Commits · 344fc109e9787f91946ac852bb513c796aab38f6 · CodeLinaro / public-release-test / platform / system / sepolicy

Jul 15, 2014

Add access control for each service_manager action. · 344fc109

Riley Spahn authored 10 years ago

Add SELinux MAC for the service manager actions list
and find. Add the list and find verbs to the
service_manager class. Add policy requirements for
service_manager to enforce policies to binder_use
macro.

(cherry picked from commit b8511e0d)

Change-Id: I980d4a8acf6a0c6e99a3a7905961eb5564b1be15

344fc109

fix system_server dex2oat exec · 10370f5f

Nick Kralevich authored 10 years ago

Addresses the following denial:

W/system_server( 2697): type=1400 audit(0.0:9): avc: denied { execute } for name="dex2oat" dev="mmcblk0p31" ino=118 scontext=u:r:system_server:s0 tcontext=u:object_r:dex2oat_exec:s0 tclass=file permissive=0

Bug: 16317188
Change-Id: I168842b3e281efcb0632049632ed3817c2025e4d

10370f5f

reconcile aosp (c103da87) after branching. Please do not merge. · 8ee37b4f
Ed Heyl authored 10 years ago
```
Change-Id: Ic9dde806a30d3e7b9c4a066f247a9207fe9b94b4
```
8ee37b4f
reconcile aosp (3a8c5dc0) after branching. Please do not merge. · 81839dfb
Ed Heyl authored 10 years ago
```
Change-Id: Ic8ee83ed6ffef02bddd17e1175416fc2481db7b2
```
81839dfb
reconcile aosp (a7c04dcd) after branching. Please do not merge. · 7563a6f1
Ed Heyl authored 10 years ago
```
Change-Id: I35be7a7df73325fba921b8a354659b2b2a3e06e7
```
7563a6f1
reconcile aosp (4da3bb14) after branching. Please do not merge. · e9c90bdd
Ed Heyl authored 10 years ago
```
Change-Id: Idcd252e39b2c4829201c93b6c99cf368adcb405e
```
e9c90bdd

Jul 14, 2014

DO NOT MERGE: Flip FORCE_PERMISSIVE_TO_UNCONFINED to true · 2aa727e3

Nick Kralevich authored 10 years ago

Force any experimental SELinux domains (ones tagged with
"permissive_or_unconfined") into unconfined. This flag is
intended to be flipped when we're preparing a release,
to eliminate inconsistencies between user and userdebug devices,
and to ensure that we're enforcing a minimal set of rules for all
SELinux domains.

Without this change, our user builds will behave differently than
userdebug builds, complicating testing.

Change-Id: I52fd5fbe30a7f52f1143f176915ce55fb6a33f87

2aa727e3

Jul 11, 2014
- am 2f91ce55: am e4409728: am 65edb75d: Allow netd to create data files in /data/misc/net/. · 0ff90f1a
  Sreeram Ramachandran authored 10 years ago
```
* commit '2f91ce55':
```
  0ff90f1a
- am 1c7463ac: am d27aeb21: am e9d97b74: recovery: allow read access to fuse filesystem · deb52ba4
  Nick Kralevich authored 10 years ago
```
* commit '1c7463ac':
```
  deb52ba4
- am ddfaf822: am d86b0a81: am 9f6af083: New domain "install_recovery" · 69aaf4a9
  Nick Kralevich authored 10 years ago
```
* commit 'ddfaf822':
```
  69aaf4a9
- am 554a8a3d: am e900e573: am 77e85289: Merge "Rules to allow installing package directories." · 611922e7
  Jeff Sharkey authored 10 years ago
```
* commit '554a8a3d':
```
  611922e7
- am e4409728: am 65edb75d: Allow netd to create data files in /data/misc/net/. · 2f91ce55
  Sreeram Ramachandran authored 10 years ago
```
* commit 'e4409728':
  Allow netd to create data files in /data/misc/net/.
```
  2f91ce55
- am d27aeb21: am e9d97b74: recovery: allow read access to fuse filesystem · 1c7463ac
  Nick Kralevich authored 10 years ago
```
* commit 'd27aeb21':
  recovery: allow read access to fuse filesystem
```
  1c7463ac
- am d86b0a81: am 9f6af083: New domain "install_recovery" · ddfaf822
  Nick Kralevich authored 10 years ago
```
* commit 'd86b0a81':
  New domain "install_recovery"
```
  ddfaf822
- am e900e573: am 77e85289: Merge "Rules to allow installing package directories." · 554a8a3d
  Jeff Sharkey authored 10 years ago
```
* commit 'e900e573':
  Rules to allow installing package directories.
```
  554a8a3d
Jul 10, 2014
- support newer-style adbd interface in recovery · 9f88bc55
  Doug Zongker authored 10 years ago
```
Support opening the ffs-based interface for adbd in recovery.  (Copied
from adbd.te.)

Bug: 16183878
Change-Id: I714ccb34f60d1413d2b184dae9b561cd06bc6b45
```
  9f88bc55
- am a2933b66: am 2b3c5de2: Merge "install_recovery: start enforcing SELinux rules" · a50467c3
  Nick Kralevich authored 10 years ago
```
* commit 'a2933b66':
  install_recovery: start enforcing SELinux rules
```
  a50467c3
- am 2b3c5de2: Merge "install_recovery: start enforcing SELinux rules" · a2933b66
  Nick Kralevich authored 10 years ago
```
* commit '2b3c5de2':
  install_recovery: start enforcing SELinux rules
```
  a2933b66
- am 5b347a60: am 1d2ff869: allow ueventd sysfs_type lnk_file · d684f1a5
  Nick Kralevich authored 10 years ago
```
* commit '5b347a60':
  allow ueventd sysfs_type lnk_file
```
  d684f1a5
- am 1d2ff869: allow ueventd sysfs_type lnk_file · 5b347a60
  Nick Kralevich authored 10 years ago
```
* commit '1d2ff869':
  allow ueventd sysfs_type lnk_file
```
  5b347a60
- allow ueventd sysfs_type lnk_file · 1d2ff869
  Nick Kralevich authored 10 years ago
```
ueventd is allowed to change files and directories in /sys,
but not symbolic links. This is, at a minimum, causing the
following denial:

type=1400 audit(0.0:5): avc: denied { getattr } for comm="ueventd" path="/sys/devices/tegradc.0/driver" dev=sysfs ino=3386 scontext=u:r:ueventd:s0 tcontext=u:object_r:sysfs_devices_tegradc:s0 tclass=lnk_file

Allow ueventd to modify labeling / attributes of symlinks.

Change-Id: If641a218e07ef479d1283f3171b2743f3956386d
```
  1d2ff869
- am 5b5ba50f: am b59dc27a: Drop sys_rawio neverallow for tee · feb59442
  Nick Kralevich authored 10 years ago
```
* commit '5b5ba50f':
  Drop sys_rawio neverallow for tee
```
  feb59442
- am b59dc27a: Drop sys_rawio neverallow for tee · 5b5ba50f
  Nick Kralevich authored 10 years ago
```
* commit 'b59dc27a':
  Drop sys_rawio neverallow for tee
```
  5b5ba50f
- Drop sys_rawio neverallow for tee · b59dc27a
  Nick Kralevich authored 10 years ago
```
The new Nexus 5 tee implementation requires raw block I/O
for anti-rollback protection.

Bug: 15777869
Change-Id: I57691a9d06b5a51e2699c240783ed56e3a003396
```
  b59dc27a
- am 7e953e77: am f5835666: Don\'t use don\'t · 2cfe1fa0
  Nick Kralevich authored 10 years ago
```
* commit '7e953e77':
  Don't use don't
```
  2cfe1fa0
- am f5835666: Don\'t use don\'t · 7e953e77
  Nick Kralevich authored 10 years ago
```
* commit 'f5835666':
  Don't use don't
```
  7e953e77
- am f7cf7a4b: am 99d86c7a: ensure that untrusted_app can\'t set properties · eec3c7cd
  Nick Kralevich authored 10 years ago
```
* commit 'f7cf7a4b':
  ensure that untrusted_app can't set properties
```
  eec3c7cd
- am 99d86c7a: ensure that untrusted_app can\'t set properties · f7cf7a4b
  Nick Kralevich authored 10 years ago
```
* commit '99d86c7a':
  ensure that untrusted_app can't set properties
```
  f7cf7a4b
- Don't use don't · f5835666
  Nick Kralevich authored 10 years ago
```
Single quotes sometimes mess up m4 parsing

Change-Id: Ic53cf0f9b45b2173cbea5c96048750f6a582a535
```
  f5835666
- ensure that untrusted_app can't set properties · 99d86c7a
  Nick Kralevich authored 10 years ago
```
Bug: 10243159
Change-Id: I9409fe8898c446a33515f1bee2990f36a2e11535
```
  99d86c7a
- am bfd4eac7: am 5d60f04e: sepolicy: allow system server to remove cgroups · 88a65e24
  Colin Cross authored 10 years ago
```
* commit 'bfd4eac7':
  sepolicy: allow system server to remove cgroups
```
  88a65e24
- am aaaeb02e: am 2cd9c9bd: Merge "Typedef+rules for SysSer to access persistent block device" · efcb5947
  Andres Morales authored 10 years ago
```
* commit 'aaaeb02e':
  Typedef+rules for SysSer to access persistent block device
```
  efcb5947
- am 568443bc: am d3356826: Let DCS read staged APK clusters. · 389ac063
  Jeff Sharkey authored 10 years ago
```
* commit '568443bc':
  Let DCS read staged APK clusters.
```
  389ac063
- am 5d60f04e: sepolicy: allow system server to remove cgroups · bfd4eac7
  Colin Cross authored 10 years ago
```
* commit '5d60f04e':
  sepolicy: allow system server to remove cgroups
```
  bfd4eac7
- am 2cd9c9bd: Merge "Typedef+rules for SysSer to access persistent block device" · aaaeb02e
  Andres Morales authored 10 years ago
```
* commit '2cd9c9bd':
  Typedef+rules for SysSer to access persistent block device
```
  aaaeb02e
- am d3356826: Let DCS read staged APK clusters. · 568443bc
  Jeff Sharkey authored 10 years ago
```
* commit 'd3356826':
  Let DCS read staged APK clusters.
```
  568443bc
- sepolicy: allow system server to remove cgroups · 5d60f04e
  Colin Cross authored 10 years ago
```
Bug: 15313911
Change-Id: Ib7d39561a0d52632929d063a7ab97b6856f28ffe
```
  5d60f04e
Jul 09, 2014

Let DCS read staged APK clusters. · d3356826

Jeff Sharkey authored 10 years ago

DCS is DefaultContainerService.

avc: denied { getattr } for path="/data/app/vmdl2.tmp"
    dev="mmcblk0p28" ino=162910 scontext=u:r:platform_app:s0
    tcontext=u:object_r:apk_tmp_file:s0 tclass=dir

Bug: 14975160
Change-Id: Ifca9afb4e74ebbfbeb8c01e1e9ea65f5b55e9375

d3356826

am 9c52a78c: am e844113b: Allow SystemServer to start PersistentDataBlockService · 254953d9
Andres Morales authored 10 years ago
```
* commit '9c52a78c':
  Allow SystemServer to start PersistentDataBlockService
```
254953d9
am e844113b: Allow SystemServer to start PersistentDataBlockService · 9c52a78c
Andres Morales authored 10 years ago
```
* commit 'e844113b':
  Allow SystemServer to start PersistentDataBlockService
```
9c52a78c