private/isolated_app.te · a2cf96bcd39f6d51cbaecb2d25fe014d14a3b560 · Werner Sembach / AndroidSystemSEPolicy

Something went wrong on our end

7 years ago

Ensure /sys restrictions for isolated_apps · 579366a0

Nick Kralevich authored 7 years ago

isolated_apps are intended to be strictly limited in the /sys files
which can be read. Add a neverallow assertion to guarantee this on all
Android compatible devices.

Test: policy compiles.
Change-Id: I47aceefa3f43a7ea9e526f6f0ef377d0b4efbe3a

579366a0

History

Ensure /sys restrictions for isolated_apps

Nick Kralevich authored 7 years ago

isolated_apps are intended to be strictly limited in the /sys files
which can be read. Add a neverallow assertion to guarantee this on all
Android compatible devices.

Test: policy compiles.
Change-Id: I47aceefa3f43a7ea9e526f6f0ef377d0b4efbe3a