On 10/24/2012 04:20 PM, Joshua Brindle wrote:
Stephen Smalley wrote:
On 10/24/2012 09:19 AM, Stephen Smalley wrote:
On 10/23/2012 09:42 PM, Joshua Brindle wrote:
Have you determined if isolated_app will be treated as a different user
with levelFrom=user?
Haven't tested that case but that is how I would read the code -
newProcessRecordLocked in ActivityManagerService.java will extract the
userId portion of the UID and then create a new UID from that userID and
the next available isolated UID (as the app id portion).
I might have misread your question. With levelFrom=user, all apps with
the same userId portion of the UID will run in the same level, including
isolated processes. So chrome and its isolated service for user 0 would
run in s0:c512,c768, while chrome and its isolated service for user 1
would run in s0:c513,c768. Separation between users but not between apps
for the same user.
You got it the first time. So, if I switched to levelFrom=user I could
remove mlstrustedsubject from isolated_app, was what I was getting at.
I believe so, yes. But we need to resolve the app data directory
labeling issue before this will work correctly, as otherwise all the app
data directories cloned when a new user is created will be labeled with
the same level as the old user.
--
This message was distributed to subscribers of the seandroid-list mailing list.
If you no longer wish to subscribe, send mail to majord...@tycho.nsa.gov with
the words "unsubscribe seandroid-list" without quotes as the message.
