Skip to content
Snippets Groups Projects
Commit 30a31570 authored by Tri Vo's avatar Tri Vo
Browse files

Mark shell as system_executes_vendor_violators. 

Bug: 62041836
Test: sailfish sepolicy builds

Change-Id: Iad865fea852ab134dd848688e8870bc71f99788d
parent 97753529
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 2 additions and 0 deletions
public/shell.te
+ 2
0
View file @ 30a31570
...@@ -186,6 +186,8 @@ allow shell service_contexts_file:file r_file_perms; ...@@ -186,6 +186,8 @@ allow shell service_contexts_file:file r_file_perms;
allow shell sepolicy_file:file r_file_perms; allow shell sepolicy_file:file r_file_perms;
# Allow shell to start up vendor shell # Allow shell to start up vendor shell
# TODO(b/62041836): system processes should not run vendor executables.
typeattribute shell system_executes_vendor_violators;
allow shell vendor_shell_exec:file rx_file_perms; allow shell vendor_shell_exec:file rx_file_perms;
### ###
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment