aboutsummaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* Update readme to reflect addition of SEPOLICY_IGNORE.dcashman2014-07-221-1/+1
* Remove auditallow statements causing log spam.Riley Spahn2014-07-012-2/+0
* Merge "Add imms service and system_app_service type."Nick Kralevich2014-07-013-0/+4
|\
| * Add imms service and system_app_service type.Riley Spahn2014-07-013-0/+4
* | Remove catchall for unregistered services.Riley Spahn2014-06-301-4/+0
|/
* Merge "Preemptively adding services for pending commits."Nick Kralevich2014-06-261-0/+9
|\
| * Preemptively adding services for pending commits.Riley Spahn2014-06-271-0/+9
* | Allow setopt on bluetooth's unix_stream_socket.Sérgio Faria2014-06-301-1/+1
* | isolated_app: allow app_data_file executeNick Kralevich2014-06-271-0/+6
|/
* Merge "Adding policies for KeyStore MAC."Nick Kralevich2014-06-2610-2/+136
|\
| * Adding policies for KeyStore MAC.Riley Spahn2014-06-2610-2/+136
* | Merge "Add missing services to service_contexts."Nick Kralevich2014-06-262-0/+8
|\ \
| * | Add missing services to service_contexts.Riley Spahn2014-06-262-0/+8
* | | dumpstate: transition into vdc domainNick Kralevich2014-06-252-2/+15
| |/ |/|
* | Allow system_server to read all /proc filesNick Kralevich2014-06-251-9/+4
|/
* Allow kernel sdcard read access as well for MTP sync.Stephen Smalley2014-06-241-1/+1
* Allow kernel sdcard access for MTP sync.Stephen Smalley2014-06-241-0/+3
* Merge "Give healthd permission to write sys properties to allow quick boot fr...Riley Andrews2014-06-201-1/+5
|\
| * Give healthd permission to write sys properties to allow quick boot from char...Riley Andrews2014-06-231-1/+5
* | Align SELinux property policy with init property_perms.Stephen Smalley2014-06-2311-18/+37
* | unconfined: remove internet accessNick Kralevich2014-06-232-4/+21
* | Remove execmod access to system_file and exec_type.Stephen Smalley2014-06-231-2/+2
* | Merge "Create vdc domain"Nick Kralevich2014-06-232-0/+11
|\ \
| * | Create vdc domainNick Kralevich2014-06-212-0/+11
* | | Merge "Allow init to relabel rootfs files."Nick Kralevich2014-06-232-1/+4
|\ \ \
| * | | Allow init to relabel rootfs files.Stephen Smalley2014-06-232-1/+4
| |/ /
* / / Allow dumpsys from serial consoleNick Kralevich2014-06-211-1/+2
|/ /
* | Merge "Only allow app domains to access SDcard via fuse mount."Nick Kralevich2014-06-201-3/+3
|\ \
| * | Only allow app domains to access SDcard via fuse mount.Stephen Smalley2014-06-201-3/+3
| |/
* | Remove sdcard_type access from unconfineddomain.Stephen Smalley2014-06-201-1/+2
* | Remove app_data_file access from unconfineddomain.Stephen Smalley2014-06-201-0/+2
|/
* Remove write access to rootfs files.Stephen Smalley2014-06-192-0/+4
* Remove execute_no_trans from unconfineddomain.Stephen Smalley2014-06-195-5/+35
* Address recovery denials.Stephen Smalley2014-06-191-2/+9
* Allow Bluetooth app to initiate DHCP service on bt-pan interface.Paul Jensen2014-06-195-0/+8
* system_server: allow open /dev/snd and read filesNick Kralevich2014-06-181-0/+2
* Prevent adding transitions to kernel or init domains.Stephen Smalley2014-06-183-1/+35
* Allow mounting of usbfs.Stephen Smalley2014-06-181-0/+3
* Merge "Remove clatd's dac_override abilities."Lorenzo Colitti2014-06-171-3/+0
|\
| * Remove clatd's dac_override abilities.Lorenzo Colitti2014-06-131-3/+0
* | Merge "entrypoint should always be explicitly allowed."Nick Kralevich2014-06-171-4/+7
|\ \
| * | entrypoint should always be explicitly allowed.Stephen Smalley2014-06-171-4/+7
* | | Eliminate some duplicated rules.Stephen Smalley2014-06-176-22/+2
|/ /
* | Refine sepolicy-analyze -D / dup detection.Stephen Smalley2014-06-171-4/+25
* | Force logwrapper to system_fileNick Kralevich2014-06-171-0/+1
* | Merge "Add missing services to service_contexts."Nick Kralevich2014-06-171-0/+5
|\ \
| * | Add missing services to service_contexts.Riley Spahn2014-06-171-0/+5
* | | Merge "Fix SELinux policies to allow resource overlays."Nick Kralevich2014-06-176-0/+18
|\ \ \
| * | | Fix SELinux policies to allow resource overlays.Nick Kralevich2014-06-166-0/+18
* | | | Restrict use of context= mount options.Stephen Smalley2014-06-164-6/+34
|/ / /
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-30 20:58:10 +0000