Make kmsg_device mlstrustedobject. Few domains are granted access to this, but they should have access from any user. Also add some neverallows to prevent misuse. Bug: 170622707 Test: presubmits Change-Id: Iacbe7b0525604f2339f8bf31c105af738bc3cd75

commit: a0518b7fdbef8ef7932c7882c25565d4d29cc880 [log] [tgz]
author: Alan Stokes <alanstokes@google.com> Tue Oct 27 11:28:00 2020 +0000
committer: Alan Stokes <alanstokes@google.com> Wed Oct 28 09:41:07 2020 +0000
tree: 90da80f6946c645acbbdd3783cba3e17bd9f01fa
parent: 62ddcf0580576c20cbdc3bab96ad75a5ffe31172 [diff] [blame]
diff --git a/private/app_neverallows.te b/private/app_neverallows.te
index 3586fff..cf0fa67 100644
--- a/private/app_neverallows.te
+++ b/private/app_neverallows.te

@@ -19,6 +19,9 @@
 # Receive or send generic netlink messages
 neverallow all_untrusted_apps domain:netlink_socket *;
 
+# Read or write kernel printk buffer
+neverallow all_untrusted_apps kmsg_device:chr_file no_rw_file_perms;
+
 # Too much leaky information in debugfs. It's a security
 # best practice to ensure these files aren't readable.
 neverallow all_untrusted_apps { debugfs_type -debugfs_kcov }:file read;
commit	a0518b7fdbef8ef7932c7882c25565d4d29cc880	[log] [tgz]
author	Alan Stokes <alanstokes@google.com>	Tue Oct 27 11:28:00 2020 +0000
committer	Alan Stokes <alanstokes@google.com>	Wed Oct 28 09:41:07 2020 +0000
tree	90da80f6946c645acbbdd3783cba3e17bd9f01fa
parent	62ddcf0580576c20cbdc3bab96ad75a5ffe31172 [diff] [blame]