index
:
external/sepolicy.git
brillo-m10-dev
brillo-m10-release
brillo-m7-dev
brillo-m7-mr-dev
brillo-m7-release
brillo-m8-dev
brillo-m8-release
brillo-m9-dev
brillo-m9-release
ics-plus-aosp
idea133
idea133-weekly-release
jb-dev
jb-mr0-release
jb-mr1-dev
jb-mr1-dev-plus-aosp
jb-mr1-release
jb-mr1.1-cts-dev
jb-mr1.1-dev
jb-mr1.1-dev-plus-aosp
jb-mr1.1-release
jb-mr2-cts-dev
jb-mr2-dev
jb-mr2-release
jb-mr2.0-release
jb-mr2.0.0-release
jb-release
kitkat-cts-dev
kitkat-cts-release
kitkat-dev
kitkat-mr1-release
kitkat-mr1.1-release
kitkat-mr2-release
kitkat-mr2.1-release
kitkat-mr2.2-release
kitkat-release
kitkat-wear
l-preview
linaro-armv8-14.08
linaro-armv8-14.09
linaro-armv8-master
linaro-lollipop
linaro-marshmallow
lollipop-cts-dev
lollipop-cts-release
lollipop-dev
lollipop-mr1-cts-dev
lollipop-mr1-cts-release
lollipop-mr1-dev
lollipop-mr1-fi-release
lollipop-mr1-release
lollipop-mr1-wfc-release
lollipop-release
lollipop-wear-release
main
marshmallow-cts-dev
marshmallow-cts-release
marshmallow-dev
marshmallow-dr-dev
marshmallow-dr-dragon-release
marshmallow-dr-release
marshmallow-dr1.5-dev
marshmallow-dr1.5-release
marshmallow-dr1.6-release
marshmallow-mr1-dev
marshmallow-mr1-release
marshmallow-mr2-release
marshmallow-mr3-release
marshmallow-release
master
master-soong
n-preview-1
selinux-hacks-lava
tools_r20
tools_r21
tools_r22
tools_r22.2
about
summary
refs
log
tree
commit
diff
log msg
author
committer
range
Age
Commit message (
Expand
)
Author
2014-10-17
Revert "Do not allow isolated_app to directly open app data files."
android-l-preview_r2
l-preview
Nick Kralevich
2014-10-16
Exclude isolated_app from ptrace self.
Stephen Smalley
2014-10-16
Fix compile time / CTS gps_data_files neverallow assertion
Nick Kralevich
2014-10-16
logd: Add klogd
Mark Salyzyn
2014-10-14
maybe fix mac build.
Nick Kralevich
2014-10-14
Merge "Add neverallow checking to sepolicy-analyze."
Daniel Cashman
2014-10-14
fix whitespace
Nick Kralevich
2014-10-14
Add neverallow checking to sepolicy-analyze.
Stephen Smalley
2014-10-06
Do not allow isolated_app to directly open app data files.
Stephen Smalley
2014-10-03
Remove net_domain() from isolated_app.
Stephen Smalley
2014-10-02
Merge "isolated_app: remove app_data_file execute"
Nick Kralevich
2014-10-02
Define specific block device types for system and recovery partitions.
Stephen Smalley
2014-10-01
isolated_app: remove app_data_file execute
Nick Kralevich
2014-09-30
Merge "Mark asec_apk_file as mlstrustedobject."
Nick Kralevich
2014-09-30
Fix fsck-related denials with encrypted userdata.
Stephen Smalley
2014-09-30
Mark asec_apk_file as mlstrustedobject.
Stephen Smalley
2014-09-29
seinfo for platform based domains should be stated explicitly.
William Roberts
2014-09-28
Do not allow init to execute anything without changing domains.
Stephen Smalley
2014-09-27
Dependencies for new goldfish service domains.
Stephen Smalley
2014-09-26
Enable selinux read_policy for adb pull.
dcashman
2014-09-26
Allow NFC to read/write nfc. system properties.
Martijn Coenen
2014-09-26
zygote: allow replacing /proc/cpuinfo
Nick Kralevich
2014-09-24
allow apps to read the contents of mounted OBBs
Nick Kralevich
2014-09-23
Merge "Enable per-user isolation for normal apps."
Nick Kralevich
2014-09-22
make su an mlstrustedsubject
Nick Kralevich
2014-09-23
Enable per-user isolation for normal apps.
Stephen Smalley
2014-09-22
relax appdomain efs_file neverallow rules
Nick Kralevich
2014-09-21
relax neverallow rules on NETLINK_KOBJECT_UEVENT sockets
Nick Kralevich
2014-09-19
Define types for userdata and cache block devices.
Stephen Smalley
2014-09-19
Add support for factory reset protection.
dcashman
2014-09-20
Merge "Add isOwner= input selector for seapp_contexts."
Nick Kralevich
2014-09-20
Merge "More MLS trusted subject/object annotations."
Nick Kralevich
2014-09-18
Remove /dev/log/* access
Nick Kralevich
2014-09-15
Add isOwner= input selector for seapp_contexts.
Stephen Smalley
2014-09-15
More MLS trusted subject/object annotations.
Stephen Smalley
2014-09-13
Allow dumpstate to read /system/bin executables.
Christopher Ferris
2014-09-11
Allow appdomain read perms on apk_data_files.
dcashman
2014-09-11
isolated_app: Do not allow access to the gpu_device.
Robert Sesek
2014-09-11
Allow system reset_uid, sync_uid, password_uid
Robin Lee
2014-09-08
Annotate MLS trusted subjects and objects.
Stephen Smalley
2014-09-04
sdcardd: grant unmount
Nick Kralevich
2014-09-02
Prohibit reading of untrusted symlinks via neverallow.
Stephen Smalley
2014-09-01
logd: permit app access to clear logs
Mark Salyzyn
2014-08-28
Remove system_server create access from /data/dalvik-cache
Brian Carlstrom
2014-08-27
support kernel writes to external SDcards
Nick Kralevich
2014-08-25
remove appdomain's ability to examine all of /proc
Nick Kralevich
2014-08-25
Merge "assert that no domain can set default properties"
Nick Kralevich
2014-08-22
assert that no domain can set default properties
Nick Kralevich
2014-08-22
Merge "Add permissive domains check to sepolicy-analyze."
dcashman
2014-08-22
Add permissive domains check to sepolicy-analyze.
dcashman
[next]