Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 2638cd2c965dd5f4b762b0c4d3717aa71de2c280^2..2638cd2c965dd5f4b762b0c4d3717aa71de2c280 / .
commit2638cd2c965dd5f4b762b0c4d3717aa71de2c280[log] [tgz]
authorTreehugger Robot <treehugger-gerrit@google.com>Thu Jan 25 04:07:24 2018 +0000
committerGerrit Code Review <noreply-gerritcodereview@google.com>Thu Jan 25 04:07:24 2018 +0000
tree436b5d3eabfb1781f62ebac1ad727468de9e27d0
parentfbe91b7ee2bf5ad04cefa9b34f6d22b71e12a1c7 [diff]
parent612350e34f3dd6eb2f82f4df679dcfc5bd124e05 [diff]
Merge "Add sepolicy for radio.config"
diff --git a/private/bug_map b/private/bug_map
index 2b970dd..6bc55e5 100644
--- a/private/bug_map
+++ b/private/bug_map

@@ -9,3 +9,4 @@
 surfaceflinger unlabeled dir 68864350
 hal_graphics_composer_default unlabeled dir 68864350
 bootanim unlabeled dir 68864350
+idmap installd file 72444813

diff --git a/private/file_contexts b/private/file_contexts
index b2a22a2..0afca24 100644
--- a/private/file_contexts
+++ b/private/file_contexts

@@ -325,6 +325,11 @@
 
 
 #############################
+# Product files
+#
+/(product|system/product)(/.*)?               u:object_r:system_file:s0
+
+#############################
 # Data files
 #
 # NOTE: When modifying existing label rules, changes may also need to

diff --git a/private/untrusted_app_all.te b/private/untrusted_app_all.te
index a43f04c..5918f63 100644
--- a/private/untrusted_app_all.te
+++ b/private/untrusted_app_all.te

@@ -41,6 +41,15 @@
 allow untrusted_app_all shell_data_file:file r_file_perms;
 allow untrusted_app_all shell_data_file:dir r_dir_perms;
 
+# Allow traceur to pass file descriptors through a content provider to untrusted apps
+# for the purpose of sharing files through e.g. gmail
+allow untrusted_app_all trace_data_file:file { getattr read };
+
+# untrusted apps should not be able to open trace data files, they should depend
+# upon traceur to pass a file descriptor
+neverallow untrusted_app_all trace_data_file:dir *;
+neverallow untrusted_app_all trace_data_file:file { no_w_file_perms open };
+
 # Allow to read staged apks.
 allow untrusted_app_all { apk_tmp_file apk_private_tmp_file }:file {read getattr};
 

diff --git a/public/vold.te b/public/vold.te
index f754db7..a490e06 100644
--- a/public/vold.te
+++ b/public/vold.te

@@ -11,7 +11,7 @@
 r_dir_file(vold, proc_net)
 r_dir_file(vold, sysfs_type)
 # XXX Label sysfs files with a specific type?
-allow vold sysfs:file w_file_perms;
+allow vold sysfs:file w_file_perms; # writing to /sys/*/uevent during coldboot.
 allow vold sysfs_dm:file w_file_perms;
 allow vold sysfs_usb:file w_file_perms;
 allow vold sysfs_zram_uevent:file w_file_perms;
@@ -89,9 +89,6 @@
 allow vold domain:process { signal sigkill };
 allow vold self:global_capability_class_set { sys_ptrace kill };
 
-# XXX Label sysfs files with a specific type?
-allow vold sysfs:file rw_file_perms;
-
 allow vold kmsg_device:chr_file rw_file_perms;
 
 # Run fsck in the fsck domain.