public/untrusted_app.te · 0b7506ff53b8c1b9c7582b056536df8faaa3c22a · Werner Sembach / AndroidSystemSEPolicy

Something went wrong on our end

8 years ago

neverallow some /proc file reads · 0b7506ff

Nick Kralevich authored 8 years ago

Lock in the gains we've made so far in restricting access to generically
labeled /proc files. There's more we can do here, but let's avoid
inadvertent regressions.

Test: policy compiles. Only compile time assertions added.
Bug: 26813932
Change-Id: If354c2ddc1c59beed7f0eb4bcbd3f0d9971c3b8a

0b7506ff

History

neverallow some /proc file reads

Nick Kralevich authored 8 years ago

Lock in the gains we've made so far in restricting access to generically
labeled /proc files. There's more we can do here, but let's avoid
inadvertent regressions.

Test: policy compiles. Only compile time assertions added.
Bug: 26813932
Change-Id: If354c2ddc1c59beed7f0eb4bcbd3f0d9971c3b8a