Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 6922dfe3661ca7c4043f6ef9c6c61fdb9c7fa89a / private / genfs_contexts
  1. 87ed5e8 Explicitly label logd's dependencies in /proc. by Tri Vo · 8 years ago
  2. 4de505b allow init to run mke2fs tools to format partitions by Jin Qian · 8 years ago
  3. 27c0aa7 Move file labeling to genfs_contexts. by Joel Galenson · 8 years ago
  4. 97b955d Allow only system_server to read uid_time_in_state by Andres Oportus · 8 years ago
  5. d363b0f enabled /sbin/modprobe for recovery mode by Jaesoo Lee · 9 years ago
  6. 5b15bae Make /proc/sys/kernel/perf_event_max_sample_rate accessible to untrusted_app. by Yabin Cui · 9 years ago
  7. 50bb7b5 Label /proc/misc by Nick Kralevich · 9 years ago
  8. 64a0503 Restrict /proc/sys/vm/mmap_rnd_bits by Luis Hector Chavez · 9 years ago
  9. 929da01 Label /proc/config.gz by Nick Kralevich · 9 years ago
  10. d345906 Define policy for /proc/uid_io/stats by Jin Qian · 9 years ago
  11. 828433c Define policy for /proc/uid_procstat/set. by Jeff Sharkey · 9 years ago
  12. e427a2b untrusted_app: allow access to /proc/tty/drivers by Nick Kralevich · 9 years ago
  13. cc39f63 Split general policy into public and private components. by dcashman · 9 years ago[Renamed from genfs_contexts]
  14. 7078e8b fine-grained policy for access to /proc/zoneinfo by Daniel Micay · 9 years ago
  15. 5423db6 restrict access to timing information in /proc by Daniel Micay · 9 years ago
  16. c15090b sepolicy: Add policy for sdcardfs and configfs by Daniel Rosenberg · 10 years ago
  17. bc1986f domain: allow reading /proc/sys/vm/overcommit_memory by Jeff Vander Stoep · 9 years ago
  18. 4dafa72 sepolicy: add support for new tracefs by Christian Poetzsch · 9 years ago
  19. f25ea5f Label /proc/meminfo. by dcashman · 10 years ago
  20. d273680 am 26cd912e: Give /proc/iomem a more specific label. by dcashman · 10 years ago
  21. 26cd912 Give /proc/iomem a more specific label. by dcashman · 10 years ago
  22. c960596 drop_caches label, vold scratch space on expanded. by Jeff Sharkey · 10 years ago
  23. 3526a66 Allow system_server to read/write /proc/uid_cputime/ module by Adam Lesinski · 10 years ago
  24. fdc56c5 genfs_contexts: provide a label for binfmt_misc by Nick Kralevich · 10 years ago
  25. 5cf3994 Revert /proc/net related changes by Nick Kralevich · 11 years ago
  26. 0f0324c domain.te: allow /proc/net/psched access by Nick Kralevich · 11 years ago
  27. 2de0287 zygote: allow replacing /proc/cpuinfo by Nick Kralevich · 11 years ago
  28. 374b2a1 Rename sdcard_internal/external types. by Stephen Smalley · 11 years ago
  29. 5a5fb85 label usbfs by Nick Kralevich · 11 years ago
  30. 77cc055 Label /dev/usb-ffs/adb functionfs by Nick Kralevich · 11 years ago
  31. 318e0c9 pstore file system labeling by jaejyn.shin · 11 years ago
  32. 3dad7b6 Address system_server denials. by Stephen Smalley · 12 years ago
  33. 1bf61c4 Make /proc/net a proc_net type. by Robert Craig · 12 years ago
  34. 529fcbe Create proc_net type for /proc/sys/net entries. by Robert Craig · 12 years ago
  35. e6a7b37 Restrict mapping low memory. by Stephen Smalley · 12 years ago
  36. 7adb999 Restrict the ability to set usermodehelpers and proc security settings. by Stephen Smalley · 12 years ago
  37. c195ec3 Split internal and external sdcards by William Roberts · 13 years ago
  38. 4c06d27 Target the denials/policies over qtaguid file and device: 1. Relabel /proc/net/xt_qtaguid/ctrl from "qtaguid" to "qtaguid_proc"; 2. Label /dev/xt_qtaguid with "qtaguid_device"; 3. Allow mediaserver read/[write] to qtaguid_proc and qtaguid_device; 4. Allow media apps read/[write] to qtaguid_proc and qtaguid_device; 5. Allow system read/[write] to qtaguid_proc and qtaguid_device. by hqjiang · 13 years ago
  39. dc10723 Support for ocontexts per device. by William Roberts · 13 years ago