aboutsummaryrefslogtreecommitdiff
path: root/isolated_app.te
AgeCommit message (Expand)Author
2016-05-03DO NOT MERGE: Neverallow isolated and untrusted apps to write system propertiesJohan Redestig
2015-06-08Remove service_manager_local_audit_domain.dcashman
2015-06-05restrict app access to socket ioctlsJeff Vander Stoep
2015-04-09isolated_app: Do not allow access to the gpu_device.Nick Kralevich
2015-04-09isolated_app: allow app_data_file lockNick Kralevich
2015-04-01Record observed service accesses.dcashman
2015-03-05update isolated_app service_manager rulesNick Kralevich
2015-01-20Revert "isolated_app: Do not allow access to the gpu_device."Nick Kralevich
2015-01-14Make system_server_service an attribute.dcashman
2014-12-15Restrict service_manager find and list access.dcashman
2014-12-02Do not allow isolated_app to directly open app data files.Stephen Smalley
2014-10-17Revert "Do not allow isolated_app to directly open app data files."android-l-preview_r2l-previewNick Kralevich
2014-10-06Do not allow isolated_app to directly open app data files.Stephen Smalley
2014-10-03Remove net_domain() from isolated_app.Stephen Smalley
2014-10-01isolated_app: remove app_data_file executeNick Kralevich
2014-09-11isolated_app: Do not allow access to the gpu_device.Robert Sesek
2014-07-18Further refined service_manager auditallow statements.Riley Spahn
2014-07-14Add access control for each service_manager action.Riley Spahn
2014-06-27isolated_app: allow app_data_file executeNick Kralevich
2014-03-07Clean up, unify, and deduplicate app domain rules.Stephen Smalley
2014-02-25Resolve overlapping rules between app.te and net.te.Stephen Smalley
2014-01-09Remove legacy rules from dumpstate in init domain.Stephen Smalley
2013-12-02Make the isolated_app domain enforcing.Stephen Smalley
2013-09-13Remove duplicated rules between appdomain and isolated_app.Stephen Smalley
2013-09-05Fix more long-tail denials.Geremy Condra
2013-07-16Move isolated_app.te / untrusted_app.te into permissiveNick Kralevich
2013-07-13untrusted_app.te / isolated_app.te / app.te first passNick Kralevich
2013-07-12Move *_app into their own fileNick Kralevich
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-03 08:12:56 +0000