am a910a287: Remove untrusted_app access to tmp apk files

* commit 'a910a287': Remove untrusted_app access to tmp apk files

am a910a287: Remove untrusted_app access to tmp apk files
5f34265c · Jeff Vander Stoep · Android Git Automerger · e9aaae4f · a910a287 · 5f34265c
Commit 5f34265c authored 9 years ago by Jeff Vander Stoep Committed by Android Git Automerger 9 years ago
--- a/app.te
+++ b/app.te
@@ -344,6 +344,10 @@ neverallow appdomain
    dhcp_data_file:dir_file_class_set
    { create write setattr relabelfrom relabelto append unlink link rename };
+# access tmp apk files
+neverallow { appdomain -platform_app -priv_app }
+    { apk_tmp_file apk_private_tmp_file }:dir_file_class_set *;
 # Access to factory files.
 neverallow appdomain efs_file:dir_file_class_set write;
 neverallow { appdomain -shell } efs_file:dir_file_class_set read;

--- a/untrusted_app.te
+++ b/untrusted_app.te
@@ -80,10 +80,6 @@ allow untrusted_app radio_service:service_manager find;
 allow untrusted_app surfaceflinger_service:service_manager find;
 allow untrusted_app app_api_service:service_manager find;
-# Allow verifier to access staged apks.
-allow untrusted_app { apk_tmp_file apk_private_tmp_file }:dir r_dir_perms;
-allow untrusted_app { apk_tmp_file apk_private_tmp_file }:file r_file_perms;
 # only allow unprivileged socket ioctl commands
 allow untrusted_app self:{ rawip_socket tcp_socket udp_socket } unpriv_sock_ioctls;