Commits · 7aed9d96e7889a7840f05299234a1413290f2abf · Werner Sembach / AndroidSystemSEPolicy

Apr 20, 2017

Merge "Restrict access to hwservicemanager" · 7aed9d96
TreeHugger Robot authored 7 years ago

7aed9d96

Restrict access to hwservicemanager · 632bc494

Alex Klyubin authored 7 years ago

This adds fine-grained policy about who can register and find which
HwBinder services in hwservicemanager.

Test: Play movie in Netflix and Google Play Movies
Test: Play video in YouTube app and YouTube web page
Test: In Google Camera app, take photo (HDR+ and conventional),
      record video (slow motion and normal), and check that photos
      look fine and videos play back with sound.
Test: Cast screen to a Google Cast device
Test: Get location fix in Google Maps
Test: Make and receive a phone call, check that sound works both ways
      and that disconnecting the call frome either end works fine.
Test: Run RsHelloCompute RenderScript demo app
Test: Run fast subset of media CTS tests:
      make and install CtsMediaTestCases.apk
      adb shell am instrument -e size small \
          -w 'android.media.cts/android.support.test.runner.AndroidJUnitRunner'
Test: Play music using Google Play music
Test: Adjust screen brightness via the slider in Quick Settings
Test: adb bugreport
Test: Enroll in fingerprint screen unlock, unlock screen using
      fingerprint
Test: Apply OTA update:
      Make some visible change, e.g., rename Settings app.
      make otatools && \
      make dist
      Ensure device has network connectivity
      ota_call.py -s <serial here> --file out/dist/sailfish-ota-*.zip
      Confirm the change is now live on the device
Bug: 34454312
Change-Id: Iecf74000e6c68f01299667486f3c767912c076d3

632bc494

Merge "Changing ueventd access from vendor_file to vendor_file_type." · 8ffe7f20
TreeHugger Robot authored 7 years ago

8ffe7f20

Changing ueventd access from vendor_file to vendor_file_type. · fb0863a4

Max Bires authored 7 years ago

This handles any relabeling of vendor_file to a more specific type in
the case of device bringups or future changes to private/file_context
since ueventd will still need read access to all vendor_file's.

Test: Ueventd has read access to any vendor_file_type
Change-Id: I922af54c76d1ef46ea6536e6dc945b37bcc2126a

fb0863a4

Merge "Extend mediaextractor file read permissions" into oc-dev am: 910e60c7 · 8d43328f
Andy Hung authored 7 years ago
```
am: b92c1659

Change-Id: Ia54fb969971c3b605f114fe76b36efdd084faa70
```
8d43328f
Allow the shell user to run tzdatacheck am: 5684f61f am: 072f3865 am: 162319d0 · 9b271f70
Neil Fuller authored 7 years ago
```
am: 4e941ebb

Change-Id: I2d35c50e87ccbc86ed203d1018aa4724a458e957
```
9b271f70
Merge "Extend mediaextractor file read permissions" into oc-dev · b92c1659
Andy Hung authored 7 years ago
```
am: 910e60c7

Change-Id: I10b076757792b33b75dc3a818495037c6ada0b49
```
b92c1659
Merge "Extend mediaextractor file read permissions" into oc-dev · 910e60c7
Andy Hung authored 7 years ago

910e60c7
Merge "Sepolicy: Give asan_extract access to powerctl" · 2f91539f
TreeHugger Robot authored 7 years ago

2f91539f
Merge "Remove vndservice_manager object classes." into oc-dev am: f8a18d47 · 7b97ed8e
Dan Cashman authored 7 years ago
```
am: b4f62b04  -s ours

Change-Id: Ia292d94402f2c0e46074aeb119867c6f470fc1ad
```
7b97ed8e
Merge "sepolicy: allow audioserver to use ALSA MMAP FDs" into oc-dev am: 4f1763ef · e9dcd3e1
Phil Burk authored 7 years ago
```
am: 14bb96f2

Change-Id: I7c9f2eae1ca88ac7aab960a3d8ddef7dace09c5c
```
e9dcd3e1
Merge "Allow access to /proc/config.gz for priv_app and recovery" into oc-dev am: 456fa279 · 9811a504
Sandeep Patil authored 7 years ago
```
am: 7f0c18b4

Change-Id: Ib764462e117579339bda41a6915b7216ffc0d947
```
9811a504
Merge "Add dex2oat permissions to open and read the tmp apk." into oc-dev am: 67f40ec5 · 514b13c4
Jeff Hao authored 7 years ago
```
am: d250a336

Change-Id: I81ff1d6a9651daeef66e1ea4e2a3c90bcf3e9bb6
```
514b13c4
Allow the shell user to run tzdatacheck am: 5684f61f am: 072f3865 · 4e941ebb
Neil Fuller authored 7 years ago
```
am: 162319d0

Change-Id: Ifc803d7d645be1ec7bd1d34f05e821a522f797e2
```
4e941ebb
Allow the shell user to run tzdatacheck am: 5684f61f · 162319d0
Neil Fuller authored 7 years ago
```
am: 072f3865

Change-Id: Id583a952f22f4f70d9d9c27572ce0da692ec2688
```
162319d0
Allow the shell user to run tzdatacheck · 072f3865
Neil Fuller authored 7 years ago
```
am: 5684f61f

Change-Id: Ib0a65258afbe3828cd9d5e9921fc42893c729a5e
```
072f3865

Allow the shell user to run tzdatacheck · 5684f61f

Neil Fuller authored 8 years ago

Allow the shell user to run tzdatacheck, which is required
to enable a new host side test.

This change also adds some additional checks to
tzdatacheck.te to ensure that OEMs opening up permissions
further don't accidentally create a security hole.

Bug: 31008728
Test: Ran CTS
Change-Id: I6ebfb467526b6b2ea08f891420eea24c81ed1e36

5684f61f

Sepolicy: Give asan_extract access to powerctl · 82672089

Andreas Gampe authored 7 years ago

rc-style powerctl has beem removed. Accordingly, asan_extract now
needs access to sys.powerctl directly.

Bug: 36458146
Test: m && m SANITIZE_TARGET=address SANITIZE_TARGET_SYSTEM=true
Change-Id: Ic65a858962b4b3dd613fdbfa09f93d21425bf892

82672089

Merge "Sepolicy: Fix asanwrapper" · c1462504
TreeHugger Robot authored 7 years ago

c1462504
Merge "Remove vndservice_manager object classes." into oc-dev · b4f62b04
Dan Cashman authored 7 years ago
```
am: f8a18d47

Change-Id: Iba5fd78ab1d578878cde958b489c57959ac6a290
```
b4f62b04
Merge "Remove vndservice_manager object classes." into oc-dev · f8a18d47
TreeHugger Robot authored 7 years ago

f8a18d47

Apr 19, 2017
- Sepolicy: Fix asanwrapper · c848d37d
  Andreas Gampe authored 7 years ago
  
  Add asanwrapper support for system server under sanitization. Bug: 36138508 Test: m && m SANITIZE_TARGET=address SANITIZE_LITE=true Test: adb root && adb shell setprop wrap.system_server asanwrapper Change-Id: Id930690d2cfd8334c933e0ec5ac62f88850331d0
  c848d37d
- Merge "sepolicy: allow audioserver to use ALSA MMAP FDs" into oc-dev · 14bb96f2
  Phil Burk authored 7 years ago
  
  am: 4f1763ef Change-Id: I33c0dcab70613c0f0a669d0443332f204b92d55b
  14bb96f2
- Merge "sepolicy: allow audioserver to use ALSA MMAP FDs" into oc-dev · 4f1763ef
  TreeHugger Robot authored 7 years ago
  
  4f1763ef
- Merge "Remove vndservice_manager object classes." · a70e6a01
  TreeHugger Robot authored 7 years ago
  
  a70e6a01
- Merge "Allow access to /proc/config.gz for priv_app and recovery" into oc-dev · 7f0c18b4
  Sandeep Patil authored 7 years ago
  
  am: 456fa279 Change-Id: I440a08708ee39cd1c9f69432ca63e3b256e4f189
  7f0c18b4
- Merge "Allow access to /proc/config.gz for priv_app and recovery" into oc-dev · 456fa279
  TreeHugger Robot authored 7 years ago
  
  456fa279
- Merge "Add dex2oat permissions to open and read the tmp apk." into oc-dev · d250a336
  Jeff Hao authored 7 years ago
  
  am: 67f40ec5 Change-Id: I9e364dd0493d8262739d255b4652a27bc313ede4
  d250a336
- sepolicy: allow audioserver to use ALSA MMAP FDs · 2b7f74e2
  Phil Burk authored 7 years ago
  
  Bug: 37504387 Test: aaudio example write_sine, needs MMAP support Change-Id: I7fbd87ad4803e8edbde4ba79220cb5c0bd6e85a0 Signed-off-by: Phil Burk <philburk@google.com>
  2b7f74e2
- Merge "Add dex2oat permissions to open and read the tmp apk." into oc-dev · 67f40ec5
  Jeff Hao authored 7 years ago
  
  67f40ec5
- Allow access to /proc/config.gz for priv_app and recovery · 04654427
  Sandeep Patil authored 7 years ago
  
  Bug: 37485771 Test: sideloaded OTA through recovery on sailfish Change-Id: I98bb4e0e919db585131391f57545f1a9a0096701 Signed-off-by: Sandeep Patil <sspatil@google.com>
  04654427
- Merge "grant mediadrmserver permission to read dir from /system/*" into oc-dev am: 5f22a4dd · 4987db0c
  Chong Zhang authored 7 years ago
  
  am: 0189fb53 Change-Id: Ib6b2d736ed141f4623e3b1786d22189dd975ce0e
  4987db0c
- Merge "restore permissions to /vendor for non-treble devices" into oc-dev am: 0b999249 · fa32cdb9
  Jeff Vander Stoep authored 7 years ago
  
  am: 4a55eada Change-Id: I77d39fc8368a73f386a4ea28d0e9cc7e43c9df79
  fa32cdb9
- Merge "grant mediadrmserver permission to read dir from /system/*" into oc-dev · 0189fb53
  Chong Zhang authored 7 years ago
  
  am: 5f22a4dd Change-Id: I2e6160a22c850ddbf3fef6d1e3e6a82dcf18db89
  0189fb53
- Merge "restore permissions to /vendor for non-treble devices" into oc-dev · 4a55eada
  Jeff Vander Stoep authored 7 years ago
  
  am: 0b999249 Change-Id: I8ddae2a19e54d8dc896ea9efc1355019599ca4cb
  4a55eada
- Merge "grant mediadrmserver permission to read dir from /system/*" into oc-dev · 5f22a4dd
  Chong Zhang authored 7 years ago
  
  5f22a4dd
- Merge "restore permissions to /vendor for non-treble devices" into oc-dev · 0b999249
  TreeHugger Robot authored 7 years ago
  
  0b999249
- Add dex2oat permissions to open and read the tmp apk. · 37f5c2d9
  Jeff Hao authored 7 years ago
  
  The PackageManager now passes previous code paths to dex2oat as shared libraries. dex2oat needs extra permissions in order to access and open the oat files of these libraries (if they were compiled). Part of a multi-project change. Bug: 34169257 Test: cts-tradefed run singleCommand cts -d --module CtsAppSecurityHostTestCases -t android.appsecurity.cts.SplitTests (cherry-picked from commit 1103f963) Change-Id: I3cf810ef5f4f4462f6082dc30d3a7b144dcce0d9
  37f5c2d9
- Merge "Add dex2oat permissions to open and read the tmp apk." am: 47061e59 ... · 78efa2df
  Jeff Hao authored 7 years ago
  
  Merge "Add dex2oat permissions to open and read the tmp apk." am: 47061e59 am: 70269b78 am: 24409c36 am: 78a5ffd3 -s ours Change-Id: I0e43fb52c0d608d0a95d0f0f76121d0792ea4990
  78efa2df
- grant mediadrmserver permission to read dir from /system/* · 492dab2a
  Chong Zhang authored 7 years ago
  
  hal_client_domain no longer allows read dir permission, in order to load .so from /system/lib, we have to add this permission ourselves. bug: 37476803 Change-Id: I1711d158c2f4580f50ac244da10c489df003cc18
  492dab2a