Commits

Author Commit Message Labels Comments Date
Jeff Vander Stoep
Move to common directory versions of selinux tools Migrate selinux tools to common directory for consistency with the external selinux project. (cherry picked from commit c4882b81f186bc131f79ad0b28808bbeef6fc678) Change-Id: I8d1c3729610559d6fac33355793b32e807e17c4f
Tags
2 tags
Jeff Vander Stoep
Move to common directory versions of selinux tools Migrate selinux tools to common directory for consistency with the external selinux project. Change-Id: I8d1c3729610559d6fac33355793b32e807e17c4f
Jeffrey Vander Stoep
Revert "Move to common directory versions of selinux tools" Darwin does not support fmemopen. This reverts commit fad375f8e762d1da50b1e4667583cba0ce9f0d73. Change-Id: I4e23212fc8adbb2c8635b62a318a35cdf9d66879
Jeff Vander Stoep
Move to common directory versions of selinux tools Migrate selinux tools to common directory for consistency with the external selinux project. Change-Id: I548b456ec7a252114e47a46f54aee756dd9f0a76
Jeff Vander Stoep
Add ioctl command whitelisting rules Add new policy statements for whitelisting ioctl commands. <source> <target>:<class> { 0x8900-0x8905 0x8910 } Bug: 19419509 Change-Id: I198e8c9279b94d8ce4ae5625018daa99577ee970
Stephen Smalley
libsepol: Do not build for device. This was added by I7da601767c3a4ebed7274e33304d8b589a9115fe but is not necessary for anything currently and does not currently compile with the 5.x bionic. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Branches
2 branches
Dan Albert
Revert "Fix more SANITIZE_HOST issues." This is causing more harm than good. We'll just make these all link libc++ again and work out the CTS issues if they still exist. Bug: 19778891 This reverts commit 425920f67592982c56c7ead7c3ba72f4e9d819a3. Change-Id: I116877a69bf45b5d22b0ad11bbee4f31a17d4151
Dan Albert
Fix more SANITIZE_HOST issues. These get built in to things in sepolicy, so they can't be ASAN either. Change-Id: Ia897717c5fd668cb9df75925acd700c1c1e27522
Stephen Smalley
libsepol: Add a README.android file. Add a README.android file to libsepol identifying its upstream origin, current version, and new files added. Change-Id: I3b191f75ce9c71b1ae642c8788f61e9c98d933e7 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Branches
2 branches
Stephen Smalley
Maybe fix MacOS X build. s6_addr32 is not portable; use s6_addr instead. Change-Id: I21c237588d3e7200cefa3af96065f657dae4b1e7 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Branches
2 branches
Stephen Smalley
Enable building CIL in the host libsepol. Enable building CIL as part of the host libsepol. This will allow using it for host-side policy tools. Omit it from the device libsepol used for the CTS for now, unless/until such a time as we find it necessary there. Also build secilc, the CIL compiler. Change-Id: I2f04a720d9143a9c84fbab211511f76d82581b0b Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Branches
2 branches
Stephen Smalley
Update to libsepol 2.4. Update to current upstream libsepol release. Includes a variety of bug and memory leak fixes, performance optimizations for neverallow checking, and improved error reporting. Introduces cil, the SELinux Common Intermediate Language (CIL) compiler, which should prove useful in creating policy tooling and performing programmatic policy transformations/optimizations, but does not yet enable building…
Branches
2 branches
dcashman
Allow libsepol C++ static library on device. Change-Id: I7da601767c3a4ebed7274e33304d8b589a9115fe
Branches
2 branches
Conley Owens
Add MODULE_LICENSE and NOTICE files Change-Id: Id79f09e22de5007a280b772363886c34558cfd37
Branches
2 branches
Stephen Smalley
am d13bbfa5: libsepol: Add a README.android file. * commit 'd13bbfa5f6169690ce999b858e5b45f5650ea852': libsepol: Add a README.android file.
Stephen Smalley
libsepol: Add a README.android file. Add a README.android file to libsepol identifying its upstream origin, current version, and new files added. Change-Id: I3b191f75ce9c71b1ae642c8788f61e9c98d933e7 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
dcashman
resolved conflicts for merge of bd76d1c1 to lmp-mr1-dev-plus-aosp Change-Id: I02a6eff0d86ac808da914e5cfbe1a48c70806f2b
Stephen Smalley
Report all neverallow violations. Switch libsepol check_assertions() from only reporting the first violation to reporting them all. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Cherry-pick of commit: 7b99e2f9e310bc77f40478c995348dc5e2af27c1 Bug: 19191637 Change-Id: I8b0976f7e233b35ce80e9a15cceb1b47f045de2b
Tags
16 tags
Stephen Smalley
am 24e96bc0: Maybe fix MacOS X build. * commit '24e96bc00f27eaefa1430800c13f6fc189ac7180': Maybe fix MacOS X build.
Stephen Smalley
Maybe fix MacOS X build. s6_addr32 is not portable; use s6_addr instead. Change-Id: I21c237588d3e7200cefa3af96065f657dae4b1e7 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Stephen Smalley
am d8b06231: Enable building CIL in the host libsepol. * commit 'd8b062317b7f1b998599de5cd1e1422f59f958b7': Enable building CIL in the host libsepol.
Stephen Smalley
Enable building CIL in the host libsepol. Enable building CIL as part of the host libsepol. This will allow using it for host-side policy tools. Omit it from the device libsepol used for the CTS for now, unless/until such a time as we find it necessary there. Also build secilc, the CIL compiler. Change-Id: I2f04a720d9143a9c84fbab211511f76d82581b0b Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Stephen Smalley
am 2afd4deb: Update to libsepol 2.4. * commit '2afd4debfa6d58909cf0a6a31194bf2c7c7c55dd': Update to libsepol 2.4.
Stephen Smalley
Update to libsepol 2.4. Update to current upstream libsepol release. Includes a variety of bug and memory leak fixes, performance optimizations for neverallow checking, and improved error reporting. Introduces cil, the SELinux Common Intermediate Language (CIL) compiler, which should prove useful in creating policy tooling and performing programmatic policy transformations/optimizations, but does not yet enable building…
Stephen Smalley
libsepol 2.4 / 20150202. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Branches
upstream
Stephen Smalley
libsepol 2.4-rc7 / 20150121. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Branches
upstream
Stephen Smalley
libsepol 2.3. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Branches
upstream
Stephen Smalley
libsepol 2.2. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Branches
upstream
dcashman
am c341091b: Allow libsepol C++ static library on device. * commit 'c341091bd26dc53b0a57ea61829289429fc42d8e': Allow libsepol C++ static library on device.
dcashman
Allow libsepol C++ static library on device. Change-Id: I7da601767c3a4ebed7274e33304d8b589a9115fe
  1. Prev
  2. Next