Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / refs/heads/android-16 / private / ephemeral_app.te
  1. f3722d5 strengthen app_data_file neverallows by Steven Moreland · 2 years, 4 months ago
  2. b56bf68 strengthen debugfs neverallows by Steven Moreland · 2 years, 4 months ago
  3. 941ba72 sepolicy: rework perfetto producer/profiler rules for "user" builds by Ryan Savitski · 2 years, 7 months ago
  4. 9ec5327 Add fusefs_type for FUSE filesystems by Thiébaud Weksteen · 4 years, 3 months ago
  5. 3db5a31 sepolicy: clean up redundant rules around gpuservice by Yiwei Zhang · 5 years ago
  6. 67a8248 initial policy for traced_perf daemon (perf profiler) by Ryan Savitski · 6 years ago
  7. 5e52281 Allow Java domains to be Perfetto producers. by Florian Mayer · 6 years ago
  8. 8a7bed9 Remove mediacodec_service. by Steven Moreland · 6 years ago
  9. 19200ae ephemeral_app: restore /dev/ashmem open permissions by Tri Vo · 6 years ago
  10. 9fbc87c ashmem: expand app access by Tri Vo · 7 years ago
  11. 8b12ff5 Neverallow app open access to /dev/ashmem by Tri Vo · 7 years ago
  12. 544d6b3 Game Driver: sepolicy update for plumbing GpuStats into GpuService by Yiwei Zhang · 7 years ago
  13. 87e9123 disallow priv-apps from following untrusted app symlinks. by Nick Kralevich · 7 years ago
  14. ca0690e Allow heap profiling of certain app domains on user builds by Ryan Savitski · 7 years ago
  15. fb66c6f rename rs_data_file to app_exec_data_file by Nick Kralevich · 7 years ago
  16. 65a89c1 Revert "remove app_data_file execute" by Nick Kralevich · 7 years ago
  17. b362474 remove app_data_file execute by Nick Kralevich · 7 years ago
  18. 0eb0a16 bless app created renderscript files by Nick Kralevich · 7 years ago
  19. c47e149 Revert "auditallow app_data_file execute" by Nick Kralevich · 7 years ago
  20. 4738b93 auditallow app_data_file execute by Nick Kralevich · 7 years ago
  21. 23c9d91 Start partitioning off privapp_data_file from app_data_file by Nick Kralevich · 7 years ago
  22. 252b015 Allow getsockopt and setsockopt for Encap Sockets by Nathan Harold · 7 years ago
  23. ee26864 Allow More Apps to Recv UDP Sockets from SystemServer by Nathan Harold · 8 years ago
  24. c80f9e0 Perfetto SELinux policies by Primiano Tucci · 8 years ago
  25. 7650669 Allow Instant/V2 apps to load code from /data/data by Chad Brubaker · 8 years ago
  26. 63f4677 Allow vendor apps to use surfaceflinger_service by Jeff Vander Stoep · 8 years ago
  27. 3235963 Add drmserver permission for ephemeral apps by Marco Nelissen · 8 years ago
  28. 91d398d Sync internal master and AOSP sepolicy. by Dan Cashman · 8 years ago
  29. d2b3a45 Allow ephemeral apps to find media.drm by Chad Brubaker · 8 years ago
  30. b93f049 Add media services to ephemeral_app by Chad Brubaker · 8 years ago
  31. f5446eb Vendor domains must not use Binder by Alex Klyubin · 8 years ago
  32. c4a938e Disallow access to proc_net for ephemeral_app by Chad Brubaker · 8 years ago
  33. 6237d8b Start locking down access to services from ephemeral apps by Alex Klyubin · 9 years ago
  34. 4c40d73 Merge ephemeral data and apk files into app by Chad Brubaker · 9 years ago
  35. 3d348fd Allow ephemeral apps to read/write external storage by Chad Brubaker · 9 years ago
  36. 5c566d1 Move ephemeral_app to appdomain by Chad Brubaker · 9 years ago
  37. baeac1f Move ephemeral_app policy to private by Alex Klyubin · 9 years ago
  38. 2e00e63 sepolicy: add version_policy tool and version non-platform policy. by dcashman · 9 years ago
  39. 06cf31e Rename autoplay_app to ephemeral_app by Chad Brubaker · 9 years ago[Renamed (89%) from private/autoplay_app.te]
  40. cc39f63 Split general policy into public and private components. by dcashman · 9 years ago