tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
36146 commits 1 branch 0 tags 50 MiB
Commit graph

36146 commits

This branch
This branch
All branches
Author SHA1 Message Date
Ian Elliott
92251f5d15 Add "ro.hardware.egl_legacy" for ANGLE system driver 
This supports the ability to switch between ANGLE and a legacy GLES
driver in cases when transitioning from a legacy GLES driver to ANGLE
as the system driver.  With ANGLE as the GLES system driver, the
platform needs a way to identify the legacy GLES driver, so that it
can be used for particular applications.

Test: CtsAngleDeveloperOptionHostTest
Bug: 224558229
Change-Id: I359b37daa96eb6f8424bde530bb1ac79affd1b04
 2022-04-29 18:35:16 -06:00
Yu Shan
d5af7b7cea Allow vehicle_binding_util to access AIDL VHAL. 
AIDL service requires binder_use not hwbinder_use.

Test: None
Bug: None
Change-Id: Ic2245c4b1961cc3a5bbd61a1cb6134d92b8752c1
 2022-04-29 16:39:03 -07:00
Alan Stokes
c88f0efe3e Allow deleting old virtualization files 
Allow init to use toolbox to rm -rf stale files under /data/misc/virtualizationservice.

Bug: 230056726
Test: Create fake stale dir+file, see them deleted
Change-Id: I4a31e437344974597fc5280d898f23780a820f16
(cherry picked from commit 8e06fb4109)
 2022-04-29 10:56:34 +00:00
Eric Biggers
a77c2963e9 Merge "zygote.te: clean up and tighten app data isolation rules" 2022-04-28 17:51:53 +00:00
Treehugger Robot
57cd703d00 Merge "Revert "Fix bootchart on android12"" am: 4fe6bd16f3 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2075861

Change-Id: I33318773873ec9c65c411f8ca17c09317d266538
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-28 16:38:35 +00:00
Treehugger Robot
4fe6bd16f3 Merge "Revert "Fix bootchart on android12"" 2022-04-28 15:52:46 +00:00
Treehugger Robot
1e4a761436 Merge "Prevent sandbox executing from sdk_sandbox_data_file" am: 8594b156af 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2074904

Change-Id: I48719514d3666d4177aa18643b0e4af7f1f34a41
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-28 07:33:07 +00:00
Treehugger Robot
8594b156af Merge "Prevent sandbox executing from sdk_sandbox_data_file" 2022-04-28 06:28:08 +00:00
Eric Biggers
9f07ea5442 zygote.te: clean up and tighten app data isolation rules 
Group together the rules for setting up app data isolation and get all
the comments up-to-date.  Also remove some parts that aren't needed:

- 'allow zygote mnt_expand_file:dir mounton;' -- not needed.  It might
  have been thought that this was needed for mounting tmpfs on
  /mnt/expand/$volume/user{,_de}, but those have type system_data_file.

- 'allow zygote mnt_expand_file:dir relabelto;' -- not needed, as
  nothing is ever relabeled to this type.

- 'allow zygote media_rw_data_file:dir getattr;' -- not needed to create
  bind mounts.  The similar rules for user_profile_* don't include this.

- 'allow zygote mirror_data_file:dir r_dir_perms;' -- tighten to just
  the required search permission.

- 'allow zygote system_data_file:dir getattr;' -- redundant with 'allow
  zygote system_data_file:dir r_dir_perms;', and not needed for the
  stated reason of "Get inode of directories for app data isolation".

Test: booted Cuttlefish, no denials seen.
Change-Id: Id77b8c81625fd785a5d0d88c37d7c85b8fff7244
 2022-04-27 21:59:27 +00:00
Eric Biggers
4cc45b3537 Merge "toolbox.te: remove unneeded FS_IOC_FS[GS]ETXATTR permission" am: 74e65cb878 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2077301

Change-Id: Ia5b75b1be2a09d5872b12eb3f0208382c436cb8a
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-27 19:59:43 +00:00
Eric Biggers
74e65cb878 Merge "toolbox.te: remove unneeded FS_IOC_FS[GS]ETXATTR permission" 2022-04-27 19:24:57 +00:00
Shiwangi Shah
870354d709 Merge "Add ephemeral service access to sdk sandbox" am: bb270f64c9 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2051365

Change-Id: I4898068b7d1f19d9aeb7bb10390846b25e652217
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-27 17:26:30 +00:00
Shiwangi Shah
13bdca21d5 Add access to hardware_properties and linker 
We might want to change this in later android versions.

Bug: b/228159127
Bug: b/227745962
Test: Manual
Change-Id: I8f425cc9f2759a29bdd2e6218ad0a1c40750e4f5
 2022-04-27 15:13:27 +00:00
Shiwangi Shah
bb270f64c9 Merge "Add ephemeral service access to sdk sandbox" 2022-04-27 14:35:54 +00:00
Shiwangi Shah
48b2b33844 Add ephemeral service access to sdk sandbox 
Add some services ephemeral service has access to.
We will steadily restrict this list further based on
testing and requirements for rubidium.

Test: Manual
Bug: b/227745962
Bug: b/227581095

Change-Id: If7bcb8b8de62d408bd4af848b43abca853c93758
 2022-04-27 09:21:02 +00:00
Eric Biggers
52238a1e0c toolbox.te: remove unneeded FS_IOC_FS[GS]ETXATTR permission 
These ioctls don't need to be allowed, as they'd only be needed to set
project quota IDs.  But this is only done by other domains (installd,
vold, and mediaprovider_app).  Probably it was originally planned for an
init script to run 'chattr -p ID', but this didn't end up happening.

This is a basically revert of commit 4de3228c46 ("Allow toolbox to set
project quota IDs.") (https://r.android.com/1224007).

Also remove an outdated comment at the top of the file.

Test: booted Cuttlefish, no denials seen.
Change-Id: If61179a35f419c6cbfcf1432a86b2c1375db71ed
 2022-04-27 03:45:36 +00:00
Sal Savage
ee5923964b Merge "Update LE Audio profile names to be in line with spec and implementation" am: 9f3d766633 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2073972

Change-Id: I0873e311ca5377eff013b8c05187cf585375875c
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-26 21:48:34 +00:00
Sal Savage
9f3d766633 Merge "Update LE Audio profile names to be in line with spec and implementation" 2022-04-26 21:21:52 +00:00
Jooyung Han
613519f7c8 Revert "Fix bootchart on android12" 
This reverts commit d338d0ef55.

Reason for revert: The original problem was due to failing to switch mount namespace when bootchart is on (see b/229983560) but this doesn't fix it but only suppresses the symptom. aosp/2073287 fixes the original problem.

Change-Id: I6538de37872e718291e78b591a1ae43e83f7a3e3
 2022-04-26 03:40:23 +00:00
Junyu Lai
c43dbf8dec [MS82.3] Add sepolicy to access connectivity apex directory 
Test: m
Bug: 230289468
Change-Id: I7e43c09f929a418c6c7b6bcfc3696a242c19f2d8
 2022-04-26 02:20:30 +00:00
Jaegeuk Kim
41e521a784 Merge "Allow shutdown /data" am: 9ca36ec91b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2072141

Change-Id: I4f5a8ca615e6fa4bcf0f6411a33402ffb1a6ba77
Ignore-AOSP-First: this is an automerge
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-25 17:13:48 +00:00
Jaegeuk Kim
9ca36ec91b Merge "Allow shutdown /data" 2022-04-25 16:42:48 +00:00
Bram Bonne
078b43cd40 Prevent sandbox executing from sdk_sandbox_data_file 
Bug: 215105355
Test: make
Change-Id: I73c6a0d5034f194bf7149336fdac1db51a2b151d
 2022-04-25 13:28:52 +02:00
Treehugger Robot
660c8307ab Merge "Replace se_filegroup to se_build_files" am: 34423ff138 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2072787

Change-Id: Ifce832f18e35ea4319744b7ea86f7e994a275aa9
Ignore-AOSP-First: this is an automerge
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-23 01:01:24 +00:00
Treehugger Robot
34423ff138 Merge "Replace se_filegroup to se_build_files" 2022-04-23 00:34:08 +00:00
Sal Savage
a529796057 Update LE Audio profile names to be in line with spec and implementation 
Bug: 217448211
Test: atest BluetoothInstrumentationTests
Merged-In: If27874ca20be1db032519b2168631c3b651a0522
Change-Id: If27874ca20be1db032519b2168631c3b651a0522
 2022-04-22 22:57:56 +00:00
Treehugger Robot
91574cceb9 Merge "Add vibrator and power HALs to Watchdog dumps" am: 2f666d5fc0 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2073787

Change-Id: I26845c612519a78c1963a9245e4ce48b590f07c9
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-22 18:01:08 +00:00
Treehugger Robot
2f666d5fc0 Merge "Add vibrator and power HALs to Watchdog dumps" 2022-04-22 17:39:58 +00:00
Inseob Kim
4196403c36 Replace se_filegroup to se_build_files 
se_build_files is a replacement for se_filegroup module. se_build_files
can be used with the normal Soong convention ":module_name{.tag}" by
implementing android.OutputFileProducer. It's better than implementing
ad-hoc logics across various modules, which is the case for se_filegroup
module.

Test: build and boot
Change-Id: Ic0e34549601eb043145e433055f5a030eaf4347e
 2022-04-23 01:47:40 +09:00
Jaegeuk Kim
3a45ffec11 Allow shutdown /data 
Bug: 229406072
Signed-off-by: Jaegeuk Kim <jaegeuk@google.com>
Change-Id: I7bdd9acd2e85311ecb59b3f0eb1f503a93e240ef
 2022-04-22 09:34:02 -07:00
Felipe Leme
d221f197c2 Merge "Allow apps to read system_user_mode_emulation_prop." am: c696791a7f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2072574

Change-Id: I4ac97ab72f5ec49087b6dcc3f10efeb34b1ab7bc
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-22 15:43:11 +00:00
Felipe Leme
c696791a7f Merge "Allow apps to read system_user_mode_emulation_prop." 2022-04-22 15:25:13 +00:00
Michael Wright
d5d2f60795 Add vibrator and power HALs to Watchdog dumps 
Test: adb shell am hang --allow-restart, check Last ANR for stacks
Fixes: 211998169
Change-Id: I7cad1e57caed5eb8a5c0092548362fd0a6b1d98d
 2022-04-22 14:32:14 +00:00
Treehugger Robot
3ce006199b Merge "Add sensor multi-HAL AIDL sepolicy" am: c6275b4b73 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2059451

Change-Id: Ia5c40e34e81f93a44a86ce531bd109c93bab60d0
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-22 06:16:38 +00:00
Treehugger Robot
c6275b4b73 Merge "Add sensor multi-HAL AIDL sepolicy" 2022-04-22 05:58:11 +00:00
Joe Bolinger
97db8c0c4d Add virtual fingerprint instance to policy. am: 197b314b4b 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2072070

Change-Id: Ic8950a745599d17d61996a797f7f8afbe2af69a1
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-22 04:57:23 +00:00
Rick Chen
8cb9f4385d Add sensor multi-HAL AIDL sepolicy 
Bug: 228525902
Test: Device can boot to home.
Change-Id: I9d27967213df83b20cb49014317dcfb7afac1880
 2022-04-22 01:49:26 +00:00
Felipe Leme
b85242c00f Allow apps to read system_user_mode_emulation_prop. 
As it's used by UserManager...

Test: sesearch --allow -s appdomain -t system_user_mode_emulation_prop $ANDROID_PRODUCT_OUT/vendor/etc/selinux/precompiled_sepolicy
Bug: 226643927

Change-Id: I1134a9e0b8ae758e3ebef054b96f9e3237a2401f
 2022-04-21 18:49:12 -07:00
Joe Bolinger
197b314b4b Add virtual fingerprint instance to policy. 
Bug: 228638448
Change-Id: Id9cd3565d731ba98f18e91c50fc19b6820bf3172
Test: N/A
 2022-04-21 22:57:01 +00:00
Mitch Phillips
e3256e3d21 Merge "[GWP-ASan] Add sysprop, allow shell and system apps to set it." am: 800e948e61 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2040964

Change-Id: I1e2b9edd633ef294e1a3b017f8ff0e1f685331ea
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-21 18:32:15 +00:00
Mitch Phillips
800e948e61 Merge "[GWP-ASan] Add sysprop, allow shell and system apps to set it." 2022-04-21 18:12:43 +00:00
Seth Moore
6252da2cd1 Merge "Allow the remote provisioner app to set rkp_only properties" am: 222e99e26f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2069269

Change-Id: Ie15a61b54416f9b0b38b7a108e1b76a724dcc505
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-21 17:29:29 +00:00
Seth Moore
222e99e26f Merge "Allow the remote provisioner app to set rkp_only properties" 2022-04-21 17:23:11 +00:00
Maciej Żenczykowski
25192167a1 Merge "Grants clatd privs since forked by system server" am: 1ebfb867a8 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1951036

Change-Id: Id5a3158b63aa2d0a5e5e0776e0d35e5cd606d077
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-21 14:04:05 +00:00
Maciej Żenczykowski
1ebfb867a8 Merge "Grants clatd privs since forked by system server" 2022-04-21 14:00:23 +00:00
Treehugger Robot
0bd269a7c8 Merge "Track sys_module permission for system_server" am: bd3e8d9520 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2063148

Change-Id: I20f877611275635eff7de29353b09eb82dd1d6ae
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-21 07:38:31 +00:00
Treehugger Robot
bd3e8d9520 Merge "Track sys_module permission for system_server" 2022-04-21 07:20:26 +00:00
Alistair Delva
f54bcca352 Merge "Adds GPU sepolicy to support devices with DRM gralloc/rendering" am: ce19c41b8f 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1999610

Change-Id: I7e7ed07eaaededa0e42c48884be50d5c09a334fc
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
 2022-04-21 04:43:58 +00:00
Alistair Delva
ce19c41b8f Merge "Adds GPU sepolicy to support devices with DRM gralloc/rendering" 2022-04-21 04:21:45 +00:00
Seth Moore
8bfdd82123 Allow the remote provisioner app to set rkp_only properties 
The properties for rkp_only are no longer read only.

This allows remote provisioner unit tests to enable/disable the remote
provisioning only mode, which is required to fully verify functionality.

Test: RemoteProvisionerUnitTests
Bug: 227306369
Change-Id: I8006712a49c4d0605f6268068414b49714bbd939
 2022-04-20 17:15:20 -07:00