Add SEPolicy for PRNG seeder daemon. Manual testing protocol: * Verify prng_seeder daemon is running and has the correct label (via ps -Z) * Verify prng_seeder socket present and has correct label (via ls -Z) * Verify no SELinux denials * strace a libcrypto process and verify it reads seeding data from prng_seeder (e.g. strace bssl rand -hex 1024) * strace seeder daemon to observe incoming connections (e.g. strace -f -p `pgrep prng_seeder`) * Kill daemon, observe that init restarts it * strace again and observe clients now seed from new instance Bug: 243933553 Test: Manual - see above Change-Id: I0a7e339115a2cf6b819730dcf5f8b189a339c57d

commit: e6da3b80d139d01ca36a96514dc0a0483b5dfc8d [log] [tgz]
author: Pete Bentley <prb@google.com> Fri Sep 16 15:31:39 2022 +0100
committer: Pete Bentley <prb@google.com> Thu Sep 22 15:13:20 2022 +0000
tree: 19ade84b368358f8b8d2d9031627ffeb3eb955e3
parent: 397e5765e353f0e0bbf2103d133885d9119d2de7 [diff] [blame]
diff --git a/private/init.te b/private/init.te
index 9e50bd4..f03a138 100644
--- a/private/init.te
+++ b/private/init.te

@@ -109,6 +109,9 @@
 # Allow accessing /sys/kernel/tracing/instances/bootreceiver to set up tracing.
 allow init debugfs_bootreceiver_tracing:file w_file_perms;
 
+# PRNG seeder daemon socket is created and listened on by init before forking.
+allow init prng_seeder:unix_stream_socket { create bind listen };
+
 # Devices with kernels where CONFIG_HIST_TRIGGERS isn't enabled will
 # attempt to write a non exisiting 'synthetic_events' file, when setting
 # up synthetic events. This is a no-op in tracefs.
commit	e6da3b80d139d01ca36a96514dc0a0483b5dfc8d	[log] [tgz]
author	Pete Bentley <prb@google.com>	Fri Sep 16 15:31:39 2022 +0100
committer	Pete Bentley <prb@google.com>	Thu Sep 22 15:13:20 2022 +0000
tree	19ade84b368358f8b8d2d9031627ffeb3eb955e3
parent	397e5765e353f0e0bbf2103d133885d9119d2de7 [diff] [blame]