Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 84b96a6b689801f01d757cda51f9bc2f916deaee
commit84b96a6b689801f01d757cda51f9bc2f916deaee[log] [tgz]
authorJeff Vander Stoep <jeffv@google.com>Mon Mar 20 14:52:58 2017 -0700
committerJeff Vander Stoep <jeffv@google.com>Tue Mar 21 12:16:31 2017 -0700
treebc574cb5aa22f396f872073ab9c3d012467645fc
parent00a03d424fbaf96c62863eae8a5cf279fcd7b8ab [diff]
Enforce one HAL per domain.

HALs are intended to be limited responsibility and thus limited
permission. In order to enforce this, place limitations on:
1. What processes may transition into a HAL - currently only init
2. What methods may be used to transition into a HAL - no using
   seclabel
3. When HALs exec - only allow exec with a domain transition.

Bug: 36376258
Test: Build aosp_marlin, aosp_bullhead, aosp_dragon. Neverallow rules
      are compile time assertions, so building is a sufficient test.

Change-Id: If4df19ced730324cf1079f7a86ceba7c71374131
1 file changed
tree: bc574cb5aa22f396f872073ab9c3d012467645fc
  1. private/
  2. public/
  3. reqd_mask/
  4. tools/
  5. vendor/
  6. Android.mk
  7. CleanSpec.mk
  8. MODULE_LICENSE_PUBLIC_DOMAIN
  9. NOTICE
  10. PREUPLOAD.cfg
  11. README