Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 582620ae4c9f6216dcdfd6c6ca67fb94992d94c6
  1. 582620a am c2eb12b2: am 9f0af9ec: Merge "zygote/dex2oat: Grant additional symlink permissions" into lmp-sprout-dev by Jeff Hao · 10 years ago
  2. f83e617 am 4008b6c6: am b7934922: allow run-as to access /data/local/tmp by Nick Kralevich · 10 years ago
  3. 330dd6e am 0edbecf2: am 7cd346a7: am 0055ea90: Allow recovery to create device nodes and modify rootfs by Nick Kralevich · 10 years ago
  4. aa03e49 am e2ba13b9: am 7adc8cfe: Allow adbd to write to /data/adb by Nick Kralevich · 10 years ago
  5. c2eb12b am 9f0af9ec: Merge "zygote/dex2oat: Grant additional symlink permissions" into lmp-sprout-dev by Jeff Hao · 10 years ago
  6. 4008b6c am b7934922: allow run-as to access /data/local/tmp by Nick Kralevich · 10 years ago
  7. 0edbecf am 7cd346a7: am 0055ea90: Allow recovery to create device nodes and modify rootfs by Nick Kralevich · 10 years ago
  8. e2ba13b am 7adc8cfe: Allow adbd to write to /data/adb by Nick Kralevich · 10 years ago
  9. f82f5e0 Accept command-line input for neverallow-check. by dcashman · 11 years ago
  10. 87f3802 appdomain: relax netlink_socket neverallow rule by Nick Kralevich · 11 years ago
  11. c423b1a Add neverallow checking to sepolicy-analyze. by Stephen Smalley · 11 years ago
  12. 6f201dd App: add permissions to read symlinks from dalvik cache. by Jeff Hao · 11 years ago
  13. 9f0af9e Merge "zygote/dex2oat: Grant additional symlink permissions" into lmp-sprout-dev by Jeff Hao · 11 years ago
  14. 3df1227 zygote/dex2oat: Grant additional symlink permissions by Igor Murashkin · 11 years ago
  15. b793492 allow run-as to access /data/local/tmp by Nick Kralevich · 11 years ago
  16. 7cd346a am 0055ea90: Allow recovery to create device nodes and modify rootfs by Nick Kralevich · 11 years ago
  17. 0055ea9 Allow recovery to create device nodes and modify rootfs by Nick Kralevich · 11 years ago
  18. 7adc8cf Allow adbd to write to /data/adb by Nick Kralevich · 11 years ago
  19. 2d1650f allow system_server to set kernel scheduling priority by Nick Kralevich · 11 years ago
  20. 683ac49 recovery: allow changing unlabeled symbolic links by Nick Kralevich · 11 years ago
  21. 2c38b3b DO NOT MERGE: allow access to labeled executables in /system by Nick Kralevich · 11 years ago
  22. 480374e Fix compile time / CTS gps_data_files neverallow assertion by Nick Kralevich · 11 years ago
  23. 51bfecf Pull keychain-data policy out of system-data by Robin Lee · 11 years ago
  24. ebfd9f8 allow oemfs:dir search by Nick Kralevich · 11 years ago
  25. 2380d05 allow system_server oemfs read access by Nick Kralevich · 11 years ago
  26. 0a52df5 Give bootanimation access to /dev/snd files so it can use tinyalsa by Mike Lockwood · 11 years ago
  27. f2c0118 zygote: allow replacing /proc/cpuinfo by Nick Kralevich · 11 years ago
  28. 49fd956 Merge "Allow NFC to read/write nfc. system properties." into lmp-dev by Martijn Coenen · 11 years ago
  29. 05383eb Allow NFC to read/write nfc. system properties. by Martijn Coenen · 11 years ago
  30. 6208341 allow apps to read the contents of mounted OBBs by Nick Kralevich · 11 years ago
  31. a8b651b relax appdomain efs_file neverallow rules [DO NOT MERGE] by Nick Kralevich · 11 years ago
  32. b4fcaee sepolicy for oem cutomization by Vineeta Srivastava · 11 years ago
  33. 36fb1f1 relax neverallow rules on NETLINK_KOBJECT_UEVENT sockets by Nick Kralevich · 11 years ago
  34. 1619b73 Generate selinux_policy.xml as part of CTS build. by dcashman · 11 years ago
  35. 0a20b57 Added sepolicy for oem customization. by Vineeta Srivastava · 11 years ago
  36. 313e405 Merge "Allow dumpstate to read /system/bin executables." into lmp-dev by Christopher Ferris · 11 years ago
  37. 04f3d79 Allow dumpstate to read /system/bin executables. by Christopher Ferris · 11 years ago
  38. 69cdca9 Renaming Telecomm to Telecom. by Tyler Gunn · 11 years ago
  39. 0406189 Merge "Enable selinux read_policy for adb pull." into lmp-dev by dcashman · 11 years ago
  40. 309cc66 Enable selinux read_policy for adb pull. by dcashman · 11 years ago
  41. b0a9951 Allow kernel thread to read app data files by Nick Kralevich · 11 years ago
  42. 47bd730 Add support for factory reset protection. by dcashman · 11 years ago
  43. abfd427 sdcardd: grant unmount by Nick Kralevich · 11 years ago
  44. bcdff89 logd: permit app access to clear logs by Mark Salyzyn · 11 years ago
  45. de08be8 Allow system reset_uid, sync_uid, password_uid by Robin Lee · 11 years ago
  46. 372d0df Remove system_server create access from /data/dalvik-cache by Brian Carlstrom · 11 years ago
  47. 67d58ac Merge "Add permissive domains check to sepolicy-analyze." into lmp-dev by dcashman · 11 years ago
  48. c30dd63 Add permissive domains check to sepolicy-analyze. by dcashman · 11 years ago
  49. 28b26bc support kernel writes to external SDcards by Nick Kralevich · 11 years ago
  50. 711895d Allow appdomain read perms on apk_data_files. by dcashman · 11 years ago
  51. 85f255b DO NOT MERGE. Allow debuggerd read access to shared_relro files. by dcashman · 11 years ago
  52. 9a725b2 Allow init to restorecon sysfs files. by Stephen Smalley · 11 years ago
  53. 4ddc6eb Merge "DO NOT MERGE. Allow untrusted_app access to temporary apk files." into lmp-dev by dcashman · 11 years ago
  54. 1c1eb86 DO NOT MERGE. Allow untrusted_app access to temporary apk files. by dcashman · 11 years ago
  55. feedd3c Make system use patchoat to relocate during runtime. by Alex Light · 11 years ago
  56. d990a78 Fix neverallow rules to eliminate CTS SELinuxTest warnings. by Stephen Smalley · 11 years ago
  57. 770910b Implement broker pattern for imms (3/3) by Ye Wen · 11 years ago
  58. 997461b Allow system_server to talk to netlink directly. by Sreeram Ramachandran · 11 years ago
  59. fab00f7 Add rttmanager in sepolicy's whitelist by Vinit Deshpande · 11 years ago
  60. aa8e657 Revert "fix system_server dex2oat exec" by Narayan Kamath · 11 years ago
  61. 792d865 Allow sdcardd to read /data/.layout_version by Nick Kralevich · 11 years ago
  62. 12b8f79 Allow dumpstate to read /data/tombstones. by Christopher Ferris · 11 years ago
  63. af4a3db Merge "DO NOT MERGE. Update readme to reflect addition of SEPOLICY_IGNORE." into lmp-dev by dcashman · 11 years ago
  64. ea44c79 DO NOT MERGE. Update readme to reflect addition of SEPOLICY_IGNORE. by dcashman · 11 years ago
  65. 9f49e9f Merge "Move MmsService into phone process (2/2)" into lmp-dev by Ye Wen · 11 years ago
  66. eb8d86c Move MmsService into phone process (2/2) by Ye Wen · 11 years ago
  67. 9d2703a Prohibit execute to fs_type other than rootfs for most domains. by Stephen Smalley · 11 years ago
  68. 3cfc7ea sepolicy: allow charger to read /sys/fs/pstore/console-ramoops by Colin Cross · 11 years ago
  69. bf69632 DO NOT MERGE: Remove service_manager audit_allows. by Riley Spahn · 11 years ago
  70. 4a24475 Further refined service_manager auditallow statements. by Riley Spahn · 11 years ago
  71. 14aa7c0 Refine service_manager find auditallow statements. by Riley Spahn · 11 years ago
  72. ac47ee2 Add com.android.net.IProxyService to service_contexts. by Riley Spahn · 11 years ago
  73. 57f1b89 lmkd: avoid locking libsigchain into memory by Nick Kralevich · 11 years ago
  74. 08ac124 Merge "Add MediaProjectionManagerService to service list DO NOT MERGE" into lmp-dev by Michael Wright · 11 years ago
  75. 0ccfd5d Add MediaProjectionManagerService to service list DO NOT MERGE by Michael Wright · 11 years ago
  76. e4aa75d dex2oat: fix forward-locked upgrades with unlabeled asecs by Nick Kralevich · 11 years ago
  77. 555c3c5 lmkd: allow lmkd to lock itself in memory by Nick Kralevich · 11 years ago
  78. 64940d8 Add "webviewupdate" system server service. by Torne (Richard Coles) · 11 years ago
  79. 94b2ba9 dex2oat: fix forward locked apps by Nick Kralevich · 11 years ago
  80. d263576 Remove auditallow from system_server. by Riley Spahn · 11 years ago
  81. 354d6ca Remove radio_service from untrusted_app auditallow. by Riley Spahn · 11 years ago
  82. 2203fda lmkd: allow removing cgroups and setting self to SCHED_FIFO by Colin Cross · 11 years ago
  83. caf347b Tweak rules for su domain. by Nick Kralevich · 11 years ago
  84. 344fc10 Add access control for each service_manager action. by Riley Spahn · 11 years ago
  85. 10370f5 fix system_server dex2oat exec by Nick Kralevich · 11 years ago
  86. 8ee37b4 reconcile aosp (c103da877b72aae80616dbc192982aaf75dfe888) after branching. Please do not merge. by Ed Heyl · 11 years ago
  87. 81839df reconcile aosp (3a8c5dc05fb7696dd81b8a7c1b2524224154e8ea) after branching. Please do not merge. by Ed Heyl · 11 years ago
  88. 7563a6f reconcile aosp (a7c04dcd748e1a9daf374551303a3bd578305cf9) after branching. Please do not merge. by Ed Heyl · 11 years ago
  89. e9c90bd reconcile aosp (4da3bb1481e4e894a7dee3f3b9ec8cef6f6b1aed) after branching. Please do not merge. by Ed Heyl · 11 years ago
  90. 2aa727e DO NOT MERGE: Flip FORCE_PERMISSIVE_TO_UNCONFINED to true by Nick Kralevich · 11 years ago
  91. 0ff90f1 am 2f91ce55: am e4409728: am 65edb75d: Allow netd to create data files in /data/misc/net/. by Sreeram Ramachandran · 11 years ago
  92. deb52ba am 1c7463ac: am d27aeb21: am e9d97b74: recovery: allow read access to fuse filesystem by Nick Kralevich · 11 years ago
  93. 69aaf4a am ddfaf822: am d86b0a81: am 9f6af083: New domain "install_recovery" by Nick Kralevich · 11 years ago
  94. 611922e am 554a8a3d: am e900e573: am 77e85289: Merge "Rules to allow installing package directories." by Jeff Sharkey · 11 years ago
  95. 2f91ce5 am e4409728: am 65edb75d: Allow netd to create data files in /data/misc/net/. by Sreeram Ramachandran · 11 years ago
  96. 1c7463a am d27aeb21: am e9d97b74: recovery: allow read access to fuse filesystem by Nick Kralevich · 11 years ago
  97. ddfaf82 am d86b0a81: am 9f6af083: New domain "install_recovery" by Nick Kralevich · 11 years ago
  98. 554a8a3 am e900e573: am 77e85289: Merge "Rules to allow installing package directories." by Jeff Sharkey · 11 years ago
  99. 9f88bc5 support newer-style adbd interface in recovery by Doug Zongker · 11 years ago
  100. a50467c am a2933b66: am 2b3c5de2: Merge "install_recovery: start enforcing SELinux rules" by Nick Kralevich · 11 years ago