- 20 May, 2013 1 commit
-
-
repo sync authored
This prevents denials from being generated by the base policy. Over time, these rules will be incrementally tightened to improve security. Change-Id: I4be1c987a5d69ac784a56d42fc2c9063c402de11
-
- 15 May, 2013 1 commit
-
-
repo sync authored
Bug: 4070557 Change-Id: I027f76cff6df90e9909711cb81fbd17db95233c1
-
- 09 May, 2013 1 commit
-
-
Alex Klyubin authored
klog_write/init create /dev/__kmsg__ backed by a kernel character device, keep the file descriptor, and then immediately unlink the file. Change-Id: I729d224347a003eaca29299d216a53c99cc3197c
-
- 05 Apr, 2013 3 commits
-
-
William Roberts authored
/data/security is another location that policy files can reside. In fact, these policy files take precedence over their rootfs counterparts under certain circumstances. Give the appropriate players the rights to read these policy files. Change-Id: I9951c808ca97c2e35a9adb717ce5cb98cda24c41
-
Stephen Smalley authored
Required for If8b8d66120453123c1371ce063b6f20e8b96b6ef . Change-Id: I98871b957db8b291cbbb827b5eb39b4279ce4194 Signed-off-by:
Stephen Smalley <sds@tycho.nsa.gov>
-
William Roberts authored
/data/security is another location that policy files can reside. In fact, these policy files take precedence over their rootfs counterparts under certain circumstances. Give the appropriate players the rights to read these policy files. Change-Id: I9951c808ca97c2e35a9adb717ce5cb98cda24c41
-
- 03 Apr, 2013 1 commit
-
-
Stephen Smalley authored
Required for If8b8d66120453123c1371ce063b6f20e8b96b6ef . Change-Id: I98871b957db8b291cbbb827b5eb39b4279ce4194 Signed-off-by:
Stephen Smalley <sds@tycho.nsa.gov>
-
- 23 Mar, 2013 1 commit
-
-
rpcraig authored
Add new dev_type: - ump_device : Unified Memory Provider driver. The file_contexts entry should be described on a per device basis. Minor adjustments: - tee needs netlink socket access. - ueventd needs to grant file operations. Change-Id: I915304da687d3a2b9aa417e6f91ea915bd697676 Signed-off-by:
rpcraig <rpcraig@tycho.ncsc.mil>
-
- 07 Jun, 2012 1 commit
-
-
William Roberts authored
Tested on a maguro variant.
-
- 07 Mar, 2012 1 commit
-
-
Stephen Smalley authored
-
- 12 Jan, 2012 1 commit
-
-
Stephen Smalley authored
Allow reading of properties area, which is now created before init has switched contexts. Revisit this later - we should explicitly label the properties file.
-
- 04 Jan, 2012 1 commit
-
-
Stephen Smalley authored
-