On 10/23/2012 09:42 PM, Joshua Brindle wrote:
Have you determined if isolated_app will be treated as a different user with levelFrom=user?
Haven't tested that case but that is how I would read the code - newProcessRecordLocked in ActivityManagerService.java will extract the userId portion of the UID and then create a new UID from that userID and the next available isolated UID (as the app id portion).
Aren't policies that use different labeling strategies inherently implementing a different security model? Can the current policy really meet all the use cases without getting unwieldy?
The differences would be in what subjects need to override the MLS constraints and possibly in the constraints themselves. Which isn't so different from MLS vs MCS in refpolicy, for example.
-- This message was distributed to subscribers of the seandroid-list mailing list. If you no longer wish to subscribe, send mail to majord...@tycho.nsa.gov with the words "unsubscribe seandroid-list" without quotes as the message.
