Allow system_server to delete directories in preloads

(cherry picked from commit 028ed753) avc: denied { rmdir } for name="apps" scontext=u:r:system_server:s0 tcontext=u:object_r:preloads_data_file:s0 tclass=dir permissive=0 avc: denied { rmdir } for name="demo" scontext=u:r:system_server:s0 tcontext=u:object_r:preloads_data_file:s0 tclass=dir permissive=0 Bug: 28855287 Change-Id: Ia470f94d1d960cc4ebe68cb364b8425418acdbd4

Allow system_server to delete directories in preloads
(cherry picked from commit 028ed753) avc: denied { rmdir } for name="apps" scontext=u:r:system_server:s0 tcontext=u:object_r:preloads_data_file:s0 tclass=dir permissive=0 avc: denied { rmdir } for name="demo" scontext=u:r:system_server:s0 tcontext=u:object_r:preloads_data_file:s0 tclass=dir permissive=0 Bug: 28855287 Change-Id: Ia470f94d1d960cc4ebe68cb364b8425418acdbd4
31899451 · Fyodor Kupolov · Jeff Vander Stoep · 1a640f32 · 31899451
Commit 31899451 authored 8 years ago by Fyodor Kupolov Committed by Jeff Vander Stoep 8 years ago
--- a/system_server.te
+++ b/system_server.te
@@ -547,7 +547,7 @@ allow system_server update_engine:fifo_file write;
 # Access to /data/preloads
 allow system_server preloads_data_file:file { r_file_perms unlink };
-allow system_server preloads_data_file:dir { r_dir_perms write remove_name };
+allow system_server preloads_data_file:dir { r_dir_perms write remove_name rmdir };
 r_dir_file(system_server, cgroup)
 allow system_server ion_device:chr_file r_file_perms;