vendor_microdroid_file shouldn't be overwrited If malicious process in the host overwrites microdroid vendor image, unexpected behavior could be happened. Bug: 285854379 Test: adb shell /apex/com.android.virt/bin/vm run-microdroid --vendor /vendor/etc/avf/microdroid/microdroid_vendor.img Change-Id: I18ce5112b75b2793c85bb59c137715beb602a5f3

commit: ed25d9436d747d00d09951716e1313bc6e8e0e23 [log] [tgz]
author: Seungjae Yoo <seungjaeyoo@google.com> Mon Nov 27 15:01:40 2023 +0900
committer: Seungjae Yoo <seungjaeyoo@google.com> Tue Nov 28 11:20:18 2023 +0900
tree: 34281e5ee20dcdaef4aa16f96370d105ffab4a6a
parent: 8c225b0c73216db952f879dc744fde5f38aae591 [diff]
diff --git a/private/virtualizationmanager.te b/private/virtualizationmanager.te
index 871d3f2..40d95c6 100644
--- a/private/virtualizationmanager.te
+++ b/private/virtualizationmanager.te

@@ -97,6 +97,10 @@
 # Allow virtualizationmanager to read microdroid related files in vendor partition
 r_dir_file(virtualizationmanager, vendor_microdroid_file)
 
+# Do not allow writing vendor_microdroid_file from any process.
+neverallow { domain recovery_only(`userdebug_or_eng(`-fastbootd')') } vendor_microdroid_file:dir no_w_dir_perms;
+neverallow { domain recovery_only(`userdebug_or_eng(`-fastbootd')') } vendor_microdroid_file:file no_w_file_perms;
+
 # Allow reading files under /proc/[crosvm pid]/, for collecting CPU & memory usage inside VM.
 r_dir_file(virtualizationmanager, crosvm);
commit	ed25d9436d747d00d09951716e1313bc6e8e0e23	[log] [tgz]
author	Seungjae Yoo <seungjaeyoo@google.com>	Mon Nov 27 15:01:40 2023 +0900
committer	Seungjae Yoo <seungjaeyoo@google.com>	Tue Nov 28 11:20:18 2023 +0900
tree	34281e5ee20dcdaef4aa16f96370d105ffab4a6a
parent	8c225b0c73216db952f879dc744fde5f38aae591 [diff]