summaryrefslogtreecommitdiff
path: root/code_coverage/empty_policy/code_coverage.arm.policy
diff options
context:
space:
mode:
authorPete Bentley <prb@google.com>2022-09-23 12:09:32 +0100
committerPete Bentley <prb@google.com>2022-10-05 00:11:56 +0100
commit046a809a90814bcea76aec1ec26d464db3b686dd (patch)
treebbea1de9d7af4bd08e84a5e78e48d6fd08566a64 /code_coverage/empty_policy/code_coverage.arm.policy
parent0024d682878417b71e117e39ae00d9aed698b428 (diff)
Add AID for PRNG seeder daemon.
Also adjust permissions on /dev/hw_random to allow prng_seeder group read access. Manual testing protocol: * Verify prng_seeder daemon is running and has the correct label and uid/gid. * Verify prng_seeder socket present and has correct label and permissions * Verify no SELinux denials * strace a libcrypto process and verify it reads seeding data from prng_seeder (e.g. strace bssl rand -hex 1024) * strace seeder daemon to observe incoming connections (e.g. strace -f -p `pgrep prng_seeder`) * Kill daemon, observe that init restarts it * strace again and observe clients now seed from new instance Bug: 243933553 Test: Manual - see above Change-Id: I4d526844b232fc2a1fa5ffd701ca5bc5c09e7e96 Merged-In: I4d526844b232fc2a1fa5ffd701ca5bc5c09e7e96 (cherry picked from commit 6cb61610e619e31bd22c12895ec0ca623f793127)
Diffstat (limited to 'code_coverage/empty_policy/code_coverage.arm.policy')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-22 17:12:40 +0000