Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-05-11 | Move to common directory versions of selinux toolsHEADmastermain | Jeff Vander Stoep | |
Migrate selinux tools to common directory for consistency with the external selinux project. Change-Id: I8d1c3729610559d6fac33355793b32e807e17c4f | |||
2015-05-06 | Revert "Move to common directory versions of selinux tools" | Jeffrey Vander Stoep | |
Darwin does not support fmemopen. This reverts commit fad375f8e762d1da50b1e4667583cba0ce9f0d73. Change-Id: I4e23212fc8adbb2c8635b62a318a35cdf9d66879 | |||
2015-05-06 | Move to common directory versions of selinux tools | Jeff Vander Stoep | |
Migrate selinux tools to common directory for consistency with the external selinux project. Change-Id: I548b456ec7a252114e47a46f54aee756dd9f0a76 | |||
2015-04-14 | Add ioctl command whitelisting rulesmaster-soong | Jeff Vander Stoep | |
Add new policy statements for whitelisting ioctl commands. <source> <target>:<class> { 0x8900-0x8905 0x8910 } Bug: 19419509 Change-Id: I198e8c9279b94d8ce4ae5625018daa99577ee970 | |||
2015-03-17 | Revert "Fix more SANITIZE_HOST issues." | Dan Albert | |
This is causing more harm than good. We'll just make these all link libc++ again and work out the CTS issues if they still exist. Bug: 19778891 This reverts commit 425920f67592982c56c7ead7c3ba72f4e9d819a3. Change-Id: I116877a69bf45b5d22b0ad11bbee4f31a17d4151 | |||
2015-03-16 | Fix more SANITIZE_HOST issues. | Dan Albert | |
These get built in to things in sepolicy, so they can't be ASAN either. Change-Id: Ia897717c5fd668cb9df75925acd700c1c1e27522 | |||
2015-02-20 | am d13bbfa5: libsepol: Add a README.android file. | Stephen Smalley | |
* commit 'd13bbfa5f6169690ce999b858e5b45f5650ea852': libsepol: Add a README.android file. | |||
2015-02-20 | libsepol: Add a README.android file. | Stephen Smalley | |
Add a README.android file to libsepol identifying its upstream origin, current version, and new files added. Change-Id: I3b191f75ce9c71b1ae642c8788f61e9c98d933e7 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> | |||
2015-02-06 | resolved conflicts for merge of bd76d1c1 to lmp-mr1-dev-plus-aosp | dcashman | |
Change-Id: I02a6eff0d86ac808da914e5cfbe1a48c70806f2b | |||
2015-02-05 | Report all neverallow violations.android-wear-5.1.1_r1android-wear-5.1.0_r1android-cts-5.1_r9android-cts-5.1_r8android-cts-5.1_r7android-cts-5.1_r6android-cts-5.1_r5android-cts-5.1_r4android-cts-5.1_r3android-cts-5.1_r28android-cts-5.1_r27android-cts-5.1_r26android-cts-5.1_r25android-cts-5.1_r24android-cts-5.1_r23android-cts-5.1_r22android-cts-5.1_r21android-cts-5.1_r20android-cts-5.1_r2android-cts-5.1_r19android-cts-5.1_r18android-cts-5.1_r17android-cts-5.1_r16android-cts-5.1_r15android-cts-5.1_r14android-cts-5.1_r13android-cts-5.1_r10android-cts-5.1_r1android-5.1.1_r9android-5.1.1_r8android-5.1.1_r7android-5.1.1_r6android-5.1.1_r5android-5.1.1_r4android-5.1.1_r38android-5.1.1_r37android-5.1.1_r36android-5.1.1_r35android-5.1.1_r34android-5.1.1_r33android-5.1.1_r30android-5.1.1_r3android-5.1.1_r29android-5.1.1_r28android-5.1.1_r26android-5.1.1_r25android-5.1.1_r24android-5.1.1_r23android-5.1.1_r22android-5.1.1_r20android-5.1.1_r2android-5.1.1_r19android-5.1.1_r18android-5.1.1_r17android-5.1.1_r16android-5.1.1_r15android-5.1.1_r14android-5.1.1_r13android-5.1.1_r12android-5.1.1_r10android-5.1.1_r1android-5.1.0_r5android-5.1.0_r4android-5.1.0_r3android-5.1.0_r1lollipop-mr1-wfc-releaselollipop-mr1-releaselollipop-mr1-fi-releaselollipop-mr1-devlollipop-mr1-cts-release | Stephen Smalley | |
Switch libsepol check_assertions() from only reporting the first violation to reporting them all. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Cherry-pick of commit: 7b99e2f9e310bc77f40478c995348dc5e2af27c1 Bug: 19191637 Change-Id: I8b0976f7e233b35ce80e9a15cceb1b47f045de2b | |||
2015-02-03 | Maybe fix MacOS X build. | Stephen Smalley | |
s6_addr32 is not portable; use s6_addr instead. Change-Id: I21c237588d3e7200cefa3af96065f657dae4b1e7 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> | |||
2015-02-03 | am 24e96bc0: Maybe fix MacOS X build. | Stephen Smalley | |
* commit '24e96bc00f27eaefa1430800c13f6fc189ac7180': Maybe fix MacOS X build. | |||
2015-02-03 | Enable building CIL in the host libsepol. | Stephen Smalley | |
Enable building CIL as part of the host libsepol. This will allow using it for host-side policy tools. Omit it from the device libsepol used for the CTS for now, unless/until such a time as we find it necessary there. Also build secilc, the CIL compiler. Change-Id: I2f04a720d9143a9c84fbab211511f76d82581b0b Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> | |||
2015-02-03 | am d8b06231: Enable building CIL in the host libsepol. | Stephen Smalley | |
* commit 'd8b062317b7f1b998599de5cd1e1422f59f958b7': Enable building CIL in the host libsepol. | |||
2015-02-02 | am 2afd4deb: Update to libsepol 2.4. | Stephen Smalley | |
* commit '2afd4debfa6d58909cf0a6a31194bf2c7c7c55dd': Update to libsepol 2.4. | |||
2015-02-02 | Update to libsepol 2.4. | Stephen Smalley | |
Update to current upstream libsepol release. Includes a variety of bug and memory leak fixes, performance optimizations for neverallow checking, and improved error reporting. Introduces cil, the SELinux Common Intermediate Language (CIL) compiler, which should prove useful in creating policy tooling and performing programmatic policy transformations/optimizations, but does not yet enable building cil in the Android.mk file; this will come later as a separate change. Change-Id: If08ba195e156dd23bc07e2005d803abbed4a90bc Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> | |||
2015-01-13 | am c341091b: Allow libsepol C++ static library on device. | dcashman | |
* commit 'c341091bd26dc53b0a57ea61829289429fc42d8e': Allow libsepol C++ static library on device. | |||
2015-01-09 | Allow libsepol C++ static library on device. | dcashman | |
Change-Id: I7da601767c3a4ebed7274e33304d8b589a9115fe | |||
2014-10-26 | am a0e23793: am 6b7fc04c: Merge "Add MODULE_LICENSE and NOTICE files" | Conley Owens | |
* commit 'a0e2379329882674721528199ed1dcdbc5bb17b4': | |||
2014-10-15 | am 6b7fc04c: Merge "Add MODULE_LICENSE and NOTICE files" | Conley Owens | |
* commit '6b7fc04c339b9926ede48426e99b2621428a0d3d': Add MODULE_LICENSE and NOTICE files | |||
2014-10-15 | am 6b7fc04c: Merge "Add MODULE_LICENSE and NOTICE files" | Conley Owens | |
* commit '6b7fc04c339b9926ede48426e99b2621428a0d3d': Add MODULE_LICENSE and NOTICE files | |||
2014-10-15 | Merge "Add MODULE_LICENSE and NOTICE files" | Conley Owens | |
2014-10-14 | am 7b99e2f9: Report all neverallow violations. | Stephen Smalley | |
* commit '7b99e2f9e310bc77f40478c995348dc5e2af27c1': Report all neverallow violations. | |||
2014-10-14 | Report all neverallow violations. | Stephen Smalley | |
Switch libsepol check_assertions() from only reporting the first violation to reporting them all. Change-Id: I45b3502ff96b1d093574e1fecff93a582f8d00bd Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> | |||
2014-10-10 | Add MODULE_LICENSE and NOTICE files | Conley Owens | |
Change-Id: Id79f09e22de5007a280b772363886c34558cfd37 | |||
2014-07-14 | am 2066a66a: Fix for binary policy modules. | Nick Kralevich | |
* commit '2066a66a2ab0c1b7d691d5a180b0ec1e47b0fb12': Fix for binary policy modules. | |||
2014-07-14 | Fix for binary policy modules.android-wear-5.0.0_r1android-l-preview_r2android-cts-5.0_r9android-cts-5.0_r8android-cts-5.0_r7android-cts-5.0_r6android-cts-5.0_r5android-cts-5.0_r4android-cts-5.0_r3android-5.0.2_r3android-5.0.2_r1android-5.0.1_r1android-5.0.0_r7android-5.0.0_r6android-5.0.0_r5.1android-5.0.0_r5android-5.0.0_r4android-5.0.0_r3android-5.0.0_r2android-5.0.0_r1lollipop-wear-releaselollipop-releaselollipop-devlollipop-cts-releasel-preview | Nick Kralevich | |
They do not retain the neverallow source information so we must not assume that source_filename is set. Either need a new binary module format if we want to propagate this information for modular builds or get rid of binary modules. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Bug: https://code.google.com/p/android/issues/detail?id=73183 (cherry picked from commit d26204e7d0a3be178a97d4920b82007e05a2a632) Change-Id: I88e220816430b57d5cb366f3a1e0c22fc64fffef | |||
2014-07-12 | Fix for binary policy modules. | Nick Kralevich | |
They do not retain the neverallow source information so we must not assume that source_filename is set. Either need a new binary module format if we want to propagate this information for modular builds or get rid of binary modules. Change-Id: Ia86a04516bb7ea45c9036a84fcb10920e15531bf Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Bug: https://code.google.com/p/android/issues/detail?id=73183 | |||
2014-03-05 | Report source file and line information for neverallow failures.idea133-weekly-release | Stephen Smalley | |
Change-Id: I0def97a5f2f6097e2dad7bcd5395b8fa740d7073 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> | |||
2013-10-31 | am 8fd7c65a: Update to libsepol 2.2.android-4.4w_r1kitkat-wearidea133 | Stephen Smalley | |
* commit '8fd7c65a336d45d5225f32363a9f26c1e3e60c3c': Update to libsepol 2.2. | |||
2013-10-31 | Update to libsepol 2.2.android-sdk-4.4.2_r1.0.1android-sdk-4.4.2_r1android-4.4.4_r2.0.1android-4.4.4_r2android-4.4.4_r1.0.1android-4.4.4_r1android-4.4.3_r1.1.0.1android-4.4.3_r1.1android-4.4.3_r1.0.1android-4.4.3_r1android-4.4.2_r2.0.1android-4.4.2_r2android-4.4.2_r1.0.1android-4.4.2_r1android-4.4.1_r1.0.1android-4.4.1_r1kitkat-mr2.2-releasekitkat-mr2.1-releasekitkat-mr2-releasekitkat-mr1.1-releasekitkat-mr1-releasekitkat-dev | Stephen Smalley | |
Update to current upstream libsepol release. Includes memory leak fixes, improved handling of filename-based type transitions, and support for latest kernel policy version. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> (cherry picked from commit dedcd596b31e0e4fc15d75b3a8b5e6b61e6c28b3) Change-Id: I273e3aac223d25c918f71d566ea752b64ec59cd7 | |||
2013-10-30 | Update to libsepol 2.2. | Stephen Smalley | |
Update to current upstream libsepol release. Includes memory leak fixes, improved handling of filename-based type transitions, and support for latest kernel policy version. Change-Id: Idabd3e4d50777c6691cb0d74b4e28f4fe06bef35 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> | |||
2013-01-16 | Fix memory leak issues found by Klocworkandroid-cts-4.4_r4android-cts-4.4_r1android-4.4_r1.2.0.1android-4.4_r1.2android-4.4_r1.1.0.1android-4.4_r1.1android-4.4_r1.0.1android-4.4_r1android-4.4_r0.9android-4.4_r0.8android-4.4_r0.7android-4.3_r3.1android-4.3_r3android-4.3_r2.3android-4.3_r2.2android-4.3_r2.1android-4.3_r2android-4.3_r1.1android-4.3_r1android-4.3_r0.9.1android-4.3_r0.9android-4.3.1_r1tools_r22.2tools_r22kitkat-releasekitkat-cts-releasekitkat-cts-devjb-mr2.0.0-releasejb-mr2.0-releasejb-mr2-releasejb-mr2-devjb-mr1.1-dev-plus-aosp | Alice Chu | |
Change-Id: If324d424dc11df435c26b0da11e314c7608180f9 | |||
2012-09-25 | Update to libsepol 2.1.8.tools_r21jb-mr1-dev-plus-aosp | Stephen Smalley | |
Change-Id: I7d848ee312d4c706162a822d2031f37a5557ed5f Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> | |||
2012-02-21 | Merge branch 'upstream'android-sdk-support_r11android-sdk-adt_r20android-cts-4.2_r2android-cts-4.2_r1android-cts-4.1_r4android-cts-4.1_r2android-cts-4.1_r1android-4.2_r1android-4.2_pre3android-4.2_pre2.2android-4.2_pre2.1android-4.2_pre2android-4.2_pre1.1android-4.2_pre1android-4.2.2_r1.2android-4.2.2_r1.1android-4.2.2_r1android-4.2.1_r1.2android-4.2.1_r1.1android-4.2.1_r1android-4.1_pre2android-4.1_pre1android-4.1.2_r2.1android-4.1.2_r2android-4.1.2_r1android-4.1.1_r6.1android-4.1.1_r6android-4.1.1_r5android-4.1.1_r4android-4.1.1_r3android-4.1.1_r2android-4.1.1_r1.1android-4.1.1_r1android-4.1-sdk_pre1tools_r20jb-releasejb-mr1.1-releasejb-mr1.1-devjb-mr1-releasejb-mr1-factory-releasejb-mr1-devjb-mr0-releasejb-devics-plus-aosp | Stephen Smalley | |
2012-02-21 | libsepol 2.1.4 | Stephen Smalley | |
2012-01-24 | Support for building on MacOS X as part of Android. | Stephen Smalley | |
2012-01-24 | Import libsepol 2.1.0 (Release 2011-07-27). | SE Android | |