index
:
android_external_sepolicy
caf/cm-12.0
caf/cm-12.1
cm-10.1
cm-10.2
cm-11.0
cm-12.0
cm-12.1
cm-13.0
jellybean
jellybean-stable
mr1.1-staging
shipping/cm-11.0
stable/cm-10.2
stable/cm-11.0
stable/cm-11.0-XNF8Y
stable/cm-11.0-XNF9X
stable/cm-11.0-XNG2S
stable/cm-11.0-XNG3C
stable/cm-12.0-YNG1I
stable/cm-12.0-YNG1T
stable/cm-12.0-YNG1TA
stable/cm-12.0-YNG3C
stable/cm-12.0-YNG4N
stable/cm-12.1-YOG3C
stable/cm-12.1-YOG4P
stable/cm-12.1-YOG7D
stable/cm-13.0-ZNH0E
stable/cm-13.0-ZNH2K
stable/cm-13.0-ZNH2KB
stable/cm-13.0-ZNH5Y
staging/cm-12.0-caf
staging/cm-12.1
staging/cm-13.0+r22
Unnamed repository; edit this file 'description' to name the repository.
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
app.te
Commit message (
Expand
)
Author
Age
Files
Lines
*
Rename keystore methods and delete unused permissions
Chad Brubaker
2015-05-18
1
-1
/
+1
*
Grant apps write access to returned vfat FDs.
Jeff Sharkey
2015-04-18
1
-1
/
+2
*
Revert "Exclude isolated_app from ptrace self."
Nick Kralevich
2015-04-10
1
-1
/
+1
*
isolated_app: Do not allow access to the gpu_device.
Nick Kralevich
2015-04-09
1
-1
/
+1
*
Allow system_server to collect app heapdumps (debug builds only)
Nick Kralevich
2015-04-07
1
-0
/
+8
*
Initial policy for expanded storage.
Jeff Sharkey
2015-04-06
1
-0
/
+3
*
Apps need more than just search.
Jeff Sharkey
2015-04-03
1
-1
/
+1
*
Consistent external storage policy.
Jeff Sharkey
2015-04-02
1
-4
/
+4
*
Allow apps to dump meminfo to serial_console.
dcashman
2015-04-01
1
-0
/
+2
*
Updated policy for external storage.
Jeff Sharkey
2015-03-30
1
-1
/
+8
*
extend app policy to fix wrapped processes
Daniel Micay
2015-03-17
1
-0
/
+5
*
Remove ability to read all /proc/pid/attr/current entries.
Stephen Smalley
2015-03-16
1
-2
/
+0
*
Move allow rules before neverallow rules.
Stephen Smalley
2015-03-13
1
-10
/
+10
*
move untrusted_app statement to the correct file.
Nick Kralevich
2015-03-05
1
-5
/
+0
*
update isolated_app service_manager rules
Nick Kralevich
2015-03-05
1
-2
/
+2
*
Revert /proc/net related changes
Nick Kralevich
2015-02-25
1
-1
/
+0
*
Dumpstate runs the same from shell as service.
Christopher Ferris
2015-02-04
1
-2
/
+3
*
appdomain: relax netlink_socket neverallow rule
Nick Kralevich
2015-01-28
1
-3
/
+2
*
Revert "isolated_app: Do not allow access to the gpu_device."
Nick Kralevich
2015-01-20
1
-1
/
+1
*
remove /proc/net read access from domain.te
Nick Kralevich
2015-01-14
1
-0
/
+1
*
Do not allow isolated_app to directly open app data files.
Stephen Smalley
2014-12-02
1
-2
/
+2
*
App: add permissions to read symlinks from dalvik cache.
Jeff Hao
2014-11-12
1
-0
/
+1
*
am 44cb98a7: Revert "Do not allow isolated_app to directly open app data files."
Nick Kralevich
2014-10-18
1
-2
/
+2
|
\
|
*
Revert "Do not allow isolated_app to directly open app data files."
Nick Kralevich
2014-10-17
1
-2
/
+2
*
|
am e9623d8f: Exclude isolated_app from ptrace self.
Stephen Smalley
2014-10-17
1
-1
/
+1
|
\
|
|
*
Exclude isolated_app from ptrace self.
Stephen Smalley
2014-10-16
1
-1
/
+1
|
*
Fix compile time / CTS gps_data_files neverallow assertion
Nick Kralevich
2014-10-16
1
-1
/
+2
*
|
am 480374e4: Fix compile time / CTS gps_data_files neverallow assertion
Nick Kralevich
2014-10-17
1
-1
/
+2
|
\
\
|
*
|
Fix compile time / CTS gps_data_files neverallow assertion
Nick Kralevich
2014-10-16
1
-1
/
+2
*
|
|
resolved conflicts for merge of 51bfecf4 to lmp-dev-plus-aosp
Robin Lee
2014-10-15
1
-0
/
+6
|
\
|
|
|
|
/
|
/
|
|
*
Pull keychain-data policy out of system-data
Robin Lee
2014-10-15
1
-0
/
+6
|
*
Merge "Allow NFC to read/write nfc. system properties." into lmp-dev
Martijn Coenen
2014-09-26
1
-2
/
+2
|
|
\
|
|
*
Allow NFC to read/write nfc. system properties.
Martijn Coenen
2014-09-25
1
-2
/
+2
|
*
|
allow apps to read the contents of mounted OBBs
Nick Kralevich
2014-09-24
1
-0
/
+4
|
*
|
relax appdomain efs_file neverallow rules [DO NOT MERGE]
Nick Kralevich
2014-09-23
1
-2
/
+2
|
*
|
relax neverallow rules on NETLINK_KOBJECT_UEVENT sockets
Nick Kralevich
2014-09-22
1
-1
/
+5
|
|
/
|
*
Enable selinux read_policy for adb pull.
dcashman
2014-09-09
1
-2
/
+0
|
*
logd: permit app access to clear logs
Mark Salyzyn
2014-09-01
1
-0
/
+1
|
*
Merge "Add permissive domains check to sepolicy-analyze." into lmp-dev
dcashman
2014-08-27
1
-0
/
+2
|
|
\
|
|
*
Add permissive domains check to sepolicy-analyze.
dcashman
2014-08-27
1
-0
/
+2
|
*
|
Allow appdomain read perms on apk_data_files.
dcashman
2014-08-27
1
-0
/
+1
|
|
/
|
*
Fix neverallow rules to eliminate CTS SELinuxTest warnings.
Stephen Smalley
2014-07-30
1
-1
/
+1
|
*
reconcile aosp (c103da877b72aae80616dbc192982aaf75dfe888) after branching. Pl...
Ed Heyl
2014-07-14
1
-0
/
+3
|
*
reconcile aosp (4da3bb1481e4e894a7dee3f3b9ec8cef6f6b1aed) after branching. Pl...
Ed Heyl
2014-07-14
1
-2
/
+2
*
|
Do not allow isolated_app to directly open app data files.
Stephen Smalley
2014-10-06
1
-2
/
+2
*
|
Enable selinux read_policy for adb pull.
dcashman
2014-09-26
1
-2
/
+0
*
|
Allow NFC to read/write nfc. system properties.
Martijn Coenen
2014-09-26
1
-2
/
+2
*
|
allow apps to read the contents of mounted OBBs
Nick Kralevich
2014-09-24
1
-0
/
+4
*
|
relax appdomain efs_file neverallow rules
Nick Kralevich
2014-09-22
1
-2
/
+2
*
|
relax neverallow rules on NETLINK_KOBJECT_UEVENT sockets
Nick Kralevich
2014-09-21
1
-1
/
+5
[next]