wagh
21f6f52922 Add update service fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I9532d1d473d3b053f464df48169dc9b23951a095
 2023-06-09 00:01:54 +00:00
Thiébaud Weksteen
e5705ebae0 Merge "Grant signal permission for dumpstate on app_zygote" am: 4ba0198325 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2616609

Change-Id: Ifaaa76353fac36d8e880ae9684fae0de125aff53
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 23:57:12 +00:00
Thiébaud Weksteen
4ba0198325 Merge "Grant signal permission for dumpstate on app_zygote" 2023-06-08 23:22:42 +00:00
Jooyung Han
f108164ddf Allow app_zygote to open vendor_overlay_file from vendor apex 
To read overlay from vendor apex, app_zygote needs to have access to
vendor_apex_metadata_file:dir with {getattr,search} permissions.

Bug: 286320150
Test: atest
CtsExternalServiceTestCases: android.externalservice.cts.ExternalServiceTest#testBindExternalServiceWithZygote
Change-Id: Icef716e6d238936d04c5813c23042ec4b0e28541
 2023-06-09 08:16:16 +09:00
Pawan Wagh
38cfa74af2 Add credstore service fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: Ie47e0e7a479f130935ada52a28d4e26e3bf07041
 2023-06-08 21:28:46 +00:00
Treehugger Robot
5ed2584008 Merge "Add wificond service fuzzer to bindings" am: 34814e6d48 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2611796

Change-Id: I809ad3e0d4176ccc5f78bb582af6bdc08d64083c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 19:04:58 +00:00
Treehugger Robot
34814e6d48 Merge "Add wificond service fuzzer to bindings" 2023-06-08 18:30:49 +00:00
Treehugger Robot
e300b61a6e Merge "atrace: don't audit debugfs access" am: b61d353551 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2619892

Change-Id: I6e97c5950ed76ff25246bed2977d69ff56891633
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 17:41:15 +00:00
Treehugger Robot
b61d353551 Merge "atrace: don't audit debugfs access" 2023-06-08 17:05:47 +00:00
Treehugger Robot
21ce192314 Merge "Switch rkpd to levelFrom=all" am: 243575199b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2617614

Change-Id: I3dac79b1cb82541aa9e892c14d3d78757552c673
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 15:32:37 +00:00
Treehugger Robot
243575199b Merge "Switch rkpd to levelFrom=all" 2023-06-08 14:57:35 +00:00
Kangping Dong
ff6ae919c2 Merge "add sepolicy rules for Thread network" am: aa83af5c3b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2612795

Change-Id: Ice94d8ee77ed007ef0aa234ce1886c9bf564e24e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 13:04:47 +00:00
Alan Stokes
6d019be31f Allow VMs to log to shell pts 
If we run a VM from an adb shell, e.g. via `vm run`, then we would
like to get the VM console & log sent to the shell console.

That doesn't work unless virtualization manager & crosvm can write to
devpts.

Bug: 286355623
Test: Manual: adb shell, /apex/com.android.virt/bin/vm run-microdroid --debug full
Change-Id: I01b233bc6ad5fba8f333f379af62a03806ae8949
 2023-06-08 13:47:38 +01:00
Kangping Dong
aa83af5c3b Merge "add sepolicy rules for Thread network" 2023-06-08 12:23:00 +00:00
Alan Stokes
12de184d37 Switch rkpd to levelFrom=all 
Defense in depth: ensure no other app can access rkpd data files.

Test: Presubmits.
Change-Id: Id3ca9829eadf19fb50da8d0a7414706121871633
 2023-06-08 11:24:56 +01:00
Jooyung Han
5f37382487 Allow webview_zygote to "search" vendor apex dirs am: f91152af55 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2620249

Change-Id: Ib36c38102026fab5349a02ae5b23d97dd75c53a3
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 07:23:52 +00:00
Jooyung Han
f91152af55 Allow webview_zygote to "search" vendor apex dirs 
Now, root dir and apex_manifest.pb of vendor apex mounts are labelled as
vendor_apex_metadata_file. For webview_zygote to read overlays from
vendor apexes it needs to be allowed to "search" the roots of vendor
apexes.

Bug: 286330836
Test: atest CtsWebkitTestCases:android.webkit.cts.WebViewTest#testAddJavascriptInterface
Change-Id: I5ea333800221e272a4e678b00326a79a6398c861
 2023-06-08 13:18:44 +09:00
Alexander Roederer
b475d75b4d Merge "persist.sysui.notification.ranking_update_ashmem" am: 49b818497f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2606135

Change-Id: Id806c0f72e65884828c7a18778d7aa67b6b40d4e
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 01:35:47 +00:00
Alexander Roederer
49b818497f Merge "persist.sysui.notification.ranking_update_ashmem" 2023-06-08 00:58:04 +00:00
Jooyung Han
1f47660fb4 Merge "Introduce vendor_apex_metadata_file" am: 94dc202954 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2606717

Change-Id: If60331ca4fed494c06a2e1d4bffb1ae7a684d342
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-08 00:30:01 +00:00
Jooyung Han
94dc202954 Merge "Introduce vendor_apex_metadata_file" 2023-06-07 23:59:59 +00:00
Nikita Ioffe
31d82c0dcd Change the stem name to microdroid_precompiled_sepolicy 
Bug: 285855150
Test: m
Change-Id: I112ef67a7804f91e2a7c6b0998c8bbb436c57566
 2023-06-08 00:00:06 +01:00
Alexander Roederer
584a862df6 persist.sysui.notification.ranking_update_ashmem 
Adds persist.syui.notification.ranking_update_ashmem property and
associated permissions, which will be used to flag guard a change in
core/...NotificationRankingUpdate.java.

Permissions are limited in scope to avoid unnecessary access.
Apps may need to read the flag (because NotificationRankingUpdate.java
is a core library), but setting should only be possible internally (and
via debug shell).

Test: manual flash+adb setprop/getprop
Bug: 249848655
Change-Id: I661644893714661d8c8b5553c943fa17d08c000c
 2023-06-07 22:31:00 +00:00
Steven Moreland
5fdc6bf93c atrace: don't audit debugfs access 
Fixes: 230656878
Test: N/A
Change-Id: I80277bb4655c34e932482bb5e19a81fe6b7a537a
 2023-06-07 20:29:47 +00:00
Yakun Xu
07429e39ee add sepolicy rules for Thread network 
bug: 257371610
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:0fd52fd521b8167b0ec8836dac3765a16fd6863b)
Merged-In: I2c90639f4baecb010230b3aa60f2f09c0ddd9e4f
Change-Id: I2c90639f4baecb010230b3aa60f2f09c0ddd9e4f
 2023-06-07 07:04:19 +00:00
Robert Shih
1bd70df43b Give serial number access to drm hal server not client 
Bug: 284812208
Change-Id: I489feba47f9eb0d9a4ea483cd55aa3a8bbfd389e
 2023-06-06 08:33:19 +00:00
Thiébaud Weksteen
ae39ba7068 Grant signal permission for dumpstate on app_zygote 
Bug: 282614147
Bug: 238263438
Bug: 238263561
Bug: 238263942
Bug: 264483390
Bug: 279680264
Test: TreeHugger
Change-Id: I8b74fec0ea855e244e218fdeb43a57407fe77388
 2023-06-06 10:29:57 +10:00
Steven Moreland
4f8749fb39 Merge "sepolicy: take sepolicy split in .mk" am: 394de71b25 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2608418

Change-Id: I9ae6b75996509cecc2ea272c8af4ef9d63087a69
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-05 23:19:09 +00:00
Steven Moreland
394de71b25 Merge "sepolicy: take sepolicy split in .mk" 2023-06-05 23:08:24 +00:00
Jooyung Han
b6211b88cf Introduce vendor_apex_metadata_file 
A new label for ./apex_manifest.pb and ./ entries in vendor apexes. This
is read-allowed by a few system components which need to read "apex" in
general. For example, linkerconfig needs to read apex_manifest.pb from
all apexes including vendor apexes.

Previously, these entries were labelled as system_file even for vendor
apexes.

Bug: 285075529
Test: m && launch_cvd
Test: atest VendorApexHostTestsCases
Change-Id: Icc234bf604e3cafe6da81d21db744abfaa524dcf
 2023-06-05 17:17:51 +09:00
Jooyung Han
3d4795888e Fix apex_sepolicy_tests_test am: 3e592f2eb6 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2614829

Change-Id: I00d9962fc6b941c0c79cbe7af1c5760d5e705077
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2023-06-05 03:21:32 +00:00
Jooyung Han
3e592f2eb6 Fix apex_sepolicy_tests_test 
check_rule() should collect errors and return them. The previous fix was
early returing when there's a successful case.

Bug: 285225556
Test: atest apex_sepolicy_tests_test
Change-Id: I71c207210c565ab280f8794d201c074812b49acb
 2023-06-05 01:52:14 +00:00
Pawan Wagh
526efb51a5 Add wificond service fuzzer to bindings 
Test: m
Bug: 232439428
Change-Id: I471296a8b33862199ce9c27fca7ceae2db8105ea
 2023-06-03 01:29:14 +00:00