aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Export missing audio volume propertiesHEADlineage-17.1Michael Bestas2020-06-082-0/+12
| | | | | | | | | | | | | | | The following properties are used in AudioService: ro.config.alarm_vol_default ro.config.alarm_vol_steps ro.config.media_vol_default ro.config.system_vol_default ro.config.system_vol_steps ro.config.vc_call_vol_default Test: properties can be set from vendor with PRODUCT_COMPATIBLE_PROPERTY_OVERRIDE := true Change-Id: Ib90103173989fcb0723f3d8465df3cd03334cc53
* Ignore the denial when system_other is erasedBowgo Tsai2020-06-064-0/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | This CL addresses the following denial, when the system_other partition is erased. This happens when 1) the device gets an OTA update and 2) factory reset to wipe userdata partition. Note that the system_other partition will be mounted under /postinstall only in the first boot after factory reset. Also, system_other.img is only included in the factory ROM and is absent in the OTA package. When it is absent and userdata is wiped, the mount will fail and triggers the following denials when both cppreopts.sh and preloads_copy.sh access /postinstall dir. SELinux denials to address: avc: denied { search } for comm="find" name="postinstall" dev="dm-5" ino=44 scontext=u:r:preloads_copy:s0 tcontext=u:object_r:postinstall_mnt_dir:s0 tclass=dir permissive=0 avc: denied { search } for comm="cppreopts.sh" name="postinstall" dev="dm-5" ino=44 scontext=u:r:cppreopts:s0 tcontext=u:object_r:postinstall_mnt_dir:s0 tclass=dir permissive=0 Bug: 152453231 Test: fastboot erase system_other (e.g., system_b) and fastboot -w Change-Id: Ie67f02467d5da51b0caba6e8fda56bc2c6bbc944 (cherry picked from commit 35c2f102f29a0f9d73e526f1fa6fdb163f75b48c)
* Don't require seinfo for priv-appsAshwini Oruganti2020-06-062-6/+8
| | | | | | | | | | | | | | | | | Relax the requirement to have both seinfo and name specified for privapps. The original reason for requiring both was because, normally, a package can only be uniquely specified by both name and signature, otherwise package squatting could occur. However, privapps are pre-installed, so the concerns about the potential for package squatting are eliminated. This change will drastically simplify sepolicy configuration for priv-apps. Bug: 142672293 Test: Flashed a device with this build and verified com.google.android.permissioncontroller still runs in the permissioncontroller_app domain. Change-Id: I5bb2bf84b9db616c4492bd1402550821c70fdd07 (cherry picked from commit 04f771dee48ad65f823d1f2343b439b85082e0f8)
* Allow reading dt fstab in boot control HAL.David Anderson2020-06-061-0/+1
| | | | | | | | | | | | Fixes the following denial: type=1400 audit(0.0:4): avc: denied { read } for comm="android.hardwar" name="compatible" dev="sysfs" ino=28205 scontext=u:r:hal_bootctl_default:s0 tcontext=u:object_r:sysfs_dt_firmware_android:s0 tclass=file permissive=0 This permission is needed for ReadDefaultFstab, which searches the device tree for fstab entries. Devices that use dt-fstab may fail to find the misc block device. Bug: 143589455 Test: manual test Change-Id: Ied52fe9b1056d26b4dd00811c4690fa4c505fae8 (cherry picked from commit 9853c7522d3e81d10c3410b1ea272b385905072e)
* Add sepolicy for IBootControl 1.0 and the default HAL.David Anderson2020-06-062-1/+13
| | | | | | | | | Bug: 138861550 Test: manual test Change-Id: Ibc9a55266a2726cb8dc8550be0264db30b66109e [adelva: Backporting to support the 'reference' default boot control HAL implementation used on cuttlefish, but free to use on any device] (cherry picked from commit 549e3c6d91ce214739ce52b1b807ea37f1574bb1)
* global_macros: trim back various watch* permissionsNick Kralevich2020-06-062-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Commit dddbaaf1e8791f8fffde424aa09a6e135f973771 ("update sepolicy for fs notification hooks") updated global macros, and added watch, watch_mount, watch_sb, watch_with_perm, and watch_reads to r_file_perms and r_dir_perms. In retrospect, the commit was overly permissive and some of the permissions shouldn't be granted by default. In particular: 1) watch_with_perm: This is only used with fanotify and requires CAP_SYS_ADMIN. fanotify has limited use cases, including virus scanning and hierarchical storage management. Granting this by default makes it harder to audit and understand this powerful capability. In particular, anti-virus file like monitoring is something which inherently conflicts with Android app privacy guarantees and would need to be carefully reviewed. 2) watch_mount & watch_sb: Setting a watch on a mount (FAN_MARK_MOUNT) or superblock (FAN_MARK_FILESYSTEM) should be extremely unusual. Granting this by default makes it harder to audit and understand. Both "watch" and "watch_reads" are retained for now. References: * https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/?id=ac5656d8a4cdd93cd2c74355ed12e5617817e0e7 * https://android.googlesource.com/platform/system/sepolicy/+/dddbaaf1e8791f8fffde424aa09a6e135f973771 Bug: 151469737 Test: compiles Change-Id: Ib74e7119853eb991e0e9828645c7f9e076b919c4 (cherry picked from commit c4ab8edf7476ac8f247e5f1b2efbe282a693be06)
* update sepolicy for fs notification hooksNick Kralevich2020-06-064-4/+76
| | | | | | | | | | | | | Update access_vectors and global_macros to account for the changes in kernel commit https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/?id=ac5656d8a4cdd93cd2c74355ed12e5617817e0e7 This change is needed to allow Android to boot on linux-next Bug: 151469737 Test: compiles Change-Id: I35c59fc50fa9c94ab94399ce74d637e49d38129d (cherry picked from dddbaaf1e8791f8fffde424aa09a6e135f973771)
* Merge tag 'android-10.0.0_r37' into ↵Kevin F. Haggerty2020-06-0116-28/+56
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | staging/lineage-17.1_merge-android-10.0.0_r37 Android 10.0.0 Release 37 (QQ3A.200605.001) * tag 'android-10.0.0_r37': Ignore the denial due to vendor_misc_writer reading DT fstab. Allow access to the "refresh_rate_switching" system property Prevent apps from causing presubmit failures Add property contexts for dex2oat cpu-set properties Update Q sepolicy prebuilt Fix: dumpstate HAL service property context block: allow init.rc to tune max discard size Allow adb start/stop mdnsd via ctl.start/stop system_server: TelephonyManager reads /proc/cmdline Conflicts: prebuilts/api/29.0/private/system_server.te private/system_server.te Change-Id: Ieddbab309e6e666475e97d0b7b27c33e6804c5a4
| * Snap for 6347857 from ab38d7073e15353cedfbcf8e79dfab8a77f79129 to ↵android-build-team Robot2020-03-302-2/+6
| |\ | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: Ib923cecdadf14e40643cf0b19563671360b2a356
| | * Ignore the denial due to vendor_misc_writer reading DT fstab.Tao Bao2020-03-302-2/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This CL addresses the following denial, when vendor_misc_writer tries to read DT fstab (i.e. device tree fstab) for /misc entry. avc: denied { search } for comm="misc_writer" name="android" dev="sysfs" ino=17456 scontext=u:r:vendor_misc_writer:s0 tcontext=u:object_r:sysfs_dt_firmware_android:s0 tclass=dir DT fstab was used for devices shipped prior to Q, for early-mounting partitions (e.g. /system, /vendor, /product), which has been disallowed for Q launch devices. vendor_misc_writer is a new module added since Q, so it doesn't need to worry about the legacy code path; in practice there's no benefit of putting /misc entry into DT fstab either. Bug: 134122603 Bug: 152718206 Test: Build and flash taimen with the change that enables vendor_misc_writer. Check that it no longer gives the above denial during boot. Change-Id: Id2fb206706f7cd19a4cde2701e4155bfc03f01b4
| * | Snap for 6324712 from 4ee8089356aca550ed358ee14e6aa1933c52bd15 to ↵android-build-team Robot2020-03-232-0/+2
| |\| | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: Ia4da3d010c3fa0a44b6362e502f6564980444257
| | * Allow access to the "refresh_rate_switching" system propertySteven Thomas2020-03-202-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bug: 147233255 Bug: 136592946 Bug: 138261472 Test: Ran with the patch applied, confirmed surface flinger can access the system property. Change-Id: I259a488399c5e698de384322852ea81ea1a96e7d Merged-In: I259a488399c5e698de384322852ea81ea1a96e7d Exempt-From-Owner-Approval: Approved internally
| * | Snap for 6290189 from a68dd136aab93db5ae3e2f80b67688d06aced3ed to ↵android-build-team Robot2020-03-126-24/+32
| |\| | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: I30b3cf572220a2c5af68a4de570f3ef5b8c003c6
| | * Prevent apps from causing presubmit failuresJeff Vander Stoep2020-03-126-24/+32
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Apps can cause selinux denials by accessing CE storage and/or external storage. In either case, the selinux denial is not the cause of the failure, but just a symptom that storage isn't ready. Many apps handle the failure appropriately. These denials are not helpful, are not the cause of a problem, spam the logs, and cause presubmit flakes. Suppress them. Bug: 145267097 Bug: 151188413 Test: build Merged-In: If87b9683e5694fced96a81747b1baf85ef6b2124 Change-Id: If87b9683e5694fced96a81747b1baf85ef6b2124
| * | Snap for 6271995 from 23098ec3bbf49c62d4a32e94b56f9a84442193f2 to ↵android-build-team Robot2020-03-072-0/+6
| |\| | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: I8047a251c85607b63b214c76789802605da9bfce
| | * Add property contexts for dex2oat cpu-set propertiesOrion Hodson2020-03-052-0/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | New properties are: dalvik.vm.dex2oat-cpu-set [default compiler thread affinity] dalvik.vm.boot-dex2oat-cpu-set [compiler thread affinity for boot] dalvik.vm.image-dex2oat-cpu-set [thread affinity recompiling the boot image] Bug: 141446571 Bug: 149395059 Test: Run installd tests with new properties defined in target mk file. Change-Id: Idcbb1332aa9c18f6082b827eae0334d063644a41 (cherry picked from commit 7b2ee48cd2c751661c21b9c498a57da7ba6daf50)
| * | Snap for 6203188 from 1dd6321a001d4ed7a69d1fe44bada7a7656937bc to ↵android-build-team Robot2020-02-132-2/+6
| |\| | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: Id05dd4a11e62b70de35cdda22b39dd425bbd5654
| | * Update Q sepolicy prebuiltAlex Hong2020-02-111-1/+3
| | | | | | | | | | | | | | | | | | | | | This updates 29.0 api for dumpstate restart control property contexts Bug: 147730517 Change-Id: I0aa7450dc0fb34de321cf8d2ba357b2ecabbcf43
| | * Fix: dumpstate HAL service property contextWei Wang2020-02-101-1/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | http://aosp/678384 changed property format Fixes: 137695210 Bug: 147730517 Test: inject timeout and take BR see dumpstate restarted Change-Id: Ie24e2d42e92410a935ca4c9364b476d72aa459f3 Merged-In: Ie24e2d42e92410a935ca4c9364b476d72aa459f3 (cherry picked from commit 046c5104021ffc5dacb89e1d3a7299e172ad95fd)
| * | Snap for 6175884 from 028f2c3453c82a1d3669eb9161fdef5a30576125 to ↵android-build-team Robot2020-02-022-0/+2
| |\| | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: Ia85f8afbff172433e3af6d67ae53531a2d94c57b
| | * Merge "block: allow init.rc to tune max discard size" into qt-qpr1-devJaegeuk Kim2020-02-012-0/+2
| | |\
| | | * block: allow init.rc to tune max discard sizeJaegeuk Kim2020-01-232-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Init.rc requires to limit max discard to avoid long latencies. Bug: 148209614 Change-Id: Idf3b295ac15efd5edf979ca896fdf826b9fc3c99 Merged-In: Idf3b295ac15efd5edf979ca896fdf826b9fc3c99 Signed-off-by: Jaegeuk Kim <jaegeuk@google.com>
| * | | Snap for 6145145 from 2192ec62231e44e1e99777841adb056ba81af9e1 to ↵android-build-team Robot2020-01-182-0/+6
| |\| | | | | | | | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: I9cbbb5de9cc86023371c135e5fe142cc17dcafd5
| | * | Merge "Allow adb start/stop mdnsd via ctl.start/stop" into qt-qpr1-devTreeHugger Robot2020-01-172-0/+6
| | |\ \
| | | * | Allow adb start/stop mdnsd via ctl.start/stopChangyeon Jo2020-01-162-0/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bug: 128345139 Test: make selinux_policy Change-Id: I477d6d94c16974f23f703d5f334ef108279ab3bb Signed-off-by: Changyeon Jo <changyeon@google.com> (cherry picked from commit cfeaa1c664afbd10c7a52e845ec4c08c9eabb525)
| * | | | Snap for 6141805 from 2951b4859d87e4da5f20499400b15b5ca62b96a8 to ↵android-build-team Robot2020-01-172-0/+2
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: Icb6faaaafd944d39e9a3f487ac4020a0e77c4a9b
| | * | | system_server: TelephonyManager reads /proc/cmdlineJeff Vander Stoep2020-01-152-0/+2
| | |/ / | | | | | | | | | | | | | | | | | | | | | | | | Bug: 124466646 Test: build Change-Id: Ib4868826eb153543c65503bfb4d3623c4158ffae (cherry picked from commit 29b76e2ceec2ab1e04715657a79b6544afdf09c9)
| * | | Snap for 6131975 from 49807a6c26c11d592f175adbad31ed587b9a3927 to ↵android-build-team Robot2020-01-144-0/+16
| |\| | | | | | | | | | | | | | | | | | | | | | qt-qpr3-release Change-Id: If0e65804d2442eaffac1488032789d1b7a6966ab
* | | | Allow adb start/stop mdnsd via ctl.start/stopChangyeon Jo2020-04-142-0/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bug: 128345139 Test: make selinux_policy Change-Id: I477d6d94c16974f23f703d5f334ef108279ab3bb Signed-off-by: Changyeon Jo <changyeon@google.com> (cherry picked from commit cfeaa1c664afbd10c7a52e845ec4c08c9eabb525)
* | | | sepolicy: Relabel wifi. properties as wifi_propdianlujitao2020-04-144-0/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * These properties are used by the wifi hal and it works as expected on devices with compatible property. However, on devices without compatible property, these prperties are labeled as "default_prop" because public/property_contexts is not used. Thus they can't be set by the hal. * To tackle the problem, label them as "wifi_prop" in private/property_contexts which also works on devices without compatible property. The label will be overridden later by public/property_contexts rules if exist. Change-Id: If8b8bd5bea64f2ea08864cc62f6dc405cb394e00
* | | | sepolicy: Allow recovery to alter /Gabriele M2020-04-132-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | This is needed for /etc/fstab, /adb_keys and volmgr Change-Id: I53332a57ce7879d7ba63c4ea3e27add01f5a3a90
* | | | sepolicy: whitelist recovery from node creation neverallowAlessandro Astone2020-04-132-0/+2
| | | | | | | | | | | | | | | | Change-Id: If91584e58f3709c0b18eaf9ee12a0c057716f9f3
* | | | sepolicy: Add sdcard_posix_contextmount_type attributeLuK13372020-04-074-2/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Since we can't use contextmount_type for sdcard_posix due to contextmount_type being read only by design we need to declare our own attribute to bypass relabelto neverallow. That way we can mount external ext4/f2fs SD with sdcard_posix context and write permissions. Test: m -j selinux_policy Change-Id: I0dfe49cc0b34dfcce2840198843bde1272cbc61c
* | | | audioserver: allow audioserver to generate audio HAL tombstonesEric Laurent2020-04-022-0/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Allow audioserver to signal audio HAL processes and generate tombstones in case of watchdog restart. Bug: 141528385 Test: Force watchdog and verify tombstone creation Change-Id: I39bb4a63aa93efab68baad3890b8f49fc5f79ead
* | | | Merge tag 'android-10.0.0_r31' into lineage-17.1-android-10.0.0_r31Luca Stefani2020-03-078-2/+20
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Android 10.0.0 release 31 * tag 'android-10.0.0_r31': Allow adb forward to traced consumer socket Revert "Revert "Allow dumpstate to dumpsys gpu"" Revert "Allow dumpstate to dumpsys gpu" Allow dumpstate to dumpsys gpu Allow vendor_init to modify pm.dexopt.disable_bg_dexopt Allow shell to unlink perfetto_traces_data_file. Revert "Property contexts for ro.sanitize.*" Property contexts for ro.sanitize.* Change-Id: Icc2807a2ae3a9fa53904db23114a4d07461fa30f
| * \ \ \ Snap for 6128439 from 49807a6c26c11d592f175adbad31ed587b9a3927 to ↵android-build-team Robot2020-01-122-0/+8
| |\ \ \ \ | | | |/ / | | |/| | | | | | | | | | | | | | | | | qt-qpr2-release Change-Id: I273fc16913682a13804adbe627adcb66e592ba7a
| | * | | Merge "Allow adb forward to traced consumer socket" into qt-qpr1-devTreeHugger Robot2020-01-112-0/+8
| | |\ \ \
| | | * | | Allow adb forward to traced consumer socketHector Dearman2020-01-102-0/+8
| | | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently shell can connect to the traced_consumer_socket allowing it to configure/start/stop and collect traces. This allows a host tool (e.g. Android Studio or https://ui.perfetto.dev) to connect to the device via adb and collect traces. It would be better if rather than executing shell commands the host tool could directly communicate with the consumer socket. This is possible using adb forward: adb forward tcp:9903 localfilesystem:/dev/socket/traced_consumer However in this case adbd is connecting to the socket - not shell. This CL allows adbd to connect to the socket which allows host tools to collect traces without having to do everything though shell commands. Note that this patch also has additional change on prebuilts in order to backport. Denial: 08-30 11:28:05.809 10254 10254 W adbd : type=1400 audit(0.0:1129): avc: denied { write } for name="traced_consumer" dev="tmpfs" ino=6719 scontext=u:r:adbd:s0 tcontext=u:object_r:traced_consumer_socket:s0 tclass=sock_file permissive=0 Test: Cherry pick CL to master, make, flash adb logcat | grep denied adb forward tcp:9903 localfilesystem:/dev/socket/traced_consumer Bug: b/139536756 Change-Id: Ie08e687c0b06d0e1121009e8cd70319a8f907ae2 (cherry-picked from commit b56a49d979c228400abaae849e9df95d0c834f51)
| * | | | Snap for 6127030 from b5c47df035086cda964e6afb6411b9f8a0084fca to ↵android-build-team Robot2020-01-112-0/+8
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | qt-qpr2-release Change-Id: Ibb6bb876e5f33517d6f82562648394afcaad7d25
| | * | | Revert "Revert "Allow dumpstate to dumpsys gpu""Yiwei Zhang2020-01-092-0/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit 6daec46264b5bfdfec6f249443133d74222d48e0. Reason for revert: b/147458874 Bug: 132402890 Test: build passes on coral-userdebug Change-Id: Ibcbc06e99561be424aa953e62985abb5b5864c56
| * | | | Snap for 6124118 from 6daec46264b5bfdfec6f249443133d74222d48e0 to ↵android-build-team Robot2020-01-100-0/+0
| |\| | | | | | | | | | | | | | | | | | | | | | | | | | | | qt-qpr2-release Change-Id: I0a27ceac7adedd2342886ebc3efd6db7e1ddfa87
| | * | | Revert "Allow dumpstate to dumpsys gpu"Yiwei Zhang2020-01-101-4/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit 979f5a44bf57b6ec1217fdfeaca3bcc00b82910e. Reason for revert: b/147458874 Change-Id: Id8a9d7e50dbd3f293e01ab6277e9e54a8ed7619d
| | * | | Allow dumpstate to dumpsys gpuYiwei Zhang2020-01-091-0/+4
| | |/ / | | | | | | | | | | | | | | | | | | | | Bug: 132402890 Test: adb bugreport and verify dumpsys gpu is included. Change-Id: Ib145937889f9616a0dcdabb7b58839fb715bf6c3
| * | | Snap for 6066307 from 4c06707b5ebf8a273e96e8dfcd53843ec90cb5e6 to ↵android-build-team Robot2019-12-122-0/+2
| |\| | | | | | | | | | | | | | | | | | | | | | qt-qpr2-release Change-Id: Ic8b0b169bff0e5cfa7aac107a993e5ec1a77a6c1
| | * | Allow vendor_init to modify pm.dexopt.disable_bg_dexoptEric Jeong2019-12-062-0/+2
| | |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Android Auto has disabled background dexopt (b/142753051). - The modification is in car_base.mk which is included by vendor device file. - So, vendor_init needs to be able to modify pm.dexopt.disable_bg_dexopt property. Bug: 145348176 Test: Check pm.dexopt.disable_bg_dexopt is set to true in Android Auto device. Cherry-Picked-From: 03b1992d0bf363e438b0fd7efca1e2a1d7249320 Change-Id: I84d19ea62f1abe1bf9206a60ca103614616e312b
| * | Snap for 5977604 from d77fec47967b415672548354ebdc2191ecab60a3 to ↵android-build-team Robot2019-10-312-2/+2
| |\| | | | | | | | | | | | | | | | qt-qpr2-release Change-Id: I3e929988995d337c1c9ea0eff2962a52f2a24187
| | * Allow shell to unlink perfetto_traces_data_file.Florian Mayer2019-10-292-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Bug: 141704436 Test: blueline:/ $ ls -lZa /data/misc/perfetto-traces total 186 drwxrwx-wx 2 root shell u:object_r:perfetto_traces_data_file:s0 3488 2019-09-30 14:12 . drwxrwx--t 46 system misc u:object_r:system_data_file:s0 3488 2019-09-30 14:08 .. -rw------- 1 shell shell u:object_r:perfetto_traces_data_file:s0 180467 2019-09-30 14:12 profile-shell blueline:/ $ rm /data/misc/perfetto-traces/profile-shell rm ro /data/misc/perfetto-traces/profile-shell (y/N):y blueline:/ $ ls -lZa /data/misc/perfetto-traces total 6 drwxrwx-wx 2 root shell u:object_r:perfetto_traces_data_file:s0 3488 2019-09-30 14:13 . drwxrwx--t 46 system misc u:object_r:system_data_file:s0 3488 2019-09-30 14:08 .. blueline:/ $ Cherry pick of c069bc134e80f86d16d7305d67e9cf44ceffbc2b Change-Id: Ia710068c3cca53a415347fb0a7064740e500d15d Merged-In: Ia710068c3cca53a415347fb0a7064740e500d15d
| * | Snap for 5968679 from a235dde1cc5215433d8a1a074ac747a759dd4eef to ↵android-build-team Robot2019-10-260-0/+0
| |\| | | | | | | | | | | | | | | | qt-qpr2-release Change-Id: I4d0541371665dd777b050c478613dbc7ec0a7a8e
| | * Revert "Property contexts for ro.sanitize.*"Evgenii Stepanov2019-10-251-12/+0
| | | | | | | | | | | | | | | | | | | | | | | | This reverts commit df186a0a679cf95f8199f6ae3cda49c4a97317a0. Reason for revert: breaks sepolicy_freeze_test Change-Id: I3e91b590873f211863b15758b6903328e90ab869
| | * Property contexts for ro.sanitize.*Evgenii Stepanov2019-10-141-0/+12
| |/ | | | | | | | | | | | | | | | | | | Bug: 142430632 Bug: 142681453 Test: adb shell getprop ro.sanitize.hwaddress in hwasan build Change-Id: I8e0fa0e6c865d18b94ffbdb6a0dddb1817adb364 Merged-In: I8e0fa0e6c865d18b94ffbdb6a0dddb1817adb364 (cherry picked from commit bc9e5f710e75531756cdc5d859dc19c1566ed9ed)
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-02 19:14:04 +0000