recovery.te: add /data neverallow rules Recovery should never be accessing files from /data. In particular, /data may be encrypted, and the files within /data will be inaccessible to recovery, because recovery doesn't know the decryption key. Enforce write/execute restrictions on recovery. We can't tighten it up further because domain.te contains some /data read-only access rules, which shouldn't apply to recovery but do. Create neverallow_macros, used for storing permission macros useful for neverallow rules. Standardize recovery.te and property_data_file on the new macros. Change-Id: I02346ab924fe2fdb2edc7659cb68c4f8dffa1e88

commit: a17a266e7e466d281f0730449c492de46390fc76 [log] [tgz]
author: Nick Kralevich <nnk@google.com> Wed Nov 05 15:30:41 2014 -0800
committer: Nick Kralevich <nnk@google.com> Wed Nov 05 15:30:41 2014 -0800
tree: e671796142bf75a4cd5d07450f087fde5664c514
parent: 3bcdec8a1eb8afe2af48550b4478fe02bf824377 [diff] [blame]
diff --git a/Android.mk b/Android.mk
index 351e81a..eae860b 100644
--- a/Android.mk
+++ b/Android.mk

@@ -83,6 +83,7 @@
                         initial_sids \
                         access_vectors \
                         global_macros \
+                        neverallow_macros \
                         mls_macros \
                         mls \
                         policy_capabilities \
commit	a17a266e7e466d281f0730449c492de46390fc76	[log] [tgz]
author	Nick Kralevich <nnk@google.com>	Wed Nov 05 15:30:41 2014 -0800
committer	Nick Kralevich <nnk@google.com>	Wed Nov 05 15:30:41 2014 -0800
tree	e671796142bf75a4cd5d07450f087fde5664c514
parent	3bcdec8a1eb8afe2af48550b4478fe02bf824377 [diff] [blame]