Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 668e74f6f45b2c6cf6494e9d8c635ce8528b86db^! / . / tests / policy.py
commit668e74f6f45b2c6cf6494e9d8c635ce8528b86db[log] [tgz]
authorAlan Stokes <alanstokes@google.com>Thu Nov 12 18:08:18 2020 +0000
committerAlan Stokes <alanstokes@google.com>Thu Nov 12 18:08:18 2020 +0000
tree6270b15723a09ebfe1b837c8eb5492ff6b87d747
parent9f7d1ff0f1f41ea2dfd42e1a10b2af4da6aa170b [diff] [blame]
Exempt app_data_file_type from neverallow rules.

We need to be able to access app data files from core domains such as
installd even for vendor apps. Those file types should not be
core_data_file_type, so we explicitly exempty app_data_file_type as
well as core_data_file_type from the relevant neverallows.

To prevent misuse of the attribute, add a test to check it is not
applied to anything in file_contexts. Exempt the existing violators in
system policy for now.

Test: Builds
Test: Adding a type with just "file_type, data_file_type, app_data_file_type" works
Test: New test successfully catches  violators.
Bug: 171795911
Change-Id: I07bf3ec3db615f8b7a33d8235da5e6d8e2508975

diff --git a/tests/policy.py b/tests/policy.py
index d0ef6c4..40229b8 100644
--- a/tests/policy.py
+++ b/tests/policy.py

@@ -52,9 +52,9 @@
     __policydbP = None
     __BUFSIZE = 2048
 
-    def AssertPathTypesDoNotHaveAttr(self, MatchPrefix, DoNotMatchPrefix, Attr):
+    def AssertPathTypesDoNotHaveAttr(self, MatchPrefix, DoNotMatchPrefix, Attr, ExcludedTypes = []):
         # Query policy for the types associated with Attr
-        TypesPol = self.QueryTypeAttribute(Attr, True)
+        TypesPol = self.QueryTypeAttribute(Attr, True) - set(ExcludedTypes)
         # Search file_contexts to find types associated with input paths.
         TypesFc, Files = self.__GetTypesAndFilesByFilePathPrefix(MatchPrefix, DoNotMatchPrefix)
         violators = TypesFc.intersection(TypesPol)