c423b1aae888296edc70dc4367d93a1314c61fa9 - fp2-dev/platform/external/sepolicy

commit	c423b1aae888296edc70dc4367d93a1314c61fa9	[log] [tgz]
author	Stephen Smalley <sds@tycho.nsa.gov>	Tue Oct 07 13:46:59 2014 -0400
committer	Unsuk Jung <unsuk@google.com>	Thu Feb 05 07:42:30 2015 +0000
tree	100951f47e224f8fb593a7264ff41f37a49d2a9c
parent	6f201ddc79f5badfbe0e0a6c5d9d9c4a94f4e8a4 [diff]

Add neverallow checking to sepolicy-analyze.

See NEVERALLOW CHECKING in tools/README for documentation.

Depends on change I45b3502ff96b1d093574e1fecff93a582f8d00bd
for libsepol to support reporting all neverallow failures.

Cherry-pick of commit: 59906bf893c6372c91f19ca7e76a6468ddd14bd7
with build-fix from commit: 74bbf703df6ddedbd7aab9ae099fd7c90dc04048
added manually.

Bug: 19191637

Change-Id: I1c18fa854b3c5f5e05d5dc42d9006c5fdacebdc3
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>

tools/README[diff]
tools/sepolicy-analyze.c[diff]

2 files changed

tree: 100951f47e224f8fb593a7264ff41f37a49d2a9c

tools/
access_vectors
adbd.te
Android.mk
app.te
attributes
binderservicedomain.te
bluetooth.te
bootanim.te
clatd.te
debuggerd.te
device.te
dex2oat.te
dhcp.te
dnsmasq.te
domain.te
drmserver.te
dumpstate.te
file.te
file_contexts
fs_use
genfs_contexts
global_macros
gpsd.te
hci_attach.te
healthd.te
hostapd.te
init.te
init_shell.te
initial_sid_contexts
initial_sids
inputflinger.te
install_recovery.te
installd.te
isolated_app.te
kernel.te
keys.conf
keystore.te
lmkd.te
logd.te
mac_permissions.xml
mdnsd.te
mediaserver.te
mls
mls_macros
mtp.te
net.te
netd.te
nfc.te
NOTICE
platform_app.te
policy_capabilities
port_contexts
ppp.te
property.te
property_contexts
racoon.te
radio.te
README
recovery.te
rild.te
roles
runas.te
sdcardd.te
seapp_contexts
security_classes
selinux-network.sh
service.te
service_contexts
servicemanager.te
shared_relro.te
shell.te
su.te
surfaceflinger.te
system_app.te
system_server.te
te_macros
tee.te
ueventd.te
unconfined.te
uncrypt.te
untrusted_app.te
users
vdc.te
vold.te
watchdogd.te
wpa.te
zygote.te