am: 51251212

Change-Id: Ie3194b1314cef76240ff518ac2b86e094b9baa81

am: 6faa3a1a

Change-Id: Ica1a165a67f4db803e69757009a14145bb17c5b9

am: a6966554

Change-Id: I8c09069290ffe1827212206b81616e9302bfe7ea

am: cd753d11

Change-Id: I01a332c51aa4a5c62e5b2bb4ba13565b48c46b88

am: dcd0baf6

Change-Id: I07782169b7a9b4ad05d8915e43599c0ae158fb2b

am: 97c86514

Change-Id: I170162843b04280105c76d4e5d7a8d3f89583588

Added access to proc_uptime and proc_asound to address these denials:

avc: denied { read } for name="uptime" dev="proc" ino=4026532080
scontext=u:r:shell:s0 tcontext=u:object_r:proc_uptime:s0 tclass=file
permissive=1

avc: denied { getattr } for path="/proc/asound/version" dev="proc"
ino=4026532017 scontext=u:r:shell:s0 tcontext=u:object_r:proc_asound:s0
tclass=file permissive=1

Bug: 65643247
Test: device boots with no denial from 'shell' domain.
Test: lsmod, ps, top, netstat
Test: No denials triggered from CtsSecurityHostTestCases
Test: external/toybox/run-tests-on-android.sh does not pass, but triggers
no denials from 'shell' domain to 'proc' type.

Change-Id: Ia4c26fd616e33e5962c6707a855dc24e338ec153

am: 92652912

Change-Id: Id419994de8b6ca9dc29e0cb3a3c0d05cd07b982a

am: 499fd010

Change-Id: Ifdf2102a4305b3aa51607e78a1c6ce529b45d382

am: 1bd4443a

Change-Id: Ia72d55f0a38fb9415166d5cf03cd67b2e9e2162c

am: 25576730

Change-Id: I97842c1a293bc68daa11adffec29514a9afbb868

- Allow system_server to create and write to /data/misc/wmtrace/*
- Allow surfaceflinger to create and write files from /data/misc/wmtrace/*
- Allow dumpstate to read files from /data/misc/wmtrace/*
permissions are restricted to userdebug or eng builds

Bug: 64831661

Test: adb shell cmd window tracing start && adb shell cmd window tracing stop
Test: adb shell su root service call SurfaceFlinger 1025 i32 1 >/dev/null && adb shell su root service call SurfaceFlinger 1025 i32 0 >/dev/null
Test: adb bugreport ~/tmp.zip && adb shell su root dmesg | grep 'avc: '

Change-Id: I0b15166560739d73d7749201f3ad197dbcf5791c

Bug: 65643247
Test: cts-tradefed run cts-dev -m \
CtsMediaTestCases --compatibility:module-arg \
CtsMediaTestCases:include-annotation:\
android.platform.test.annotations.RequiresDevice
No denials from mediaserver domain to sysfs type are observed.
Change-Id: Icb5c12f04af213452d82e226993fe13085c5c33f

am: f6aa0695

Change-Id: I109c44d4ebbb08aa5eb78e4d8a3b8ac106411dc2

am: 13c69b89

Change-Id: I81e8cc02afa5b87419a4e70ab46a70ca43b85c43

Label /proc/sys/fs/pipe-max-size with new type proc_pipe_conf and give
system_server access to it.

Addresses this denial:
avc: denied { read } for name="pipe-max-size" dev="proc" ino=93817
scontext=u:r:system_server:s0 tcontext=u:object_r:proc:s0 tclass=file
permissive=0

Bug: 69175449
Bug: 69324398
Test: sailfish boots
Test: adb bugreport
Test: craft an unresponsive app, trigger ANR, make sure traces are dumped
into /data/anr
Above denial from system_server not observed, no denials to proc_pipe_conf
observed.
Change-Id: I7c71f05820a4945ba982e29f76e9d9f4458b2b59

Only getattr and read are necessary for lnk_file. Open violates a new
neverallow for separating system and vendor data.

Bug: 34980020
Test: Enroll fingerprint on Taimen
Change-Id: I9434afbd5b4ecc1ead9f0ba47c7582fb5a6c6bf0

am: 0181d23f

Change-Id: I7c75b607ce60eb60f8b0bfb58ed8a190940a8239

am: 0d7e5047

Change-Id: I29fd343005136d580763eff843fa94e8e3318c06

am: 7bd0bde4

Change-Id: I6aa0562fdc8e0fb482c8c81fbb256f57dbe59387

This reverts commit 248b6dc6.

Reason for revert: The dashboard complains that devices don't boot after this revert.

Change-Id: I6a4648b64b096cbaa97c67aae6bc38b76d54cb48

am: 5984301a

Change-Id: I7e6c4733471f5954a16f991adddda3657844b47d

am: e3cec841

Change-Id: Iefd431374378a736aa8e3a2f37b25cf026b3998f

am: 248b6dc6

Change-Id: Ie2990b86b85fbe29565ca7957fbce6b6121abec1

Copy init's dontaudit for sysfs:dir write; to calm the below denials:

avc:  denied  { write } for  pid=542 comm="init" name="1da4000.ufshc" dev="sysfs" ino=21752 scontext=u:r:vendor_init:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=1
avc: denied { write } for pid=542 comm="init" name="1da4000.ufshc" dev="sysfs" ino=21752 scontext=u:r:vendor_init:s0 tcontext=u:object_r:sysfs:s0 tclass=dir permissive=1

Bug: 62875318
Test: use pixel + factory reset + vendor_init
Change-Id: I686b51c4f340b3565ea24f00516ebde846be7a89

This reverts commit d1cf3a40.

Reason for revert: It breaks CTS b/69309298 and other platform tests which read pm.dexopt properties.

Change-Id: I5c7cde041113e9c19bb23218edd99f699fcf4a06

After move qtaguid control interface into netd. Netd need to open the
xt_qtaguid resource tracking misc dev to make sure xt_qtaguid module is
successfully initialized before taking action. This selinux rule change
allows netd to do so and it is the same privilege normal apps currently
have.

Test: No more selinux denials on netd access qtaguid_device
Bug: 30950746
Change-Id: I79a98bbda3f3fdb85140a06a7532cdcc4354c518

am: aff4f750

Change-Id: I2c6b101769806b987114e6787ecc158329490791

am: aca97bcb

Change-Id: I5bb923eecb8fb757d31a8b612f85a49d69cefdab

am: a7c29d41

Change-Id: Ia29bb093294461bdea9b81bff3d208e16c49a36c

am: 07195bb6

Change-Id: I76d6dbcba064919a21264f961ba5e331452fce5f