73f7e76837c1f3d6a1360d2d4a06c9037d7addc1 |
|
10-Jun-2015 |
dcashman <dcashman@google.com> |
sepolicy-analyze: use headers from common selinux project. Point to external/selinux/libsepol instead of external/libsepol. (cherry picked from commit 96136d847d24ceff72c9a401717fb99366003498) Change-Id: I09c33a4cbd7b4cd3ef2341c042259b96c0b59372
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|
ae6969440bcd1587b8df20e246d63329d17c0a75 |
|
13-Mar-2015 |
dcashman <dcashman@google.com> |
Fix sepolicy-analyze libc++.so loading issue w/CTS. Addresses the following error when running CTS on master: junit.framework.AssertionFailedError: The following errors were encountered when validating the SELinuxneverallow rule: neverallow { appdomain -bluetooth } self:capability *; /tmp/SELinuxHostTest5593810182495331783.tmp: error while loading shared libraries: libc++.so: cannot open shared object file: No such file or directory Also indicate that none of the sepolicy tools need c++ std lib. (cherry-pick of 28acbeab18f6083299c07f9ebe769d22e49f8107) Bug: 19566396 Change-Id: Ieb380d05ae896a8146b80f94fe3b3211178705bb
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|
0d3bf4beac7e30d47e3520e3b51b43f95cd7c219 |
|
17-Mar-2015 |
Dan Albert <danalbert@google.com> |
Revert "Fix sepolicy-analyze libc++.so loading issue w/CTS." This is causing more harm than good. We'll just make these all link libc++ again and work out the CTS issues if they still exist. Bug: 19778891 This reverts commit 3812cf58cbf4e97006c172152de6aca209d185e9. Change-Id: Iaea8f6acb147da4275633a760ccb32951db7f8b6
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|
f0852340af6bdd9b21b28ed2b79b89e115b398e6 |
|
17-Mar-2015 |
Dan Albert <danalbert@google.com> |
Revert "Don't use address sanitizer for selinux tools." This is causing more harm than good. We'll just make these all link libc++ again (another revert) and work out the CTS issues if they still exist. Bug: 19778891 This reverts commit a5113a15009d5501e6ce5d14e781e0e691d80864. Change-Id: I35a4c93dae4abb66e3525451d5ce01e33a540895
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|
a5113a15009d5501e6ce5d14e781e0e691d80864 |
|
17-Mar-2015 |
Dan Albert <danalbert@google.com> |
Don't use address sanitizer for selinux tools. Address sanitizer requires using libc++ (apparently). We removed libc++ from these projects since they were C and the SDK/CTS was not able to find libc++. If we're interested in continuing to use ASAN on these tools (probably), we should turn libc++ back on once we're sure CTS won't die. Bug: 19778891 Change-Id: I3c1913171a15396ead73277ec1186fead730f66d
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|
3812cf58cbf4e97006c172152de6aca209d185e9 |
|
13-Mar-2015 |
dcashman <dcashman@google.com> |
Fix sepolicy-analyze libc++.so loading issue w/CTS. Addresses the following error when running CTS on master: junit.framework.AssertionFailedError: The following errors were encountered when validating the SELinuxneverallow rule: neverallow { appdomain -bluetooth } self:capability *; /tmp/SELinuxHostTest5593810182495331783.tmp: error while loading shared libraries: libc++.so: cannot open shared object file: No such file or directory Also indicate that none of the sepolicy tools need c++ std lib. Bug: 19617220 Change-Id: I713b3cbd1220655413d399c7cd2b0b50459a5485
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|
0233cd800efc7af1828bb69d236c8371ca238c66 |
|
13-Mar-2015 |
Stephen Smalley <sds@tycho.nsa.gov> |
sepolicy-analyze: Add attribute command. Add an attribute command to sepolicy-analyze for displaying the list of types associated with an attribute in a policy. This is for use by CTS to check what domains and types are associated with certain attributes such as mlstrustedsubject and mlstrustedobject. Change-Id: Ie19361c02feb1ad14ce36862c6aace9e66c422bb Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|
a7b2c5f4ab5fc393dd75af934e5daa13e2ac70a6 |
|
11-Mar-2015 |
Stephen Smalley <sds@tycho.nsa.gov> |
sepolicy-analyze: Implement booleans test. Implement the booleans test in sepolicy-analyze so that we can move the no-booleans check from the SELinuxTest to the SELinuxHostTest along with the other policy checks. Change-Id: I95d7ad34da10c354470f43734d34a6ec631a7b4e Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|
ef4fd30672ebfeac1a0ad04f65deb7b38050b818 |
|
20-Oct-2014 |
dcashman <dcashman@google.com> |
Accept command-line input for neverallow-check. Also, divide each sepolicy-analyze function into its own component for simplified command-line parsing and potentially eventual modularization. Bug: 18005561 Change-Id: I45fa07d776cf1bec7d60dba0c03ee05142b86c19
/external/sepolicy/tools/sepolicy-analyze/Android.mk
|