aboutsummaryrefslogtreecommitdiffstats
path: root/app.te
Commit message (Expand)AuthorAgeFilesLines
* Rename keystore methods and delete unused permissionsChad Brubaker2015-05-181-1/+1
* Grant apps write access to returned vfat FDs.Jeff Sharkey2015-04-181-1/+2
* Revert "Exclude isolated_app from ptrace self."Nick Kralevich2015-04-101-1/+1
* isolated_app: Do not allow access to the gpu_device.Nick Kralevich2015-04-091-1/+1
* Allow system_server to collect app heapdumps (debug builds only)Nick Kralevich2015-04-071-0/+8
* Initial policy for expanded storage.Jeff Sharkey2015-04-061-0/+3
* Apps need more than just search.Jeff Sharkey2015-04-031-1/+1
* Consistent external storage policy.Jeff Sharkey2015-04-021-4/+4
* Allow apps to dump meminfo to serial_console.dcashman2015-04-011-0/+2
* Updated policy for external storage.Jeff Sharkey2015-03-301-1/+8
* extend app policy to fix wrapped processesDaniel Micay2015-03-171-0/+5
* Remove ability to read all /proc/pid/attr/current entries.Stephen Smalley2015-03-161-2/+0
* Move allow rules before neverallow rules.Stephen Smalley2015-03-131-10/+10
* move untrusted_app statement to the correct file.Nick Kralevich2015-03-051-5/+0
* update isolated_app service_manager rulesNick Kralevich2015-03-051-2/+2
* Revert /proc/net related changesNick Kralevich2015-02-251-1/+0
* Dumpstate runs the same from shell as service.Christopher Ferris2015-02-041-2/+3
* appdomain: relax netlink_socket neverallow ruleNick Kralevich2015-01-281-3/+2
* Revert "isolated_app: Do not allow access to the gpu_device."Nick Kralevich2015-01-201-1/+1
* remove /proc/net read access from domain.teNick Kralevich2015-01-141-0/+1
* Do not allow isolated_app to directly open app data files.Stephen Smalley2014-12-021-2/+2
* App: add permissions to read symlinks from dalvik cache.Jeff Hao2014-11-121-0/+1
* am 44cb98a7: Revert "Do not allow isolated_app to directly open app data files."Nick Kralevich2014-10-181-2/+2
|\
| * Revert "Do not allow isolated_app to directly open app data files."Nick Kralevich2014-10-171-2/+2
* | am e9623d8f: Exclude isolated_app from ptrace self.Stephen Smalley2014-10-171-1/+1
|\|
| * Exclude isolated_app from ptrace self.Stephen Smalley2014-10-161-1/+1
| * Fix compile time / CTS gps_data_files neverallow assertionNick Kralevich2014-10-161-1/+2
* | am 480374e4: Fix compile time / CTS gps_data_files neverallow assertionNick Kralevich2014-10-171-1/+2
|\ \
| * | Fix compile time / CTS gps_data_files neverallow assertionNick Kralevich2014-10-161-1/+2
* | | resolved conflicts for merge of 51bfecf4 to lmp-dev-plus-aospRobin Lee2014-10-151-0/+6
|\| | | |/ |/|
| * Pull keychain-data policy out of system-dataRobin Lee2014-10-151-0/+6
| * Merge "Allow NFC to read/write nfc. system properties." into lmp-devMartijn Coenen2014-09-261-2/+2
| |\
| | * Allow NFC to read/write nfc. system properties.Martijn Coenen2014-09-251-2/+2
| * | allow apps to read the contents of mounted OBBsNick Kralevich2014-09-241-0/+4
| * | relax appdomain efs_file neverallow rules [DO NOT MERGE]Nick Kralevich2014-09-231-2/+2
| * | relax neverallow rules on NETLINK_KOBJECT_UEVENT socketsNick Kralevich2014-09-221-1/+5
| |/
| * Enable selinux read_policy for adb pull.dcashman2014-09-091-2/+0
| * logd: permit app access to clear logsMark Salyzyn2014-09-011-0/+1
| * Merge "Add permissive domains check to sepolicy-analyze." into lmp-devdcashman2014-08-271-0/+2
| |\
| | * Add permissive domains check to sepolicy-analyze.dcashman2014-08-271-0/+2
| * | Allow appdomain read perms on apk_data_files.dcashman2014-08-271-0/+1
| |/
| * Fix neverallow rules to eliminate CTS SELinuxTest warnings.Stephen Smalley2014-07-301-1/+1
| * reconcile aosp (c103da877b72aae80616dbc192982aaf75dfe888) after branching. Pl...Ed Heyl2014-07-141-0/+3
| * reconcile aosp (4da3bb1481e4e894a7dee3f3b9ec8cef6f6b1aed) after branching. Pl...Ed Heyl2014-07-141-2/+2
* | Do not allow isolated_app to directly open app data files.Stephen Smalley2014-10-061-2/+2
* | Enable selinux read_policy for adb pull.dcashman2014-09-261-2/+0
* | Allow NFC to read/write nfc. system properties.Martijn Coenen2014-09-261-2/+2
* | allow apps to read the contents of mounted OBBsNick Kralevich2014-09-241-0/+4
* | relax appdomain efs_file neverallow rulesNick Kralevich2014-09-221-2/+2
* | relax neverallow rules on NETLINK_KOBJECT_UEVENT socketsNick Kralevich2014-09-211-1/+5
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-19 21:23:45 +0000