Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 3df1fda5e3f9d6cd4b7c40b86bfb6c5109ca8296
commit3df1fda5e3f9d6cd4b7c40b86bfb6c5109ca8296[log] [tgz]
authorNick Kralevich <nnk@google.com>Fri Feb 26 20:06:52 2016 -0800
committerNick Kralevich <nnk@google.com>Fri Feb 26 20:50:42 2016 -0800
tree5576d39ff0c838963844b83c13614fa340e79fb1
parenta395f875876fd7598ed324e97bdf283c8e1c1139 [diff]
Don't allow permissive SELinux domains on user builds.

It's a CTS requirement that all SELinux domains be in
enforcing mode. Add the same assertion to the build system
when targeting user builds.

In particular, this avoids a situation where device integrity
checking is enabled on user builds, but permissive denials
are being generated, causing the device to unexpectedly reboot
into safe mode.

A developer wanting to put an SELinux domain into permissive
mode for userdebug/eng purposes can write the following
in their policy:

  userdebug_or_eng(`
    permissive foo;
  ')

Bug: 26902605
Bug: 27313768

(cherry picked from commit bca98efa575bedab68f2d5eaee2cd1fd1741962b)

Change-Id: If6abe1fa70c79a1fccdbdd9ff273d92de7565a73
1 file changed
tree: 5576d39ff0c838963844b83c13614fa340e79fb1
  1. tools/
  2. access_vectors
  3. adbd.te
  4. Android.mk
  5. app.te
  6. atrace.te
  7. attributes
  8. audioserver.te
  9. autoplay_app.te
  10. binderservicedomain.te
  11. blkid.te
  12. blkid_untrusted.te
  13. bluetooth.te
  14. bluetoothdomain.te
  15. bootanim.te
  16. bootstat.te
  17. cameraserver.te
  18. clatd.te
  19. CleanSpec.mk
  20. debuggerd.te
  21. device.te
  22. dex2oat.te
  23. dhcp.te
  24. dnsmasq.te
  25. domain.te
  26. domain_deprecated.te
  27. drmserver.te
  28. dumpstate.te
  29. file.te
  30. file_contexts
  31. file_contexts_asan
  32. fingerprintd.te
  33. fs_use
  34. fsck.te
  35. fsck_untrusted.te
  36. gatekeeperd.te
  37. genfs_contexts
  38. global_macros
  39. gpsd.te
  40. hci_attach.te
  41. healthd.te
  42. hostapd.te
  43. idmap.te
  44. init.te
  45. initial_sid_contexts
  46. initial_sids
  47. inputflinger.te
  48. install_recovery.te
  49. installd.te
  50. ioctl_defines
  51. ioctl_macros
  52. isolated_app.te
  53. kernel.te
  54. keys.conf
  55. keystore.te
  56. lmkd.te
  57. logd.te
  58. mac_permissions.xml
  59. mdnsd.te
  60. mediacodec.te
  61. mediadrmserver.te
  62. mediaextractor.te
  63. mediaserver.te
  64. mls
  65. mls_macros
  66. MODULE_LICENSE_PUBLIC_DOMAIN
  67. mtp.te
  68. net.te
  69. netd.te
  70. neverallow_macros
  71. nfc.te
  72. NOTICE
  73. otapreopt.te
  74. perfprofd.te
  75. platform_app.te
  76. policy_capabilities
  77. port_contexts
  78. ppp.te
  79. priv_app.te
  80. profman.te
  81. property.te
  82. property_contexts
  83. racoon.te
  84. radio.te
  85. README
  86. recovery.te
  87. rild.te
  88. roles
  89. runas.te
  90. sdcardd.te
  91. seapp_contexts
  92. security_classes
  93. service.te
  94. service_contexts
  95. servicemanager.te
  96. sgdisk.te
  97. shared_relro.te
  98. shell.te
  99. slideshow.te
  100. su.te
  101. surfaceflinger.te
  102. system_app.te
  103. system_server.te
  104. te_macros
  105. tee.te
  106. toolbox.te
  107. tzdatacheck.te
  108. ueventd.te
  109. uncrypt.te
  110. untrusted_app.te
  111. update_engine.te
  112. update_verifier.te
  113. users
  114. vdc.te
  115. vold.te
  116. watchdogd.te
  117. wpa.te
  118. zygote.te