Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / refs/heads/android-15 / public / surfaceflinger.te
  1. 09b27c7 Add "DO NOT ADD statements" comments to public by Inseob Kim · 1 year, 5 months ago
  2. 9f5d0d9 Initial selinux policy support for memfd by Jeff Vander Stoep · 7 years ago
  3. 5d30beb Move surfaceflinger policy to private by Alex Klyubin · 9 years ago
  4. 1b95d88 Allow HWC to be binderized by Chia-I Wu · 9 years ago
  5. ebec1aa configstore: add selinux policy for configstore@1.0 hal by Jiyong Park · 9 years ago
  6. d33a9a1 logd: restrict access to /dev/event-log-tags by Mark Salyzyn · 9 years ago
  7. 606d2fd te_macros: introduce add_service() macro by William Roberts · 9 years ago
  8. d5b6043 more ephemeral_app cleanup by Nick Kralevich · 9 years ago
  9. 6a259cc remove more domain_deprecated by Nick Kralevich · 9 years ago
  10. fb08872 Add sepolicy for hwcomposer HAL by Chia-I Wu · 9 years ago
  11. dd958e5 Add sepolicy for gralloc-alloc HAL by Chia-I Wu · 9 years ago
  12. 06cf31e Rename autoplay_app to ephemeral_app by Chad Brubaker · 9 years ago
  13. cc39f63 Split general policy into public and private components. by dcashman · 9 years ago[Renamed (98%) from surfaceflinger.te]
  14. bff9801 Enforce ioctl command whitelisting on all sockets by Jeff Vander Stoep · 9 years ago
  15. 7ef8073 audit domain_deprecated perms for removal by Jeff Vander Stoep · 9 years ago
  16. 0ce96cd sepolicy: Add cap_sys_nice to surfaceflinger by Ruchi Kandoi · 9 years ago
  17. 59970a4 Define gpu_service and allow surfaceflinger to provide it by Jesse Hall · 9 years ago
  18. 23eef19 audioserver: Build up least privileged policy by Jeff Vander Stoep · 10 years ago
  19. 4541687 cameraserver: Build up least privileged policy by Jeff Vander Stoep · 10 years ago
  20. e037830 selinux: Update policies for cameraserver by Chien-Yu Chen · 10 years ago
  21. 59e47dd resolve merge conflicts of ef9a0be598 to master. by Jeff Vander Stoep · 10 years ago
  22. 7171232 Delete policy it is alread included in binder_call macros. by SimHyunYong · 10 years ago
  23. b03831f Add rules for running audio services in audioserver by Marco Nelissen · 10 years ago
  24. ae72bf2 Populate autoplay_app with minimal set of permissions by Jeff Vander Stoep · 10 years ago
  25. d22987b Create attribute for moving perms out of domain by Jeff Vander Stoep · 10 years ago
  26. 625a352 Replace unix_socket_connect() and explicit property sets with macro by William Roberts · 10 years ago
  27. bd7f580 Enforce more specific service access. by dcashman · 10 years ago
  28. 03a6f64 Enforce more specific service access. by dcashman · 10 years ago
  29. d12993f Add system_api_service and app_api_service attributes. by dcashman · 10 years ago
  30. 566e8fe Record service accesses. by dcashman · 11 years ago
  31. 7d1deec Record surfaceflinger power_service access. by dcashman · 11 years ago
  32. 4a89cdf Make system_server_service an attribute. by dcashman · 11 years ago
  33. cd82557 Restrict service_manager find and list access. by dcashman · 11 years ago
  34. b8511e0 Add access control for each service_manager action. by Riley Spahn · 11 years ago
  35. f90c41f Add SELinux rules for service_manager. by Riley Spahn · 11 years ago
  36. b53e84a surfaceflinger: remove unconfined domain reference. by Nick Kralevich · 11 years ago
  37. 84ed890 Merge adf_device into graphics_device by Nick Kralevich · 11 years ago
  38. ef28e76 Make the surfaceflinger domain enforcing. by Stephen Smalley · 12 years ago
  39. 7004789 Add policies for Atomic Display Framework by Greg Hackmann · 11 years ago
  40. fd352f1 Allow surfaceflinger to make binder call to bootanim by Nick Kralevich · 11 years ago
  41. 4b3893f Replace ctl_default_prop access with explicit service property keys. by Robert Craig · 12 years ago
  42. 5795571 Allow surfaceflinger to read /proc/pid/cmdline of dumpstate. by Stephen Smalley · 11 years ago
  43. dc88dca Get rid of separate platform_app_data_file type. by Stephen Smalley · 11 years ago
  44. 244aa02 Address surfaceflinger denials. by Stephen Smalley · 12 years ago
  45. 1601132 Clean up socket rules. by Stephen Smalley · 12 years ago
  46. e21871c Address screenrecord denials. by rpcraig · 12 years ago
  47. 629c98c Fix NFC image transfer by Nick Kralevich · 12 years ago
  48. 2e7a301 Address bug report denials. by Nick Kralevich · 12 years ago
  49. 623975f Support forcing permissive domains to unconfined. by Nick Kralevich · 12 years ago
  50. e45603d address denials when playing protected content. by Nick Kralevich · 12 years ago
  51. a506613 Fix denials triggered by adb shell screencap. by Stephen Smalley · 12 years ago
  52. 5f29026 Revert "Make surfaceflinger domain enforcing." by Nick Kralevich · 12 years ago
  53. 3d770d2 surfaceflinger: fix bugreport screenshot functionality by Nick Kralevich · 12 years ago
  54. 37339c7 fix mediaserver selinux denials. by Nick Kralevich · 12 years ago
  55. a11c56e Make surfaceflinger domain enforcing. by Stephen Smalley · 12 years ago
  56. acde43f Define a domain for the bootanim service. by Stephen Smalley · 12 years ago
  57. 3ba9012 Move gpu_device type and rules to core policy. by Stephen Smalley · 12 years ago
  58. 52a8523 Confine surfaceflinger, but leave it permissive for now. by Stephen Smalley · 12 years ago
  59. 353c72e Move unconfined domains out of permissive mode. by Nick Kralevich · 12 years ago
  60. 77d4731 Make all domains unconfined. by repo sync · 12 years ago
  61. 50e37b9 Move domains into per-domain permissive mode. by repo sync · 12 years ago
  62. a3f6568 Revert "DO NOT MERGE Split some device nodes out from device." by Ben Murdoch · 12 years ago
  63. 69fbbdd DO NOT MERGE Split some device nodes out from device. by repo sync · 12 years ago
  64. e69552b Revert "Revert "Various minor policy fixes based on CTS."" by Geremy Condra · 12 years ago
  65. ba84bf1 Revert "Various minor policy fixes based on CTS." by Geremy Condra · 12 years ago
  66. 8a814a7 Various minor policy fixes based on CTS. by Stephen Smalley · 12 years ago
  67. 9ce99e3 Update binder-related policy. by Stephen Smalley · 13 years ago
  68. 1c73516 Address various denials introduced by JB/4.1. by Stephen Smalley · 13 years ago
  69. 124720a Add policy for property service. by Stephen Smalley · 13 years ago
  70. 2dd4e51 SE Android policy. by Stephen Smalley · 14 years ago