diff options
| author | Nick Kralevich <nnk@google.com> | 2013-10-21 12:39:24 -0700 |
|---|---|---|
| committer | Nick Kralevich <nnk@google.com> | 2013-10-21 12:52:03 -0700 |
| commit | 353c72e3b0b4d7d729af20f0c9a13c976baa8753 (patch) | |
| tree | 3ef66e8c2e1b33920d677739a7de34394bf96719 /racoon.te | |
| parent | 610a4b1c32490ac9f6f7ca0fafba8c182a542934 (diff) | |
| download | android_external_sepolicy-353c72e3b0b4d7d729af20f0c9a13c976baa8753.tar.gz android_external_sepolicy-353c72e3b0b4d7d729af20f0c9a13c976baa8753.tar.bz2 android_external_sepolicy-353c72e3b0b4d7d729af20f0c9a13c976baa8753.zip | |
Move unconfined domains out of permissive mode.
This change removes the permissive line from unconfined
domains. Unconfined domains can do (mostly) anything, so moving
these domains into enforcing should be a no-op.
The following domains were deliberately NOT changed:
1) kernel
2) init
In the future, this gives us the ability to tighten up the
rules in unconfined, and have those tightened rules actually
work.
When we're ready to tighten up the rules for these domains,
we can:
1) Remove unconfined_domain and re-add the permissive line.
2) Submit the domain in permissive but NOT unconfined.
3) Remove the permissive line
4) Wait a few days and submit the no-permissive change.
For instance, if we were ready to do this for adb, we'd identify
a list of possible rules which allow adbd to work, re-add
the permissive line, and then upload those changes to AOSP.
After sufficient testing, we'd then move adb to enforcing.
We'd repeat this for each domain until everything is enforcing
and out of unconfined.
Change-Id: If674190de3262969322fb2e93d9a0e734f8b9245
Diffstat (limited to 'racoon.te')
| -rw-r--r-- | racoon.te | 1 |
1 files changed, 0 insertions, 1 deletions
@@ -1,6 +1,5 @@ # IKE key management daemon type racoon, domain; -permissive racoon; type racoon_exec, exec_type, file_type; unconfined_domain(racoon) |