Commits · 50e37b93ac97631dcac6961285b92af5026557af · Werner Sembach / AndroidSystemSEPolicy

May 15, 2013
- Move domains into per-domain permissive mode. · 50e37b93
  repo sync authored 11 years ago
  
  Bug: 4070557 Change-Id: I027f76cff6df90e9909711cb81fbd17db95233c1
  50e37b93
May 09, 2013

SELinux policy for users of libcutils klog_write. · 77ec892b

Alex Klyubin authored 11 years ago

klog_write/init create /dev/__kmsg__ backed by a kernel character
device, keep the file descriptor, and then immediately unlink the
file.

Change-Id: I729d224347a003eaca29299d216a53c99cc3197c

77ec892b

Apr 05, 2013

Give domains read access to security_file domain. · 7bb2a55c

William Roberts authored 11 years ago

/data/security is another location that policy
files can reside. In fact, these policy files
take precedence over their rootfs counterparts
under certain circumstances. Give the appropriate
players the rights to read these policy files.

Change-Id: I9951c808ca97c2e35a9adb717ce5cb98cda24c41

7bb2a55c

Mar 22, 2013

Move policy files · 9e70c8bf

William Roberts authored 12 years ago

Update the file_contexts for the new location of
the policy files, as well as update the policy
for the management of these types.

Change-Id: Idc475901ed437efb325807897e620904f4ff03e9

9e70c8bf

Mar 19, 2013

Update binder-related policy. · 9ce99e39

Stephen Smalley authored 12 years ago

The binder_transfer_binder hook was changed in the kernel, obsoleting
the receive permission and changing the target of the transfer permission.
Update the binder-related policy to match the revised permission checking.

Change-Id: I1ed0dadfde2efa93296e967eb44ca1314cf28586
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>

9ce99e39

Jul 27, 2012

Only enforce per-app process and file isolation via SELinux for third party... · b9760aa0

Stephen Smalley authored 12 years ago

Only enforce per-app process and file isolation via SELinux for third party apps, not platform apps.

Platform (any of the apps signed by build keys, i.e. platform|release|shared|media) apps expect to be able to share files with each other or with third party apps by passing open files or pathnames over Binder. Therefore, we switch to only enforcing the per-app process and file isolation via SELinux on third party apps, not platform apps.

Make the platform app domains mlstrustedsubjects so that they can access any files created by third party apps.
Introduce a new platform_app_data_file type for platform apps so that we can mark it as a mlstrustedobject and allow third party apps to read/write files created by the platform apps.
Specify this new type for the platform app entries in seapp_contexts.
Remove levelFromUid=true for the platform apps in seapp_contexts since we are no longer enforcing per-app separation among them.

b9760aa0

Mar 07, 2012
- Policy changes to support running the latest CTS. · c83d0087
  Stephen Smalley authored 13 years ago
  
  c83d0087
Feb 02, 2012
- Allow Settings to set enforcing and booleans if settings_manage_selinux is true. · 4c6f1ce8
  Stephen Smalley authored 13 years ago
  
  4c6f1ce8
Jan 12, 2012

Allow reading of properties area, which is now created before init has... · 6261d6d8

Stephen Smalley authored 13 years ago

Allow reading of properties area, which is now created before init has switched contexts.  Revisit this later - we should explicitly label the properties file.

6261d6d8

Jan 04, 2012
- SE Android policy. · 2dd4e51d
  Stephen Smalley authored 13 years ago
  
  2dd4e51d