..
access_vectors
[dice] Remove all the sepolicy relating the hal service dice
2023-02-24 08:34:26 +00:00
adbd.te
Adb root is supported in Microdroid on user builds
2022-12-06 22:30:36 +09:00
apexd.te
Add use_bionic_libs macro
2022-01-25 09:47:56 +09:00
apkdmverity.te
Allow apkdmverity/zipfuse to write to kmsg_debug
2022-11-22 10:13:48 +09:00
atrace.te
Add selinux rules for perfetto daemones
2023-03-14 15:07:54 +00:00
attributes
Remove redundant sepolicy
2022-03-15 15:43:50 +00:00
authfs.te
Allow authfs to read extra APK mount
2022-01-05 15:21:51 -08:00
authfs_service.te
Cleanup authfs_service / servicemanager communication permissions
2022-11-21 09:29:41 +00:00
bug_map
Remove policy for non-existent devices
2023-03-24 18:13:18 +00:00
compos.te
Allow system server to set dynamic ART properties.
2023-03-31 11:46:05 +01:00
compos_key_helper.te
[rpc_binder] Remove permissions about virual_machine_payload_service
2022-11-21 09:42:06 +00:00
crash_dump.te
Add domain level neverallow to restrict access to ptrace
2023-03-27 14:45:33 +01:00
derive_classpath.te
Allow compos to run derive_classpath
2022-01-05 18:06:27 +00:00
dex2oat.te
Allow system server to set dynamic ART properties.
2023-03-31 11:46:05 +01:00
domain.te
Add missing properties to microdroid
2023-06-09 11:30:24 +09:00
encryptedstore.te
Policy changes for running payloads not as root
2023-08-23 13:44:40 +01:00
file.te
Remove remaining APEX sepolicy types
2023-09-25 11:19:44 +09:00
file_contexts
Remove policy for non-existent devices am: 4f92d5bd99 am: 1d33d118a5 am: cd10974d13
2023-03-27 09:27:33 +00:00
fs_use
genfs_contexts
microdroid: allow init_debug_policy.sh to handle AVF debug policy
2023-03-07 08:27:34 +09:00
init.te
Suppress a denial on VM boot
2023-10-20 10:59:52 +01:00
init_debug_policy.te
microdroid: allow init_debug_policy.sh to handle AVF debug policy
2023-03-07 08:27:34 +09:00
initial_sid_contexts
initial_sids
kernel.te
Remove remaining APEX sepolicy types
2023-09-25 11:19:44 +09:00
kexec.te
Grant kmsg_debug permission to kexec
2022-11-17 14:57:17 +00:00
keys.conf
linkerconfig.te
mac_permissions.xml
microdroid_app.te
Move DICE logic into microdroid_manager
2022-10-07 17:53:50 +00:00
microdroid_manager.te
Policy changes for running payloads not as root
2023-08-23 13:44:40 +01:00
microdroid_payload.te
Policy changes for running payloads not as root
2023-08-23 13:44:40 +01:00
mls
Remove redundant sepolicy
2022-03-15 15:43:50 +00:00
mls_decl
mls_macros
net.te
Remove netdomain from Microdroid
2022-12-09 14:31:40 +09:00
odrefresh.te
Allow system server to set dynamic ART properties.
2023-03-31 11:46:05 +01:00
perfetto.te
Add selinux rules for perfetto daemones
2023-03-14 15:07:54 +00:00
policy_capabilities
port_contexts
prng_seeder.te
prng_seeder is a bootstrap process in microdroid
2022-12-22 10:24:26 +09:00
property.te
Add missing properties to microdroid
2023-06-09 11:30:24 +09:00
property_contexts
Add missing properties to microdroid
2023-06-09 11:30:24 +09:00
roles_decl
seapp_contexts
security_classes
[dice] Remove all the sepolicy relating the hal service dice
2023-02-24 08:34:26 +00:00
shell.te
Remove redundant allows
2023-07-26 17:12:23 +01:00
statsd.te
su.te
Adb root is supported in Microdroid on user builds
2022-12-06 22:30:36 +09:00
toolbox.te
traced.te
Add selinux rules for perfetto daemones
2023-03-14 15:07:54 +00:00
traced_probes.te
Add selinux rules for perfetto daemones
2023-03-14 15:07:54 +00:00
ueventd.te
Allow ueventd to access device-mapper.
2023-05-17 11:07:19 -07:00
users
zipfuse.te
Allow apkdmverity/zipfuse to write to kmsg_debug
2022-11-22 10:13:48 +09:00
faa538dbfc