Commits

Show all
Author Commit Message Labels Comments Date
Stephen Smalley avatarStephen Smalley
Restore /dev/eac - used by the emulator.
Branches
3 branches
Stephen Smalley avatarStephen Smalley
keystore daemon can be used by third party apps running in any level.
Branches
3 branches
Robert Craig avatarRobert Craig
Exempt bluetooth domain from property_service set.
Branches
3 branches
Robert Craig avatarRobert Craig
Label another node with uinput_device.
Branches
3 branches
Stephen Smalley avatarStephen Smalley
Label /dev/video4[0-9] nodes as camera_device.
Branches
3 branches
Stephen Smalley avatarStephen Smalley
Add a disableAudioCapture boolean to disable audio capture.
Branches
3 branches
Robert Craig avatarRobert Craig
Introduce new uinput_device domain.
Branches
3 branches
Stephen Smalley avatarStephen Smalley
Add disableAudio boolean to disable audio access.
Branches
3 branches
Stephen Smalley avatarStephen Smalley
Wrap more rules under the disableBluetooth boolean.
Branches
3 branches
Stephen Smalley avatarStephen Smalley
Invert camera and bluetooth booleans.
Branches
3 branches
Stephen Smalley avatarStephen Smalley
Introduce booleans for disabling camera and bluetooth.
Branches
3 branches
Stephen Smalley avatarStephen Smalley
Split shell domain into separate domains for adb shell vs init-spawned shell.
Branches
6 branches
William Roberts avatarWilliam Roberts
Introduce untrustedappdomain attribute
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Remove another device-specific device node and type.
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Delete legacy devices and label mdns and gps sockets.
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Revert "Allow logwrapper to be used by all daemons spawned by init"
Branches
6 branches
William Roberts avatarWilliam Roberts
Allow logwrapper to be used by all daemons spawned by init
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Allow file types to be associated with the rootfs.
Branches
6 branches
Robert Craig avatarRobert Craig
Various updates to policy.
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Merge branch 'master' into seandroid
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Label all files under /sys/qemu_trace with sysfs_writable.
Branches
6 branches
Default avatar Geremy Condra
Merge "Add non_system_app_set"
Stephen Smalley avatarStephen Smalley
Add further assertions.
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Drop domain write access to sysfs for the emulator.
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Remove sys_nice capability from domains.
Branches
6 branches
Stephen Smalley avatarStephen Smalley
Add further neverallow assertions.
Branches
6 branches
William Roberts avatarWilliam Roberts
Add non_system_app_set
Stephen Smalley avatarStephen Smalley
Merged in billcroberts/external-sepolicy/nsa-seandroid-runas (pull request #15)
Branches
6 branches
William Roberts avatarWilliam Roberts
Support strict duplicate checking
William Roberts avatarWilliam Roberts
run-as support for all non system apps
Branches
6 branches
  1. Prev
  2. Next
Tip: Filter by directory path e.g. /media app.js to search for public/media/app.js.
Tip: Use camelCasing e.g. ProjME to search for ProjectModifiedEvent.java.
Tip: Filter by extension type e.g. /repo .js to search for all .js files in the /repo directory.
Tip: Separate your search with spaces e.g. /ssh pom.xml to search for src/ssh/pom.xml.
Tip: Use ↑ and ↓ arrow keys to navigate and return to view the file.
Tip: You can also navigate files with Ctrl+j (next) and Ctrl+k (previous) and view the file with Ctrl+o.
Tip: You can also navigate files with Alt+j (next) and Alt+k (previous) and view the file with Alt+o.