Android Security Architecture

应用程序沙箱

进程级

root      1     0     14388  2384  SyS_epoll_ 00004c9810 S /init
root      715   1     2161460 83980 poll_sched 7f8eeb4898 S zygote64
root      716   1     1592656 70568 poll_sched 00e96b8594 S zygote
system    1385  715   2371452 134876 SyS_epoll_ 7f8eeb4778 S system_server
root      377   1     49176  4008  hrtimer_na 7fa6d901b0 S /system/bin/vold
radio     2532  715   1586980 50552 SyS_epoll_ 7f8eeb4778 S com.android.phone
media     727   1     44112  7672  binder_thr 00ea4874ec S /system/bin/mediaserver
u0_a41    2286  715   1659016 83256 SyS_epoll_ 7f8eeb4778 S com.android.launcher3

文件级

drwxrwx--x  2 root sdcard_rw     4096 2018-11-14 15:16 Download
drwx------   4 system    system    4096 1970-09-08 08:32 android
drwx------   4 u0_a27    u0_a27    4096 1970-09-08 08:32 com.android.systemui

权限

SELinux

selinux-AOSP

编译生成文件: out/target/product/msm8937_32/obj/ETC/sepolicy_intermediates/policy.conf

11-06 17:06:27.241 1336 1336 I auditd : type=1400 audit(0.0:323): avc: denied { search } for comm=”ActivityManager” name=”media” dev=”dm-0” ino=472354 scontext=u:r:system_server:s0 tcontext=u:object_r:sunmi_media_file:s0 tclass=dir permissive=0

03-27 21:00:44.117 6397 6397 W m.sunmi.sidekey: type=1400 audit(0.0:72): avc: denied { write } for name=”property_service” dev=”tmpfs” ino=220 scontext=u:r:sunmi_app:s0:c512,c768 tcontext=u:object_r:property_socket:s0 tclass=sock_file permissive=0

FEATURED TAGS

Android debug dumpsys shell linux Permission 心理学 ubuntu JNI android IMS systemui selinux 投资 eSIM androidstudio performance pms wms view flutter iptables netd property c++ kernel mqtt usb company statusbar docker ssh hardware webrtc recovery web camera rk3288 ota A133 driver rockchip rk3399 chip rk3588 a133 qt t113 buildroot AI MCU 硬件 markdown rk3568 随笔 rk3576

Android Security Architecture

ROM

Android Security Architecture

应用程序沙箱

进程级

文件级

权限

SELinux

CATALOG

FEATURED TAGS

FRIENDS