index
:
android_external_sepolicy
caf/cm-12.0
caf/cm-12.1
cm-10.1
cm-10.2
cm-11.0
cm-12.0
cm-12.1
cm-13.0
jellybean
jellybean-stable
mr1.1-staging
shipping/cm-11.0
stable/cm-10.2
stable/cm-11.0
stable/cm-11.0-XNF8Y
stable/cm-11.0-XNF9X
stable/cm-11.0-XNG2S
stable/cm-11.0-XNG3C
stable/cm-12.0-YNG1I
stable/cm-12.0-YNG1T
stable/cm-12.0-YNG1TA
stable/cm-12.0-YNG3C
stable/cm-12.0-YNG4N
stable/cm-12.1-YOG3C
stable/cm-12.1-YOG4P
stable/cm-12.1-YOG7D
stable/cm-13.0-ZNH0E
stable/cm-13.0-ZNH2K
stable/cm-13.0-ZNH2KB
stable/cm-13.0-ZNH5Y
staging/cm-12.0-caf
staging/cm-12.1
staging/cm-13.0+r22
Unnamed repository; edit this file 'description' to name the repository.
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
init.te
Commit message (
Expand
)
Author
Age
Files
Lines
*
init.te: Don't allow mounting on top of /proc
Nick Kralevich
2015-04-25
1
-2
/
+0
*
Revert "Revert "SELinux policy changes for re-execing init.""
Elliott Hughes
2015-04-24
1
-6
/
+23
*
Revert "SELinux policy changes for re-execing init."
Nick Kralevich
2015-04-24
1
-23
/
+6
*
SELinux policy changes for re-execing init.
Elliott Hughes
2015-04-23
1
-6
/
+23
*
Directory for vold to store private data.
Jeff Sharkey
2015-04-01
1
-4
/
+9
*
Adding e4crypt support
Paul Lawrence
2015-03-27
1
-0
/
+12
*
Allow init to set up dm-verity
Sami Tolvanen
2015-03-05
1
-0
/
+12
*
init: drop read_policy permission
Nick Kralevich
2015-02-28
1
-3
/
+0
*
init: remove permissive_or_unconfined()
Stephen Smalley
2015-02-27
1
-1
/
+0
*
allow init tmpfs:dir relabelfrom
Nick Kralevich
2015-02-27
1
-0
/
+3
*
Allow init to execute /sbin/slideshow
Sami Tolvanen
2015-02-26
1
-0
/
+1
*
Revert /proc/net related changes
Nick Kralevich
2015-02-25
1
-2
/
+1
*
bootchart: add policy rules for bootchart
Yongqin Liu
2015-02-24
1
-1
/
+6
*
allow init fs_type:dir search
Nick Kralevich
2015-02-08
1
-1
/
+2
*
No one needs LD_PRELOAD from init any more.
Elliott Hughes
2015-02-06
1
-6
/
+0
*
remove /proc/net read access from domain.te
Nick Kralevich
2015-01-14
1
-1
/
+2
*
init.te: remove unactionable auditallow statements
Nick Kralevich
2015-01-05
1
-2
/
+0
*
init: allow rootfs symlink removal
Nick Kralevich
2014-12-23
1
-2
/
+2
*
Allow init to chown/chmod character devices.
Stephen Smalley
2014-11-10
1
-1
/
+1
*
Allow init to restorecon /data directories on upgrades.
Stephen Smalley
2014-10-30
1
-1
/
+1
*
Switch kernel and init to permissive_or_unconfined().
Stephen Smalley
2014-10-29
1
-7
/
+107
*
Remove -unconfineddomain from neverallow rules.
Stephen Smalley
2014-10-21
1
-0
/
+18
*
allow init swapon()
Nick Kralevich
2014-10-20
1
-0
/
+4
*
Do not allow init to execute anything without changing domains.
Stephen Smalley
2014-09-28
1
-8
/
+5
*
Prohibit reading of untrusted symlinks via neverallow.
Stephen Smalley
2014-09-02
1
-0
/
+4
*
Allow init to restorecon sysfs files.
Stephen Smalley
2014-07-17
1
-0
/
+1
*
lmkd: avoid locking libsigchain into memory
Nick Kralevich
2014-07-17
1
-2
/
+2
*
Remove domain:process from unconfined
Nick Kralevich
2014-07-10
1
-6
/
+21
*
Align SELinux property policy with init property_perms.
Stephen Smalley
2014-06-23
1
-0
/
+3
*
unconfined: remove internet access
Nick Kralevich
2014-06-23
1
-0
/
+3
*
Allow init to relabel rootfs files.
Stephen Smalley
2014-06-23
1
-0
/
+3
*
Remove execute_no_trans from unconfineddomain.
Stephen Smalley
2014-06-19
1
-0
/
+6
*
Prevent adding transitions to kernel or init domains.
Stephen Smalley
2014-06-18
1
-0
/
+10
*
Restrict use of context= mount options.
Stephen Smalley
2014-06-16
1
-2
/
+11
*
remove shell_data_file from unconfined.
Nick Kralevich
2014-06-07
1
-0
/
+4
*
Restrict /data/security and setprop selinux.reload_policy access.
Stephen Smalley
2014-05-30
1
-0
/
+7
*
Explictly allow init and kernel unlabeled access.
Stephen Smalley
2014-05-30
1
-0
/
+4
*
Clean up kernel, init, and recovery domains.
Stephen Smalley
2014-05-29
1
-3
/
+16
*
Remove /system write from unconfined
Nick Kralevich
2014-05-29
1
-1
/
+2
*
Protect /data/property.
Stephen Smalley
2014-05-29
1
-0
/
+4
*
remove syslog_* from unconfined
Nick Kralevich
2014-05-28
1
-0
/
+1
*
Restrict requesting contexts other than policy-defined defaults.
Stephen Smalley
2014-05-23
1
-0
/
+6
*
Drop relabelto_domain() macro and its associated definitions.
Stephen Smalley
2014-05-09
1
-1
/
+0
*
Protect keystore's files.
Nick Kralevich
2014-05-09
1
-0
/
+5
*
Remove block device access from unconfined domains.
Stephen Smalley
2014-02-12
1
-0
/
+1
*
Remove several superuser capabilities from unconfined domains.
Stephen Smalley
2014-02-12
1
-0
/
+2
*
Remove mount-related permissions from unconfined domains.
Stephen Smalley
2014-02-11
1
-0
/
+1
*
Remove transition / dyntransition from unconfined
Nick Kralevich
2014-01-27
1
-0
/
+8
*
Allow kernel domain, not init domain, to set SELinux enforcing mode.
Stephen Smalley
2013-12-06
1
-1
/
+1
*
Revert "Allow kernel domain, not init domain, to set SELinux enforcing mode."
Nick Kralevich
2013-12-06
1
-1
/
+0
[next]