am b519949d: system_server: assert app data files never opened directly

* commit 'b519949d': system_server: assert app data files never opened directly

am b519949d: system_server: assert app data files never opened directly
4d9648e3 · Nick Kralevich · Android Git Automerger · c97aba39 · b519949d · 4d9648e3
Commit 4d9648e3 authored 10 years ago by Nick Kralevich Committed by Android Git Automerger 10 years ago
--- a/system_server.te
+++ b/system_server.te
@@ -409,3 +409,10 @@ r_dir_file(system_server, oemfs)
 # Do not allow accessing SDcard files as unsafe ejection could
 # cause the kernel to kill the system_server.
 neverallow system_server sdcard_type:file rw_file_perms;
+
+# system server should never be opening zygote spawned app data
+# files directly. Rather, they should always be passed via a
+# file descriptor.
+# Types extracted from seapp_contexts type= fields, excluding
+# those types that system_server needs to open directly.
+neverallow system_server { bluetooth_data_file nfc_data_file shell_data_file app_data_file }:file open;