Commits · 8b0f89e45b56ea3d7eb9131cfdebbdfbf888ad60 · Werner Sembach / AndroidSystemSEPolicy

Jul 06, 2017
- domain_deprecated: remove tmpfs dir access am: ca5bb337 am: 453f4a51 · 8b0f89e4
  Jeff Vander Stoep authored 7 years ago
  
  am: 407e9457 Change-Id: If277928809ec2bcaf7f72ef9cba5dd5d45d333ca
  8b0f89e4
- domain_deprecated: remove tmpfs dir access am: ca5bb337 · 407e9457
  Jeff Vander Stoep authored 7 years ago
  
  am: 453f4a51 Change-Id: Iff9292a4a92fdd78eebdf2ec5fab8d571fc755f6
  407e9457
- domain_deprecated: remove tmpfs dir access · 453f4a51
  Jeff Vander Stoep authored 7 years ago
  
  am: ca5bb337 Change-Id: I185d127216ee72821c64daf31601fdcbe1a9c069
  453f4a51
- Merge "Preserve attributes needed for CTS" into oc-dr1-dev · d006aea0
  Jeff Vander Stoep authored 7 years ago
  
  am: 1eff6417 Change-Id: I095df5cbd680d495fac54186ab16e2287d454c3a
  d006aea0
- Merge "Preserve attributes needed for CTS" into oc-dr1-dev · 1eff6417
  TreeHugger Robot authored 7 years ago
  
  1eff6417
- Merge changes from topic 'am-52eed220ada34c3aba959fcbb20dfeab' into oc-dr1-dev-plus-aosp · c436013b
  Android Build Merger (Role) authored 7 years ago
  
  * changes: remove mke2fs rules from global file_contexts am: 0d32323c -s ours move e2fs tools from /sbin to /system/bin am: ae047956
  c436013b
- remove mke2fs rules from global file_contexts · 7acd39d2
  Jin Qian authored 7 years ago
  
  am: 0d32323c -s ours Change-Id: I2283da4878b60860400d31eaff019faef2b2c888
  7acd39d2
- move e2fs tools from /sbin to /system/bin · 2c1d4951
  Jin Qian authored 7 years ago
  
  am: ae047956 Change-Id: I6b61f896f97bfe7ed9d2dfeb876d76e0101e093a
  2c1d4951
- remove mke2fs rules from global file_contexts · 91748747
  Jin Qian authored 7 years ago
  
  am: 0d32323c -s ours Change-Id: I9cb9b52f452394a32c51ec2aefd502e21896c61d
  91748747
- move e2fs tools from /sbin to /system/bin · a8beb22e
  Jin Qian authored 7 years ago
  
  am: ae047956 Change-Id: Id8c7b9ab97ad80332b65fd02ba9ca61e67dac218
  a8beb22e
- domain_deprecated: remove tmpfs dir access · ca5bb337
  Jeff Vander Stoep authored 7 years ago
  
  Address "granted" audit messages for dumpstate use of df. avc: granted { getattr } for comm="df" path="/mnt" dev="tmpfs" scontext=u:r:dumpstate:s0 tcontext=u:object_r:tmpfs:s0 tclass=dir avc: granted { search } for comm="df" name="/" dev="tmpfs" scontext=u:r:dumpstate:s0 tcontext=u:object_r:tmpfs:s0 tclass=dir Bug: 28760354 Test: Build, check logs. Change-Id: I920948a5f0bce1b4bd2f15779730df8b3b1fea5a
  ca5bb337
Jul 05, 2017

Preserve attributes needed for CTS · 5f5aa962

Change fb889f23 "Force expand all hal_* attributes" annotated all
hal_* attributes to be expanded to their associated types. However
some of these attributes are used in CTS for neverallow checking.
Mark these attributes to be preserved.

In addition, remove the hacky workaround introduced in oc-dev
for b/62658302 where extraneous neverallow rules were introduced
to prevent unused or negated attributes from being auto-expanded
from policy.

Bug: 62658302
Bug: 63135903
Test: cts-tradefed run cts -m CtsSecurityHostTestCases -t \
    android.cts.security.SELinuxNeverallowRulesTest

    armeabi-v7a CtsSecurityHostTestCases completed in 4s.
    501 passed, 0 failed, 0 not executed
Merged-In: I989def70a16f66e7a18bef1191510793fbe9cb8c
Change-Id: I989def70a16f66e7a18bef1191510793fbe9cb8c

5f5aa962

remove mke2fs rules from global file_contexts · 0d32323c

Jin Qian authored 7 years ago

move them to device-specific files.

Bug: 62908056
Change-Id: I299819785d5a64e6ecdde1cd7da472477fe1e295
Merged-In: If92352ea7a70780e9d81ab10963d63e16b793792

0d32323c

move e2fs tools from /sbin to /system/bin · ae047956

Jin Qian authored 7 years ago

Test: let fs_mgr format a damaged /data partition
Bug: 35219933
Change-Id: I379567772c73e52f532a24acf640c21f2bab5c5b
Merged-In: I379567772c73e52f532a24acf640c21f2bab5c5b

ae047956

Jul 03, 2017

resolve merge conflicts of a92d3135 to stage-aosp-master am: b748e652 · 46f2dcb1
Nick Kralevich authored 7 years ago
```
am: aa33afc9

Change-Id: I39b6028f7960b13af1fd83cbfa0f7fec4cac1bab
```
46f2dcb1
resolve merge conflicts of a92d3135 to stage-aosp-master · aa33afc9
Nick Kralevich authored 7 years ago
```
am: b748e652

Change-Id: I4cd3587232e426b2684c77a7cb548b006f6f8647
```
aa33afc9
resolve merge conflicts of a92d3135 to stage-aosp-master · b748e652
Nick Kralevich authored 7 years ago
```
Test: Policy compiles.
Change-Id: Iaa19c64f6b54423dbfa5ae16d288501ab0e64cbc
```
b748e652
Merge "recovery: clean up audit logspam" · a92d3135
Treehugger Robot authored 7 years ago

a92d3135
Merge "Allow installd to delete files via sdcardfs." am: a6f6295c am: b41291f5 · 5b277641
Jeff Sharkey authored 7 years ago
```
am: 6433a09c

Change-Id: I2efd5ff367424b86ea336ad0a4bb56eca368f4f2
```
5b277641
Merge "Allow installd to delete files via sdcardfs." am: a6f6295c · 6433a09c
Jeff Sharkey authored 7 years ago
```
am: b41291f5

Change-Id: I8e1151461bdd5a47cc81a9be744a8918bb61560a
```
6433a09c
Merge "Allow installd to delete files via sdcardfs." · b41291f5
Jeff Sharkey authored 7 years ago
```
am: a6f6295c

Change-Id: I0c54b62288aa73842a9f0dc8fa0f9a5c8e64bc98
```
b41291f5
Merge "Allow installd to delete files via sdcardfs." · a6f6295c
Treehugger Robot authored 7 years ago

a6f6295c
Merge "Add SEPolicy for new Java-based Broadcast Radio service." am: 6466092f am: f44267a5 · c6ef555e
Jeffrey Vander Stoep authored 7 years ago
```
am: 739f7598

Change-Id: I0e63a008436b860549cdc687276c33df475afa77
```
c6ef555e
domain_deprecated: remove ion access am: 88e4be54 am: 8745ac43 · efb5a5ba
Jeff Vander Stoep authored 7 years ago
```
am: c8338f26

Change-Id: Id3db0306763ca605dcdf11409f3b591d6ceda312
```
efb5a5ba
Merge "Add SEPolicy for new Java-based Broadcast Radio service." am: 6466092f · 739f7598
Jeffrey Vander Stoep authored 7 years ago
```
am: f44267a5

Change-Id: Iea0f7ef8960d89d19451b7a47dc1852155dd3af9
```
739f7598
domain_deprecated: remove ion access am: 88e4be54 · c8338f26
Jeff Vander Stoep authored 7 years ago
```
am: 8745ac43

Change-Id: I6816eea55ad110d7aeea43ec3088452b38b7ccc7
```
c8338f26

recovery: clean up audit logspam · 9bbe420b

Jeff Vander Stoep authored 7 years ago

avc: granted { search } scontext=u:r:recovery:s0 tcontext=u:object_r:cache_file:s0 tclass=dir
avc: granted { getattr } scontext=u:r:recovery:s0 tcontext=u:object_r:rootfs:s0 tclass=file
avc: granted { read } scontext=u:r:recovery:s0 tcontext=u:object_r:rootfs:s0 tclass=file
avc: granted { read open } scontext=u:r:recovery:s0 tcontext=u:object_r:rootfs:s0 tclass=file
avc: granted { read } scontext=u:r:recovery:s0 tcontext=u:object_r:sysfs:s0 tclass=file
avc: granted { read open } scontext=u:r:recovery:s0 tcontext=u:object_r:sysfs:s0 tclass=file
avc: granted { search } scontext=u:r:recovery:s0 tcontext=u:object_r:tmpfs:s0 tclass=dir

Fixes: 62619253
Test: policy builds, no more "granted" messages in dmesg for recovery.
Merged-In: I3f6d8ceee80307a01a8fd40cb4f8362a9825b1a3
Change-Id: I3f6d8ceee80307a01a8fd40cb4f8362a9825b1a3
(cherry picked from commit ea1d6e7d)

9bbe420b

Merge "Add SEPolicy for new Java-based Broadcast Radio service." · f44267a5
Jeffrey Vander Stoep authored 7 years ago
```
am: 6466092f

Change-Id: I856e01d9d06978dfcaf13fff078430cefbc7a9eb
```
f44267a5
domain_deprecated: remove ion access · 8745ac43
Jeff Vander Stoep authored 7 years ago
```
am: 88e4be54

Change-Id: I064f2becfde44f300ddf9d36802972b35c54e152
```
8745ac43
Merge "Add SEPolicy for new Java-based Broadcast Radio service." · 6466092f
Jeffrey Vander Stoep authored 7 years ago

6466092f

Allow installd to delete files via sdcardfs. · dd57e698

Jeff Sharkey authored 7 years ago

When installd clears cached files on external storage, the sdcardfs
kernel filesystem needs to be kept in the loop to release any cached
dentries that it's holding onto.  (Otherwise the underlying disk
space isn't actually released.)

installd can already delete the underlying files directly (via the
media_rw_data_file rules), so this technically isn't expanding its
capabilities.

avc: granted { search } for name="/" dev="tmpfs" ino=6897 scontext=u:r:installd:s0 tcontext=u:object_r:tmpfs:s0 tclass=dir
avc: denied { open } for path="/mnt/runtime/default/emulated/0/Android/data" dev="sdcardfs" ino=589830 scontext=u:r:installd:s0 tcontext=u:object_r:sdcardfs:s0 tclass=dir permissive=1
avc: denied { write } for name="com.google.android.inputmethod.japanese" dev="sdcardfs" ino=590040 scontext=u:r:installd:s0 tcontext=u:object_r:sdcardfs:s0 tclass=dir permissive=0
avc: denied { remove_name } for name="cache_r.m" dev="sdcardfs" ino=589868 scontext=u:r:installd:s0 tcontext=u:object_r:sdcardfs:s0 tclass=dir permissive=0
avc: denied { getattr } for path="/mnt/runtime/default/emulated/0/Android/data/.nomedia" dev="sdcardfs" ino=589831 scontext=u:r:installd:s0 tcontext=u:object_r:sdcardfs:s0 tclass=file permissive=1

Test: cts-tradefed run commandAndExit cts-dev -m CtsAppSecurityHostTestCases -t android.appsecurity.cts.StorageHostTest
Bug: 37486230
Change-Id: Icfd00a9ba379b1f50c48fe85849304cf9859bcb2
(cherry picked from commit 72f4c619)

dd57e698

domain_deprecated: remove ion access · 88e4be54

Jeff Vander Stoep authored 7 years ago

Logs show that only dumpstate requires access.

avc: granted { read open } for comm="screencap" path="/dev/ion"
dev="tmpfs" ino=14324 scontext=u:r:dumpstate:s0
tcontext=u:object_r:ion_device:s0 tclass=chr_file
avc: granted { ioctl } for comm="screencap" path="/dev/ion" dev="tmpfs"
ino=14324 ioctlcmd=4906 scontext=u:r:dumpstate:s0
tcontext=u:object_r:ion_device:s0 tclass=chr_file

Grant ion permission to dumpstate which uses it for screencap
feature.

Bug: 28760354
Test: build. Check logs.
Change-Id: I6435b7dbf7656669dac5dcfb205cf0aeda93991b

88e4be54

Jul 01, 2017
- Remove more domain_deprecated permissions am: e39d5c87 am: 9ce812fb · 4b7aa909
  Jeff Vander Stoep authored 7 years ago
  
  am: 685db0b2 Change-Id: I5c4ae29b9623ee04f0409c5f2e4da9fb325a430f
  4b7aa909
- Remove more domain_deprecated permissions am: e39d5c87 · 685db0b2
  Jeff Vander Stoep authored 7 years ago
  
  am: 9ce812fb Change-Id: Ie71e8eb97e3ace63a230fcd70b81961d1a8f4884
  685db0b2
- Remove more domain_deprecated permissions · 9ce812fb
  Jeff Vander Stoep authored 7 years ago
  
  am: e39d5c87 Change-Id: Ibdb49f80b11fca40f5c4de7a92780be26b3280eb
  9ce812fb
- Merge "Allow only system_server to read uid_time_in_state" am: 439364d2 am: e96aad09 · 2f0d0496
  Andres Oportus authored 7 years ago
  
  am: 3ce2c6f8 Change-Id: Ic54d118a477d1827952e1c54216ff01838d985d7
  2f0d0496
- Merge "Remove adbd tcontexts from domain_deprecated" am: 056710b3 am: 2af7c84f · 902dbafb
  Jeff Vander Stoep authored 7 years ago
  
  am: 1a1cefcc Change-Id: I93ad1ad5f769f68c856e7a3cfcc0bcd8792633f2
  902dbafb
- Merge "Allow only system_server to read uid_time_in_state" am: 439364d2 · 3ce2c6f8
  Andres Oportus authored 7 years ago
  
  am: e96aad09 Change-Id: I0742836c6b613afeab2dcf6d59c37dd9787dc91a
  3ce2c6f8
- Merge "Remove adbd tcontexts from domain_deprecated" am: 056710b3 · 1a1cefcc
  Jeff Vander Stoep authored 7 years ago
  
  am: 2af7c84f Change-Id: Id52f1fd3e79a0a36df42abca24c93b28b277c570
  1a1cefcc
- Merge "Allow only system_server to read uid_time_in_state" · e96aad09
  Andres Oportus authored 7 years ago
  
  am: 439364d2 Change-Id: I726672b2e3379e2e53d3c6b26482147f11d06d8e
  e96aad09