Split preloads into media_file and data_file Untrusted apps should only access /data/preloads/media and demo directory. Bug: 36197686 Test: Verified retail mode. Checked non-privileged APK cannot access /data/preloads Change-Id: I8e9c21ff6aba799aa31bf06893cdf60dafc04446

commit: b238fe666212ce86fe3fe1521e9692a361a53047 [log] [tgz]
author: Fyodor Kupolov <fkupolov@google.com> Tue Mar 14 11:42:03 2017 -0700
committer: Fyodor Kupolov <fkupolov@google.com> Wed Mar 15 00:49:37 2017 +0000
tree: 01eff8e974e399a8ab9812f383bf98bc4b4fbfd7
parent: 41518bec2508c85eb8797980321d3912b4598261 [diff] [blame]
diff --git a/private/app_neverallows.te b/private/app_neverallows.te
index 2f8066a..15ab764 100644
--- a/private/app_neverallows.te
+++ b/private/app_neverallows.te

@@ -97,3 +97,6 @@
 # Avoid reads from generically labeled /proc files
 # Create a more specific label if needed
 neverallow all_untrusted_apps proc:file { no_rw_file_perms no_x_file_perms };
+
+# Do not allow untrusted apps access to preloads data files
+neverallow all_untrusted_apps preloads_data_file:file no_rw_file_perms;
commit	b238fe666212ce86fe3fe1521e9692a361a53047	[log] [tgz]
author	Fyodor Kupolov <fkupolov@google.com>	Tue Mar 14 11:42:03 2017 -0700
committer	Fyodor Kupolov <fkupolov@google.com>	Wed Mar 15 00:49:37 2017 +0000
tree	01eff8e974e399a8ab9812f383bf98bc4b4fbfd7
parent	41518bec2508c85eb8797980321d3912b4598261 [diff] [blame]