-
- Downloads
Ban socket connections between core and vendor
On PRODUCT_FULL_TREBLE devices, non-vendor domains (coredomain) and vendor domain are not permitted to connect to each other's sockets. There are two main exceptions: (1) apps are permitted to talk to other apps over Unix domain sockets (this is public API in Android framework), and (2) domains with network access (netdomain) are permitted to connect to netd. This commit thus: * adds neverallow rules restricting socket connection establishment, * temporarily exempts the domains which are currently violating this rule from this restriction. These domains are grouped using the new "socket_between_core_and_vendor_violators" attribute. The attribute is needed because the types corresponding to violators are not exposed to the public policy where the neverallow rules are. Test: mmm system/sepolicy Bug: 36613996 Change-Id: I458f5a09a964b06ad2bddb52538ec3a15758b003
Showing
- private/bluetooth.te 1 addition, 0 deletionsprivate/bluetooth.te
- private/tee.te 4 additions, 0 deletionsprivate/tee.te
- public/attributes 5 additions, 0 deletionspublic/attributes
- public/domain.te 45 additions, 0 deletionspublic/domain.te
- public/hal_keymaster.te 1 addition, 0 deletionspublic/hal_keymaster.te
- public/neverallow_macros 9 additions, 0 deletionspublic/neverallow_macros
- public/radio.te 1 addition, 0 deletionspublic/radio.te
- vendor/hal_audio_default.te 2 additions, 0 deletionsvendor/hal_audio_default.te
- vendor/hal_drm_default.te 3 additions, 0 deletionsvendor/hal_drm_default.te
- vendor/hal_keymaster_default.te 3 additions, 0 deletionsvendor/hal_keymaster_default.te
Loading
Please register or sign in to comment