grant appdomain rw perms to tun_device am: 2b935cd7

am: 43412f65 * commit '43412f65': grant appdomain rw perms to tun_device

grant appdomain rw perms to tun_device am: 2b935cd7
02863a7c · Jeff Vander Stoep · android-build-merger · 7e3fe271 · 43412f65 · 02863a7c
Commit 02863a7c authored 9 years ago by Jeff Vander Stoep Committed by android-build-merger 9 years ago
--- a/app.te
+++ b/app.te
@@ -225,6 +225,10 @@ selinux_check_context(appdomain)
 auditallow { appdomain userdebug_or_eng(`-su') } sysfs:dir { open getattr read ioctl };
 auditallow { appdomain userdebug_or_eng(`-su') } sysfs:file r_file_perms;
+# Apps receive an open tun fd from the framework for
+# device traffic. Do not allow untrusted app to directly open tun_device
+allow { appdomain -isolated_app } tun_device:chr_file { read write getattr ioctl append };
 ###
 ### Neverallow rules
 ###

--- a/untrusted_app.te
+++ b/untrusted_app.te
@@ -29,10 +29,6 @@ bluetooth_domain(untrusted_app)
 # to their sandbox directory and then execute.
 allow untrusted_app app_data_file:file { rx_file_perms execmod };
-# Third party vpn apps receive an open tun fd from the framework for
-# device traffic. Do not allow untrusted app to directly open tun_device
-allow untrusted_app tun_device:chr_file { read write getattr ioctl append };
 # ASEC
 allow untrusted_app asec_apk_file:file r_file_perms;
 # Execute libs in asec containers.