Home
last modified time | relevance | path

Searched refs:rules (Results 1 – 25 of 298) sorted by relevance

12345678910>>...12

/system/sepolicy/public/
Dtzdatacheck.te9 # can modify the /data time zone rules directories. This is to make it very
10 # clear that only these domains should modify the actual time zone rules data.
12 # not be able to modify the real rules.
13 # If other users / binaries could modify time zone rules on device this might
16 # responsible for updating time zone rules.
Dhal_configstore.te7 # As opposed to the rules of most other HALs, the different services exposed by
8 # this HAL should be restricted to different clients. Thus, the allow rules for
16 ### neverallow rules
Dgatekeeperd.te9 ### These rules should eventually be granted only when needed.
17 ### These rules should eventually be granted only when needed.
Drecovery.te4 # in neverallow rules.
7 # But the allow rules are only included in the recovery policy.
8 # Otherwise recovery is only allowed the domain rules.
139 ### neverallow rules
148 # contains a number of read-only rules that apply to all
/system/sepolicy/prebuilts/api/28.0/public/
Dtzdatacheck.te9 # can modify the /data time zone rules directories. This is to make it very
10 # clear that only these domains should modify the actual time zone rules data.
12 # not be able to modify the real rules.
13 # If other users / binaries could modify time zone rules on device this might
16 # responsible for updating time zone rules.
Dhal_configstore.te7 # As opposed to the rules of most other HALs, the different services exposed by
8 # this HAL should be restricted to different clients. Thus, the allow rules for
16 ### neverallow rules
Dgatekeeperd.te9 ### These rules should eventually be granted only when needed.
17 ### These rules should eventually be granted only when needed.
Drecovery.te4 # in neverallow rules.
7 # But the allow rules are only included in the recovery policy.
8 # Otherwise recovery is only allowed the domain rules.
139 ### neverallow rules
148 # contains a number of read-only rules that apply to all
Disolated_app.te4 ### This file defines the rules for isolated apps. An "isolated
/system/sepolicy/prebuilts/api/27.0/public/
Dtzdatacheck.te9 # can modify the /data time zone rules directories. This is to make it very
10 # clear that only these domains should modify the actual time zone rules data.
12 # not be able to modify the real rules.
13 # If other users / binaries could modify time zone rules on device this might
16 # responsible for updating time zone rules.
Dhal_configstore.te7 # As opposed to the rules of most other HALs, the different services exposed by
8 # this HAL should be restricted to different clients. Thus, the allow rules for
16 ### neverallow rules
Dgatekeeperd.te9 ### These rules should eventually be granted only when needed.
17 ### These rules should eventually be granted only when needed.
Disolated_app.te4 ### This file defines the rules for isolated apps. An "isolated
/system/sepolicy/tools/sepolicy-analyze/
DREADME10 identical with respect to allow rules, including indirect allow
11 rules via attributes and default-enabled conditional rules
18 conditional rules, audit-related rules (auditallow or dontaudit),
37 Displays duplicate allow rules, i.e. pairs of allow rules that
44 -foo -bar is expanded to individual allow rules by the policy
46 duplicate rules as a natural side effect and can be ignored.
80 Check whether the sepolicy file violates any of the neverallow rules
83 m4 macro expansion of the rules from a .te file. You can use an entire
87 quickly checking an individual expanded rule or group of rules. If there are
95 the policy from which the neverallow rules were taken and the policy
[all …]
Dneverallow.c482 char *rules = 0, *file = 0; in neverallow_func() local
502 rules = optarg; in neverallow_func()
513 if (!(rules || file) || (rules && file)){ in neverallow_func()
520 return check_neverallows_string(policydb, rules, strlen(rules)); in neverallow_func()
/system/sepolicy/tests/
Dsearchpolicy.py63 rules = [] variable
66 rules.append("allow " + r.sctx + " " + r.tctx + ":" + r.tclass + " { " +
69 rules.append("allow " + r.sctx + " " + r.tctx + ":" + r.tclass + " " +
72 for r in sorted(rules):
/system/sepolicy/prebuilts/api/26.0/public/
Dhal_configstore.te5 # As opposed to the rules of most other HALs, the different services exposed by
6 # this HAL should be restricted to different clients. Thus, the allow rules for
Dgatekeeperd.te9 ### These rules should eventually be granted only when needed.
17 ### These rules should eventually be granted only when needed.
Drecovery.te4 # in neverallow rules.
7 # But the allow rules are only included in the recovery policy.
8 # Otherwise recovery is only allowed the domain rules.
129 ### neverallow rules
138 # contains a number of read-only rules that apply to all
/system/sepolicy/private/
Duntrusted_app_27.te4 ### This file defines the rules for untrusted apps running with
7 ### This file defines the rules for untrusted apps.
Dnetutils_wrapper.te21 # For vendor code that update the iptables rules at runtime. They need to reload
22 # the whole chain including the xt_bpf rules. They need to access to the pinned
/system/hardware/interfaces/net/netd/testutils/
DVtsHalNetNetdTestUtils.cpp78 std::vector<std::string> rules = listIpRules(version); in countMatchingIpRules() local
79 for (const auto& rule : rules) { in countMatchingIpRules()
/system/sepolicy/prebuilts/api/28.0/private/
Duntrusted_app_27.te4 ### This file defines the rules for untrusted apps running with
7 ### This file defines the rules for untrusted apps.
Dnetutils_wrapper.te21 # For vendor code that update the iptables rules at runtime. They need to reload
22 # the whole chain including the xt_bpf rules. They need to access to the pinned
/system/timezone/
DREADME.android1 This directory contains code, tools and data related to time zone rules data
9 update time zone rules on Android devices. See distro/README for details.
12 - Contains files that provide inputs to the time zone rules update process.
17 - Contains some derived files from the time zone rules update process and
51 IANA rules data changes
54 When IANA release new time zone rules, the update process is:
81 to update a device's time zone rules by overlaying files into locations in /

12345678910>>...12