Commits · 9b0788945221ab99817b7e883e7b7be1fe8c9940 · Werner Sembach / AndroidSystemSEPolicy

Jan 19, 2018
- hal_usb_gadget sepolicy · 9b078894
  Badhri Jagan Sridharan authored 7 years ago
  
  Bug: 63669128 Test: Checked for avc denail messages. Change-Id: I057b3cf9ccc945cb943b9cf60fc9cd6c023eddda
  9b078894
- Merge "neverallow shell access to 'device' type" am: 536d1954 am: ee1ff622 · 1968f2bd
  Tri Vo authored 7 years ago
  
  am: c1dba09f Change-Id: I08164844e37e12b7221298620bf3a66cc2087c2e
  1968f2bd
- Merge "Disallow sysfs_leds to coredomains." am: 5d5284ad am: abe248d1 · 832958ab
  Steven Moreland authored 7 years ago
  
  am: 977949e3 Change-Id: I9b145b354413e77e02b67e83f411cec709c7d8e1
  832958ab
- Merge "neverallow shell access to 'device' type" am: 536d1954 · c1dba09f
  Tri Vo authored 7 years ago
  
  am: ee1ff622 Change-Id: Icacd360b526c2133c3cee0c5c9e9055406fb943c
  c1dba09f
- Merge "Disallow sysfs_leds to coredomains." am: 5d5284ad · 977949e3
  Steven Moreland authored 7 years ago
  
  am: abe248d1 Change-Id: Id7202a1c4a991e0f130bf34a0adb7f913434a617
  977949e3
- Merge "neverallow shell access to 'device' type" · ee1ff622
  Tri Vo authored 7 years ago
  
  am: 536d1954 Change-Id: Icb5b0f78d2c59b49f2160bed76323595ca630920
  ee1ff622
- Merge "Disallow sysfs_leds to coredomains." · abe248d1
  Steven Moreland authored 7 years ago
  
  am: 5d5284ad Change-Id: I41e2066c96c327f3401714c25f63e640b1a5b7b7
  abe248d1
- Merge "neverallow shell access to 'device' type" · 536d1954
  Treehugger Robot authored 7 years ago
  
  536d1954
- Merge "Disallow sysfs_leds to coredomains." · 5d5284ad
  Treehugger Robot authored 7 years ago
  
  5d5284ad
- Merge "Add rcs.publish.status to the whitelist" am: 5971d678 am: 006abea2 · 5580de4b
  Jaekyun Seok authored 7 years ago
  
  am: 0399f1e4 Change-Id: I143916184d8741093139d1d25213f8432fad4c01
  5580de4b
- Merge "charger: allow to read /sys/class/power_supply" am: 1dafee26 am: d39b16ba · 4e0af024
  Yifan Hong authored 7 years ago
  
  am: 1f5cce99 Change-Id: If2858e33bc11c09789eb5155d912a24b6a87a2b6
  4e0af024
- Merge "Add rcs.publish.status to the whitelist" am: 5971d678 · 0399f1e4
  Jaekyun Seok authored 7 years ago
  
  am: 006abea2 Change-Id: Ibc2e3ef4544a42617e4e5ccabac84bda9a1d1cd2
  0399f1e4
- Merge "charger: allow to read /sys/class/power_supply" am: 1dafee26 · 1f5cce99
  Yifan Hong authored 7 years ago
  
  am: d39b16ba Change-Id: Ie2ba263f204502356ba54b0c1acaa5450f4af7d1
  1f5cce99
- Merge "Add rcs.publish.status to the whitelist" · 006abea2
  Jaekyun Seok authored 7 years ago
  
  am: 5971d678 Change-Id: I3888b7843214d8ec5cb973dd1657c8d1e4364609
  006abea2
- Merge "charger: allow to read /sys/class/power_supply" · d39b16ba
  Yifan Hong authored 7 years ago
  
  am: 1dafee26 Change-Id: I2b3f6e3d57a8afa929bfb0976258e0e5ab7a32eb
  d39b16ba
- Merge "Add rcs.publish.status to the whitelist" · 5971d678
  Jaekyun Seok authored 7 years ago
  
  5971d678
- Merge "charger: allow to read /sys/class/power_supply" · 1dafee26
  Treehugger Robot authored 7 years ago
  
  1dafee26
- Disallow sysfs_leds to coredomains. · 09fddac1
  Steven Moreland authored 7 years ago
  
  Bug: 70846424 Test: neverallow not tripped Change-Id: I9e351ee906162a594930b5ab300facb5fe807f13
  09fddac1
- Merge "Enforce per-app data protections for targetSdk 28+" · 205e38fb
  TreeHugger Robot authored 7 years ago
  
  205e38fb
- charger: allow to read /sys/class/power_supply · 2d64886d
  Yifan Hong authored 7 years ago
  
  Test: charger mode correctly shuts off when unplugged Change-Id: I06a7ffad67beb9f6d9642c4f53c35067b0dc2b3d Fixes: 71328882
  2d64886d
- Merge "Add default namespaces of odm properties" am: 74828e65 am: 3f63d625 · c27869e2
  Jaekyun Seok authored 7 years ago
  
  am: 0e194f1e Change-Id: Ie731c4076669e067b049b68082ac6b77f3f3094d
  c27869e2
- Merge "Add default namespaces of odm properties" am: 74828e65 · 0e194f1e
  Jaekyun Seok authored 7 years ago
  
  am: 3f63d625 Change-Id: If6bb3de42b53caa1f3a28b9ed6e9d4f17a4b20e2
  0e194f1e
- Merge "Add default namespaces of odm properties" · 3f63d625
  Jaekyun Seok authored 7 years ago
  
  am: 74828e65 Change-Id: I1ba1400dbdfb7eebd0a40571cc65dec45f081d57
  3f63d625
Jan 18, 2018

Merge "Add default namespaces of odm properties" · 74828e65
Treehugger Robot authored 7 years ago

74828e65

Add rcs.publish.status to the whitelist · 34aad97e

Jaekyun Seok authored 7 years ago

Bug: 72154054
Test: tested with walleye
Change-Id: I35271c6044946c4ec639409c914d54247cfb9f79

34aad97e

neverallow shell access to 'device' type · 5dab9134

Tri Vo authored 7 years ago

Bug: 65643247
Test: builds, the change doesn't affect runtime behavior.

Change-Id: I621a8006db7074f124cb16a12662c768bb31e465

5dab9134

Enforce per-app data protections for targetSdk 28+ · 6231b4d9

Jeff Vander Stoep authored 7 years ago

Adds per-app categories to untrusted app domains and their
app data types. Per-app categories are in addition to the
existing per-user categories.

Apps targeting sdk version 28+ will now have the following
characteristics:
Domain: u:r:untrusted_app:s0:c[0-9]+,c[0-9]+,c[0-9],c[0-9]
Data context: u:object_r:app_data_file:s0:c[0-9]+,c[0-9]+,c[0-9],c[0-9]

Whereas apps targeting 27- will look like:
Domain: u:r:untrusted_app_27:s0:c[0-9]+,c[0-9]+
Data context: u:object_r:app_data_file:s0:c[0-9]+,c[0-9]+

To ensure backwards compatibility with previous SDK versions,
the levelFrom=all now enforces categories by dominance instead of
equality. Apps with per-app and per-user categories will continue
to have selinux permissions (but not necessarily unix permissions)
to access app data with only per-user categories, but apps with only
per-user categories will not be able to access the data of apps with
both per-app and per-user categories.

Bug: 63897054
Test: Boot sailfish, run apps, verify no new selinux denials.
Test: cts-tradefed run cts -m CtsSelinuxTargetSdkCurrentTestCases
Test: cts-tradefed run cts -m CtsSelinuxTargetSdk27TestCases
Test: cts-tradefed run cts -m CtsSelinuxTargetSdk25TestCases
Test: adb sideload an OTA and verify that files are correctly labeled.
Change-Id: I64b013874fe87b55f47e817a1279e76ecf86b7c0

6231b4d9

Merge "system_server: remove access sysfs_devices_system_cpu" am: 3ac8456f am: 2a29ebac · fc81ae5e
Tri Vo authored 7 years ago
```
am: dfe6c3b0

Change-Id: I5395817f5113ad69b50a74bb7750ae2f7cdaef1d
```
fc81ae5e
Merge "system_server: remove access sysfs_devices_system_cpu" am: 3ac8456f · dfe6c3b0
Tri Vo authored 7 years ago
```
am: 2a29ebac

Change-Id: I08c7649facbffb858b9f143efc7123e8f8085569
```
dfe6c3b0
Merge "system_server: remove access sysfs_devices_system_cpu" · 2a29ebac
Tri Vo authored 7 years ago
```
am: 3ac8456f

Change-Id: Ie724f09b937b2890f528592b3b5afea915ea7578
```
2a29ebac
Merge "system_server: remove access sysfs_devices_system_cpu" · 3ac8456f
Tri Vo authored 7 years ago

3ac8456f
Merge "Suppress denials for non-API access" am: ec4d4a5e am: c25c474c · 13ac2500
Jeff Vander Stoep authored 7 years ago
```
am: 98b70dcb

Change-Id: I8c7a40a256d275979ceaab4fc57963f24cec2460
```
13ac2500
Merge "Suppress denials for non-API access" am: ec4d4a5e · 98b70dcb
Jeff Vander Stoep authored 7 years ago
```
am: c25c474c

Change-Id: I1d70c2b8ecdf21bdd9b19edb66d4ccb9e47e213e
```
98b70dcb
Merge "Suppress denials for non-API access" · c25c474c
Jeff Vander Stoep authored 7 years ago
```
am: ec4d4a5e

Change-Id: I17d84198a6c0f5dfe556d5b688f9d92e5f2238b1
```
c25c474c
Merge "Suppress denials for non-API access" · ec4d4a5e
Treehugger Robot authored 7 years ago

ec4d4a5e

Suppress denials for non-API access · 6d8a876a

Jeff Vander Stoep authored 7 years ago

avc: denied { read } scontext=u:r:priv_app:s0:c512,c768
tcontext=u:object_r:proc_version:s0 tclass=file
avc: denied { read } scontext=u:r:priv_app:s0:c512,c768
tcontext=u:object_r:wifi_prop:s0 tclass=file
avc: denied { read } scontext=u:r:priv_app:s0:c512,c768
tcontext=u:object_r:net_dns_prop:s0 tclass=file

Bug: 72151306
Test: build
Change-Id: I4b658ccd128746356f635ca7955385a89609eea1

6d8a876a

Add default namespaces of odm properties · afca82a3

Jaekyun Seok authored 7 years ago

Since /odm is an extension of /vendor, its default property contexts
should be consistent with ones of /vendor.

Bug: 36796459
Test: tested on wahoo devices
Change-Id: Ia67ebe81e9c7102aab35a34f14738ed9a24811d3

afca82a3

Merge "storaged: remove access to sysfs_type" am: e3b05cf6 am: 2a415167 · c936223c
Tri Vo authored 7 years ago
```
am: 38b22466

Change-Id: Ifc0122974741000970b19e3053b380087291cdc4
```
c936223c
Merge "Mark shell as system_executes_vendor_violators." am: 65565c1c am: 6029d329 · 4d8ea7b4
Tri Vo authored 7 years ago
```
am: 236e1b7e

Change-Id: I963a4fd6d26f574137d884b92febea1e7f2926c3
```
4d8ea7b4
Add sepolicy to lock down bpf access am: 566411ed am: 6b2a01a6 · ef441de9
Chenbo Feng authored 7 years ago
```
am: e638b198

Change-Id: I8cab5775ea450daa65a72e75828b76b7eb831c90
```
ef441de9