Commit Graph

82 Commits

Author SHA1 Message Date
topjohnwu
feec3e8255 Use macro 2017-05-01 01:57:00 +08:00
topjohnwu
3e106a9dc5 Add version info 2017-04-28 03:24:49 +08:00
topjohnwu
9de3c582c0 Fix support for older Android versions 2017-04-22 06:28:56 +08:00
topjohnwu
45cff2b51b Add xperm rules for Android O 2017-04-20 04:31:29 +08:00
topjohnwu
670397a73e Add extended permission support 2017-04-20 04:04:09 +08:00
topjohnwu
272eb37e9a Several improvments and fixes 2017-04-20 02:16:52 +08:00
topjohnwu
ca79e58ab9 More Android O rules 2017-04-18 21:29:52 +08:00
topjohnwu
7f6cd5e469 Do not auto transit 2017-04-17 16:30:58 +08:00
topjohnwu
e99185f011 Release the file after reading 2017-04-16 04:11:14 +08:00
topjohnwu
5c662f1230 Add Android O rules 2017-04-16 04:11:02 +08:00
topjohnwu
a65c7ee2fc Integrate with unified daemon 2017-04-16 02:29:42 +08:00
topjohnwu
838b2757eb Separate public and private APIs 2017-04-15 19:26:29 +08:00
topjohnwu
7bb8b9039c Update to new format from libsepol 2017-04-05 09:13:09 +08:00
topjohnwu
cd498711bc Adjustments for unified binary 2017-04-05 06:00:42 +08:00
topjohnwu
dc9670c439 Allow Samsung setprop policy 2017-03-30 02:53:46 +08:00
topjohnwu
03c8079858 Add --magisk option 2017-03-30 02:24:16 +08:00
topjohnwu
0cfc527328 Complete minimal patch 2017-03-30 02:02:39 +08:00
topjohnwu
f66a820e14 Reduce macro rules 2017-03-27 07:15:54 +08:00
topjohnwu
2e6bea23ac Add rule 2017-03-19 04:54:59 +08:00
topjohnwu
ca75dd0728 Rename project 2017-03-18 16:52:38 +08:00
topjohnwu
9f35fa0fa3 Add libsepol 2017-03-02 04:08:04 +08:00
topjohnwu
2fe4d97061 Cleanup Android.mk 2017-02-28 17:49:40 +08:00
topjohnwu
6ff45a754d Delete README.txt 2017-02-07 21:45:21 +08:00
topjohnwu
32d2df0f08 Add missing messages 2017-02-07 06:22:59 +08:00
topjohnwu
443af5f760 Improve main 2017-02-04 17:30:34 +08:00
topjohnwu
0e35350160 Add parser for all commands and complete usage 2017-02-04 06:38:57 +08:00
topjohnwu
10bf497cda Critical bug fix! Reset allocated memory
This bus has been there for a long time.
memset the newly allocated memory to prevent issues.
2017-02-04 04:25:41 +08:00
topjohnwu
76eb629fc2 Merge attribute allow with type allow 2017-02-04 04:24:22 +08:00
topjohnwu
91de738563 Whole new command-line 2017-02-04 01:58:15 +08:00
topjohnwu
abaffc1908 Rename to minimal rules 2017-02-01 23:07:37 +08:00
topjohnwu
ea61d5c1a5 Remove su_daemon domain 2017-02-01 23:04:01 +08:00
topjohnwu
9a14931175 Update rules 2017-02-01 06:00:55 +08:00
topjohnwu
6900c197cd Project restructure 2017-02-01 00:51:45 +08:00
topjohnwu
7dea682713 Add Android.mk 2016-12-30 06:02:26 +08:00
topjohnwu
f760a9d0c2 Add rules to allow chcon to rootfs 2016-11-12 03:03:59 +08:00
topjohnwu
be1dcb7264 Update built-in rules 2016-11-03 01:20:35 +08:00
topjohnwu
3a0df56605 More rules 2016-10-02 23:03:44 +08:00
topjohnwu
98cdee7f03 Add Magisk rules 2016-10-02 22:48:49 +08:00
topjohnwu
f140f5f14b Add rules 2016-09-17 16:53:51 +08:00
topjohnwu
c69db035ee Add built-in rules 2016-09-13 06:34:20 +08:00
topjohnwu
60a7eaf2bb Refacter add_rule to auto mode 2016-09-13 06:34:13 +08:00
topjohnwu
3f43567c8f Delete files not for ndk 2016-09-13 06:33:48 +08:00
topjohnwu
b56a757f2e Add live patch 2016-08-18 04:50:56 +08:00
topjohnwu
f7c0499158 Add auto allow patch support
The patch will work like this:

./sepolicy-inject --auto -P sepolicy
This will allow all possible transition (just like selinux disabled)

./sepolicy-inject --auto -s su -P sepolicy
This will allow all transitions from su to any type

./sepolicy-inject --auto -t su -P sepolicy
This will allow all transitions from any type to su

./sepolicy-inject --auto -c file -P sepolicy
This will allow any transitions involving the class file

./sepolicy-inject --auto -s su -t system_data_file -P sepolicy
This will allow all transitions from su to system_data_file

You should get the logic now :)
2016-08-12 02:50:50 +08:00
topjohnwu
9ebcefee00 Slight refactor 2016-08-11 23:13:10 +08:00
Pierre-Hugues Husson
957e319649 Add --not option to add a DENY rule (or rather delete allow) 2016-02-02 22:17:34 +01:00
Pierre-Hugues Husson
a8978a0d4d Update README 2015-11-14 17:02:09 +01:00
Pierre-Hugues Husson
10712c5ec0 Add -e option to know if a type/class exists 2015-11-14 16:44:13 +01:00
Pierre-Hugues Husson
83c39f57f0 Wrong check 2015-11-14 16:18:07 +01:00
Pierre-Hugues Husson
173757cfa2 Add possibility, when adding a rule, to have target of the format =ATTRIBUTE-remove1-remove2 2015-11-13 00:56:52 +01:00