tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_system_sepolicy/private
History
Jiyong Park ed4625f353 Allow app to access configstore HAL 
Apps should be able to access the configstore HAL since framework
libraries which are loaded into app process can call configstore.

Letting apps have direct access to this HAL is OK because: 

(1) the API of this HAL does not make clients provide any sensitive 
information to the HAL, which makes it impossible for the HAL to 
disclose sensitive information of its clients when the HAL is 
compromised, 

(2) we will require that this HAL is binderized (i.e., does not run 
inside the process of its clients), 

(3) we will require that this HAL runs in a tight seccomp sandbox 
(this HAL doesn't need much access, if at all) and,

(4) we'll restrict the HALs powers via neverallows.

Test: apps can use configstore hal.

Change-Id: I04836b7318fbc6ef78deff770a22c68ce7745fa9
2017-03-21 06:10:23 +00:00
..
access_vectors Remove obsolete netlink_firewall_socket and netlink_ip6fw_socket classes. 2017-02-06 14:24:41 -05:00
adbd.te Allow adbd to use graphics fds 2017-02-24 09:07:27 -08:00
app.te Allow app to access configstore HAL 2017-03-21 06:10:23 +00:00
app_neverallows.te Split preloads into media_file and data_file 2017-03-15 00:49:37 +00:00
atrace.te Move atrace policy to private 2017-02-07 10:54:20 -08:00
audioserver.te Add documentation on neverallow rules 2017-02-17 22:37:23 +00:00
binderservicedomain.te Move binderservicedomain policy to private 2017-02-08 09:09:39 -08:00
blkid.te Move blkid policy to private 2017-02-07 23:57:53 +00:00
blkid_untrusted.te Move blkid policy to private 2017-02-07 23:57:53 +00:00
bluetooth.te Switch Bluetooth HAL policy to _client/_server 2017-02-17 11:32:00 -08:00
bluetoothdomain.te Move bluetoothdomain policy to private 2017-02-06 15:32:08 -08:00
bootanim.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
bootstat.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
bufferhubd.te Add policies for new services. 2017-02-09 15:15:11 -08:00
cameraserver.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
cppreopts.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
dexoptanalyzer.te SElinux policies for compiling secondary dex files 2017-01-24 14:28:07 -08:00
dhcp.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
domain.te Remove crash_dump from sys_ptrace neverallow exception 2017-02-16 09:17:35 -08:00
drmserver.te sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
dumpstate.te allow dumpstate to collect ro.boottime.* 2017-03-03 13:13:25 -08:00
ephemeral_app.te Start locking down access to services from ephemeral apps 2017-03-02 10:23:01 -08:00
file.te Label /proc/config.gz 2017-02-16 12:07:01 -08:00
file_contexts enabled /sbin/modprobe for recovery mode 2017-03-16 01:19:58 +00:00
file_contexts_asan Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
fingerprintd.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
fs_use Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
fsck.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
gatekeeperd.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
genfs_contexts enabled /sbin/modprobe for recovery mode 2017-03-16 01:19:58 +00:00
hal_allocator.te Sepolicy for allocator hal. 2016-12-22 11:39:23 -08:00
halclientdomain.te Use _client and _server for Audio HAL policy 2017-02-15 13:32:14 -08:00
halserverdomain.te Use _client and _server for Audio HAL policy 2017-02-15 13:32:14 -08:00
healthd.te storaged: allow register and callback from batteryproperties 2017-02-06 11:06:05 -08:00
hostapd.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
hwservicemanager.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
incident.te Add incident command and incidentd daemon se policy. 2017-02-07 15:52:07 -08:00
incidentd.te Add incident command and incidentd daemon se policy. 2017-02-07 15:52:07 -08:00
init.te enabled /sbin/modprobe for recovery mode 2017-03-16 01:19:58 +00:00
initial_sid_contexts Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
initial_sids Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
inputflinger.te Whitespace fix 2016-12-09 20:14:31 -08:00
install_recovery.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
installd.te SElinux policies for compiling secondary dex files 2017-01-24 14:28:07 -08:00
isolated_app.te Move neverallows from untrusted_app.te to app_neverallows.te 2017-02-06 10:16:50 -08:00
kernel.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
keys.conf Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
keystore.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
lmkd.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
logd.te logd: add getEventTag command and service 2017-01-31 15:50:42 +00:00
logpersist.te logd: add getEventTag command and service 2017-01-31 15:50:42 +00:00
mac_permissions.xml Move MediaProvider to its own domain, add new MtpServer permissions 2016-12-12 11:05:33 -08:00
mdnsd.te Move mdnsd policy to private 2017-02-06 15:02:32 -08:00
mediacodec.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
mediadrmserver.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
mediaextractor.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
mediametrics.te rename mediaanalytics->mediametrics, wider access 2017-01-24 16:57:19 -08:00
mediaserver.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
mls sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
mls_decl sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
mls_macros Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
mtp.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
net.te Move netdomain policy to private 2017-02-06 15:02:00 -08:00
netd.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
nfc.te Whitespace fix 2016-12-09 20:14:31 -08:00
otapreopt_chroot.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
otapreopt_slot.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
performanced.te Add policies for new services. 2017-02-09 15:15:11 -08:00
perfprofd.te Whitespace fix 2016-12-09 20:14:31 -08:00
platform_app.te Split preloads into media_file and data_file 2017-03-15 00:49:37 +00:00
policy_capabilities Define extended_socket_class policy capability and socket classes 2017-02-06 13:53:11 -05:00
port_contexts Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
postinstall.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
postinstall_dexopt.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
ppp.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
priv_app.te Split preloads into media_file and data_file 2017-03-15 00:49:37 +00:00
property_contexts make ro.persistent_properties.ready accessible for hidl client 2017-03-01 12:31:04 -08:00
racoon.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
radio.te logd: restrict access to /dev/event-log-tags 2017-01-31 15:50:15 +00:00
recovery_persist.te sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
recovery_refresh.te sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
roles_decl sepolicy: add version_policy tool and version non-platform policy. 2016-12-06 08:56:02 -08:00
runas.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
sdcardd.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
seapp_contexts Use levelFrom=user for v2 apps 2017-03-02 09:50:33 -08:00
security_classes Remove obsolete netlink_firewall_socket and netlink_ip6fw_socket classes. 2017-02-06 14:24:41 -05:00
sensord.te Add policies for new services. 2017-02-09 15:15:11 -08:00
service_contexts sepolicy: Make wpa_supplicant a HIDL service 2017-03-07 01:34:28 +00:00
servicemanager.te logd: restrict access to /dev/event-log-tags 2017-01-31 15:50:15 +00:00
shared_relro.te Restore app_domain macro and move to private use. 2016-12-08 14:42:43 -08:00
shell.te tracefs: avoid overly generic regexes 2017-02-12 08:40:32 -08:00
storaged.te storaged: remove rules no longer necessary 2017-02-27 22:40:34 +00:00
su.te Add incident command and incidentd daemon se policy. 2017-02-07 15:52:07 -08:00
surfaceflinger.te surfaceflinger: grant access to vr_manager_service 2017-02-10 13:36:43 -08:00
system_app.te Add incident command and incidentd daemon se policy. 2017-02-07 15:52:07 -08:00
system_server.te Allow system_server binder_call into hal_graphics_allocator 2017-03-15 15:54:50 -07:00
tee.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
tombstoned.te Introduce crash_dump debugging helper. 2017-01-18 15:03:24 -08:00
toolbox.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
tzdatacheck.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
ueventd.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
uncrypt.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
untrusted_app.te Allow all untrusted_apps to create ptys 2017-02-21 22:17:16 -08:00
untrusted_app_25.te Revert "Remove execmod support for newer API versions" 2017-03-06 02:50:19 +00:00
untrusted_app_all.te Split preloads into media_file and data_file 2017-03-15 00:49:37 +00:00
untrusted_v2_app.te MediaCAS: adding media.cas to service 2017-02-28 12:31:45 -08:00
update_engine.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
update_engine_common.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
update_verifier.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
users Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
vdc.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
virtual_touchpad.te Add policies for new services. 2017-02-09 15:15:11 -08:00
vold.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
webview_zygote.te Remove obsolete netlink_firewall_socket and netlink_ip6fw_socket classes. 2017-02-06 14:24:41 -05:00
wificond.te Split general policy into public and private components. 2016-10-06 13:09:06 -07:00
zygote.te Remove SElinux audit to libart_file 2017-01-31 23:43:14 +00:00