tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_system_sepolicy/tests
History
Nick Kralevich 5e37271df8 Introduce system_file_type 
system_file_type is a new attribute used to identify files which exist
on the /system partition. It's useful for allow rules in init, which are
based off of a blacklist of writable files. Additionally, it's useful
for constructing neverallow rules to prevent regressions.

Additionally, add commented out tests which enforce that all files on
the /system partition have the system_file_type attribute. These tests
will be uncommented in a future change after all the device-specific
policies are cleaned up.

Test: Device boots and no obvious problems.
Change-Id: Id9bae6625f042594c8eba74ca712abb09702c1e5
2018-09-27 12:52:09 -07:00
..
include Assert types labeled in genfs_contexts have correct attributes 2018-03-23 14:34:46 -07:00
Android.bp searchpolicy depends on FcSort 2018-04-24 14:12:50 -07:00
FcSort.py Improve data separation test coverage 2018-03-22 22:58:50 -07:00
mini_parser.py Silence expandtypeattribute build-time warning. 2018-02-07 12:59:38 -08:00
policy.py Assert types labeled in genfs_contexts have correct attributes 2018-03-23 14:34:46 -07:00
searchpolicy.py Sync internal master and AOSP sepolicy. 2017-09-26 14:38:47 -07:00
sepol_wrap.cpp gracefully handle hashtab_search failures 2018-09-26 14:28:44 -07:00
sepolicy_tests.py Introduce system_file_type 2018-09-27 12:52:09 -07:00
treble_sepolicy_tests.py Delete untrusted_v2_app 2018-08-06 12:52:37 -07:00