am 642b8042: relax neverallow rules on NETLINK_KOBJECT_UEVENT sockets

* commit '642b8042': relax neverallow rules on NETLINK_KOBJECT_UEVENT sockets

am 642b8042: relax neverallow rules on NETLINK_KOBJECT_UEVENT sockets
3fa5d73b · Nick Kralevich · Android Git Automerger · 241c1c41 · 642b8042 · 3fa5d73b
Commit 3fa5d73b authored 10 years ago by Nick Kralevich Committed by Android Git Automerger 10 years ago
--- a/app.te
+++ b/app.te
@@ -219,9 +219,13 @@ neverallow appdomain
        netlink_audit_socket
        netlink_ip6fw_socket
        netlink_dnrt_socket
-        netlink_kobject_uevent_socket
    } *;
+# These messages are broadcast messages from the kernel to userspace.
+# Do not allow the writing of netlink messages, which has been a source
+# of rooting vulns in the past.
+neverallow appdomain self:netlink_kobject_uevent_socket { write append };
 # Sockets under /dev/socket that are not specifically typed.
 neverallow appdomain socket_device:sock_file write;

--- a/untrusted_app.te
+++ b/untrusted_app.te
@@ -81,6 +81,9 @@ auditallow untrusted_app {
 ### neverallow rules
 ###
+# Receive or send uevent messages.
+neverallow untrusted_app self:netlink_kobject_uevent_socket *;
 # Too much leaky information in debugfs. It's a security
 # best practice to ensure these files aren't readable.
 neverallow untrusted_app debugfs:file read;