Add mlstrustedobject to appfuse object type.

To write bytes to appfuse file from priv_app, we need to specify mlstrustedobject. The CL fixes the following denial. type=1400 audit(0.0:77): avc: denied { write } for name="10" dev="fuse" ino=10 scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:app_fuse_file:s0 tclass=file permissive=0 BUG=23093747 Change-Id: I9901033bb3349d5def0bd7128db45a1169856dc1

Add mlstrustedobject to appfuse object type.
To write bytes to appfuse file from priv_app, we need to specify mlstrustedobject. The CL fixes the following denial. type=1400 audit(0.0:77): avc: denied { write } for name="10" dev="fuse" ino=10 scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:app_fuse_file:s0 tclass=file permissive=0 BUG=23093747 Change-Id: I9901033bb3349d5def0bd7128db45a1169856dc1
4d19f98c · Daichi Hirono · Nick Kralevich · 0144eedb · 4d19f98c
Commit 4d19f98c authored 8 years ago by Daichi Hirono Committed by Nick Kralevich 8 years ago
--- a/file.te
+++ b/file.te
@@ -181,7 +181,7 @@ type bluetooth_efs_file, file_type;
 # Type for fingerprint template file.
 type fingerprintd_data_file, file_type, data_file_type;
 # Type for appfuse file.
-type app_fuse_file, file_type, data_file_type;
+type app_fuse_file, file_type, data_file_type, mlstrustedobject;

 # Socket types
 type adbd_socket, file_type;