tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_system_sepolicy/private
History
Dan Cashman 3e307a4de5 Remove neverallow preventing hwservice access for apps. 
Same-process HALs are forbidden except for very specific HALs that have
been provided and whitelisted by AOSP.  As a result, a vendor extension
HAL may have a need to be accessed by untrusted_app.  This is still
discouraged, and the existing AOSP hwservices are still forbidden, but
remove the blanket prohibition.  Also indicate that this is temporary,
and that partners should expect to get exceptions to the rule into AOSP
in the future.

Bug: 62806062
Test: neverallow-only change builds.  Verify new attribute is in policy.
Change-Id: I6d3e659147d509a3503c2c9e0b6bb9016cc75832
2017-06-21 12:30:36 -07:00
..
access_vectors Remove vndservice_manager object classes. 2017-04-18 12:40:44 -07:00
adbd.te Allow adbd and shell to read /proc/config.gz 2017-05-08 14:40:25 -07:00
app.te Add rules for vfat for sdcardfs 2017-06-16 19:47:33 +00:00
app_neverallows.te Remove neverallow preventing hwservice access for apps. 2017-06-21 12:30:36 -07:00
asan_extract.te Sepolicy: Add ASAN-Extract 2017-04-05 13:09:29 -07:00
atrace.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
attributes Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
audioserver.te Allow audioserver to talk to bluetooth server 2017-04-28 20:02:48 +00:00
binder_in_vendor_violators.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
binderservicedomain.te Move binderservicedomain policy to private 2017-02-08 09:09:39 -08:00
blkid.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
blkid_untrusted.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
bluetooth.te Allow Bluetooth sys_nice and system_server setsched for Bluetooth HAL 2017-04-26 11:48:00 -07:00
bluetoothdomain.te Move bluetoothdomain policy to private 2017-02-06 15:32:08 -08:00
bootanim.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
bootstat.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
bufferhubd.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
cameraserver.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
charger.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
clatd.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
cppreopts.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
crash_dump.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
dex2oat.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
dexoptanalyzer.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
dhcp.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
dnsmasq.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
domain.te Add keystore_key:attest_unique_id to priv_app. 2017-04-12 06:39:14 -06:00
domain_deprecated.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
drmserver.te Tighten restrictions on core <-> vendor socket comms 2017-03-31 09:17:54 -07:00
dumpstate.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
ephemeral_app.te Allow ephemeral apps to find media.drm 2017-05-30 10:17:34 -07:00
file.te Label /proc/config.gz 2017-02-16 12:07:01 -08:00
file_contexts Add debug selinux permission to write saved_cmdlines_size. 2017-06-14 14:12:43 -07:00
file_contexts_asan Sepolicy: Add ASAN-Extract 2017-04-05 13:09:29 -07:00
fingerprintd.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
fs_use Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
fsck.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
fsck_untrusted.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
gatekeeperd.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
genfs_contexts Move sysfs cpu hotplug labeling to genfs_contexts 2017-06-05 17:01:17 -07:00
hal_allocator_default.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
halclientdomain.te Restrict access to hwservicemanager 2017-04-21 09:54:53 -07:00
halserverdomain.te Allow hals to read hwservicemanager prop. 2017-03-23 01:50:50 +00:00
healthd.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
hwservice_contexts Merge "Add missing sepolicies for OemLock HAL." into oc-dev 2017-06-01 22:05:18 +00:00
hwservicemanager.te Restrict access to hwservicemanager 2017-04-21 09:54:53 -07:00
idmap.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
incident.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
incidentd.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
init.te Fix coredomain violation for modprobe 2017-06-05 08:09:18 -07:00
initial_sid_contexts Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
initial_sids Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
inputflinger.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
install_recovery.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
installd.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
isolated_app.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
kernel.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
keys.conf Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
keystore.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
lmkd.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
logd.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
logpersist.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
mac_permissions.xml Move MediaProvider to its own domain, add new MtpServer permissions 2016-12-12 11:05:33 -08:00
mdnsd.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
mediadrmserver.te update sepolicy for gralloc HAL 2017-03-30 14:43:35 -07:00
mediaextractor.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
mediametrics.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
mediaserver.te Restrict access to hwservicemanager 2017-04-21 09:54:53 -07:00
mls sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
mls_decl sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
mls_macros Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
modprobe.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
mtp.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
net.te Move netdomain policy to private 2017-02-06 15:02:00 -08:00
netd.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
netutils_wrapper.te add netutils_wrappers 2017-04-14 22:57:27 -07:00
nfc.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
otapreopt_chroot.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
otapreopt_slot.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
performanced.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
perfprofd.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
platform_app.te relax fuse_device neverallow rules 2017-04-26 11:43:40 -07:00
policy_capabilities Define extended_socket_class policy capability and socket classes 2017-02-06 13:53:11 -05:00
port_contexts Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
postinstall.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
postinstall_dexopt.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
ppp.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
preopt2cachename.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
priv_app.te Allow access to /proc/config.gz for priv_app and recovery 2017-04-19 12:48:08 -07:00
profman.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
property_contexts Sepolicy: Add ASAN-Extract 2017-04-05 13:09:29 -07:00
racoon.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
radio.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
recovery.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
recovery_persist.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
recovery_refresh.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
roles_decl sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
runas.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
sdcardd.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
seapp_contexts Use levelFrom=user for v2 apps 2017-03-02 09:50:33 -08:00
security_classes Remove vndservice_manager object classes. 2017-04-18 12:40:44 -07:00
service_contexts Merge "Remove vr_wm service selinux policy" into oc-dev 2017-05-05 14:56:18 +00:00
servicemanager.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
sgdisk.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
shared_relro.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
shell.te Allow adbd and shell to read /proc/config.gz 2017-05-08 14:40:25 -07:00
slideshow.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
storaged.te Allow GMSCore to call dumpsys storaged 2017-04-12 18:02:13 -07:00
su.te su and perfprofd are coredomain too 2017-03-24 09:31:50 -07:00
surfaceflinger.te Add fwk_display_hwservice. 2017-05-17 11:00:28 -07:00
system_app.te relax fuse_device neverallow rules 2017-04-26 11:43:40 -07:00
system_server.te Merge "Sepolicy changes for system_server to use libvintf" into oc-dev 2017-05-24 21:34:12 +00:00
technical_debt.cil surfaceflinger and apps are clients of Configstore HAL 2017-04-18 12:24:22 -07:00
tombstoned.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
toolbox.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
tzdatacheck.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
ueventd.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
uncrypt.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
untrusted_app.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
untrusted_app_25.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
untrusted_app_all.te untrusted_apps: allow untrusted_apps to execute from /vendor/app 2017-04-28 15:27:37 -07:00
untrusted_v2_app.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
update_engine.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
update_engine_common.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
update_verifier.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
users Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
vdc.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
virtual_touchpad.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
vold.te Move domain_deprecated into private policy 2017-05-15 13:37:59 -07:00
vr_hwc.te Restrict access to hwservicemanager 2017-04-21 09:54:53 -07:00
watchdogd.te Vendor domains must not use Binder 2017-03-24 07:54:00 -07:00
webview_zygote.te seapp_context: explicitly label all seapp context files 2017-03-29 10:20:11 -07:00
wificond.te SE Policy for Wifi Offload HAL 2017-05-18 09:49:55 -07:00
zygote.te Allow zygote to access dir/file under /vendor/overlay 2017-04-08 17:36:22 +09:00