Lines Matching refs:untrusted

2 ### neverallow rules for untrusted app domains
25 # Do not allow untrusted apps to register services.
30 # Do not allow untrusted apps to use VendorBinder
34 # Do not allow untrusted apps to connect to the property service
41 # but otherwise disallow untrusted apps from reading this property.
61 # Do not allow untrusted apps to invoke dex2oat. This was historically required
70 # Do not allow untrusted apps to be assigned mlstrustedsubject.
77 # and an untrusted app is allowed fork permission to itself.
80 # Do not allow untrusted apps to hard link to any files.
81 # In particular, if an untrusted app links to other app data
84 # bugs, so we want to ensure untrusted apps never have this
88 # Do not allow untrusted apps to access network MAC address file
115 # Do not allow untrusted apps access to /cache
119 # Do not allow untrusted apps to create/unlink files outside of its sandbox,
140 # No untrusted component should be touching /dev/fuse
143 # Do not allow untrusted apps to directly open the tun_device
197 # Do not allow untrusted apps access to preloads data files
204 # Do not permit untrusted apps to perform actions on HwBinder service_manager
304 # SELinux is not an API for untrusted apps to use