Gitiles
Code Review Sign In
LeafOS / LeafOS-Project / android_system_sepolicy / 6634a1080e6617854d0b29bc65bb1c852ad3d5b6
commit6634a1080e6617854d0b29bc65bb1c852ad3d5b6[log] [tgz]
authorNick Kralevich <nnk@google.com>Fri Jul 12 18:45:56 2013 -0700
committerNick Kralevich <nnk@google.com>Sat Jul 13 18:46:03 2013 -0700
treea7a31f6dff9eff43540f4ccd8e0a20ca754f2843
parent748fdef626d1dda2a0a727ea35d85d04363f5307 [diff]
untrusted_app.te / isolated_app.te / app.te first pass

This is my first attempt at creating an enforcing SELinux domain for
apps, untrusted_apps, and isolated_apps. Much of these rules are based on the
contents of app.te as of commit 11153ef34928ab9d13658606695cba192aa03e21
with extensive modifications, some of which are included below.

* Allow communication with netd/dnsproxyd, to allow netd to handle
  dns requests
* Allow binder communications with the DNS server
* Allow binder communications with surfaceflinger
* Allow an app to bind to tcp/udp ports
* Allow all domains to read files from the root partition, assuming
  the DAC allows access.

In addition, I added a bunch of "neverallow" rules, to assert that
certain capabilities are never added.

This change has a high probability of breaking someone, somewhere.
If it does, then I'm happy to fix the breakage, rollback this change,
or put untrusted_app into permissive mode.

Change-Id: I83f220135d20ab4f70fbd7be9401b5b1def1fe35
4 files changed
tree: a7a31f6dff9eff43540f4ccd8e0a20ca754f2843
  1. tools/
  2. access_vectors
  3. adbd.te
  4. Android.mk
  5. app.te
  6. attributes
  7. bluetooth.te
  8. bluetoothd.te
  9. dbusd.te
  10. debuggerd.te
  11. device.te
  12. dhcp.te
  13. dnsmasq.te
  14. domain.te
  15. drmserver.te
  16. file.te
  17. file_contexts
  18. fs_use
  19. genfs_contexts
  20. global_macros
  21. gpsd.te
  22. hci_attach.te
  23. hostapd.te
  24. init.te
  25. init_shell.te
  26. initial_sid_contexts
  27. initial_sids
  28. installd.te
  29. isolated_app.te
  30. kernel.te
  31. keys.conf
  32. keystore.te
  33. mac_permissions.xml
  34. media_app.te
  35. mediaserver.te
  36. mls
  37. mls_macros
  38. mtp.te
  39. net.te
  40. netd.te
  41. nfc.te
  42. NOTICE
  43. ping.te
  44. platform_app.te
  45. policy_capabilities
  46. port_contexts
  47. ppp.te
  48. property.te
  49. property_contexts
  50. qemud.te
  51. racoon.te
  52. radio.te
  53. README
  54. release_app.te
  55. rild.te
  56. roles
  57. runas.te
  58. sdcardd.te
  59. seapp_contexts
  60. security_classes
  61. selinux-network.sh
  62. servicemanager.te
  63. shared_app.te
  64. shell.te
  65. su.te
  66. su_user.te
  67. surfaceflinger.te
  68. system.te
  69. te_macros
  70. tee.te
  71. ueventd.te
  72. unconfined.te
  73. untrusted_app.te
  74. users
  75. vold.te
  76. watchdogd.te
  77. wpa_supplicant.te
  78. zygote.te