Google Git
Sign in
android / platform / system / sepolicy / 41a2f826fdf6a7e00c5a8233bd094fa6427b25f4
commit41a2f826fdf6a7e00c5a8233bd094fa6427b25f4[log] [tgz]
authorRaj M <r.mamadgi@samsung.com>Mon Jul 30 21:54:35 2018 +0000
committerNick Kralevich <nnk@google.com>Wed Sep 12 14:49:40 2018 -0700
tree8e46abf19e8aba703c1604ac3fe23152e4127383
parent22b20c984f66efd81bbc1df762a68527b631a7f6 [diff]
Allowing file based ota for devices which cannot update to P as they were
released with File based ota.

Reason for rule relaxation: Samsung has devices  using
a file based OTA mechanism which needs to be updgraded to P.
This mechanism was removed from SELinux policy in
commit 7388575591ff2f55afa887851f5d593963b4552f.
Devices which support file based OTA are unable to use dm-verity
protections, and as a result, are more vulnerable to persistence
attacks where filesystem metadata or layout is attacked.

Nobody should be doing writes to /system & vendor
These partitions are intended to be read-only and should never be
modified. Doing so violates important Android security guarantees
and invalidates dm-verity signatures.

Bug: 78441229
Test: policy compiles. Relaxes compile time and CTS assertions

Change-Id: Id6072fcf8e0e39531b3d00ceacb05cea7b8d7b6f
1 file changed
tree: 8e46abf19e8aba703c1604ac3fe23152e4127383
  1. build/
  2. prebuilts/
  3. private/
  4. public/
  5. reqd_mask/
  6. tests/
  7. tools/
  8. vendor/
  9. Android.bp
  10. Android.mk
  11. CleanSpec.mk
  12. definitions.mk
  13. MODULE_LICENSE_PUBLIC_DOMAIN
  14. NOTICE
  15. OWNERS
  16. PREUPLOAD.cfg
  17. README
  18. treble_sepolicy_tests_for_release.mk