Skip to content
Snippets Groups Projects
Commit 775dda1f authored by Jeff Vander Stoep's avatar Jeff Vander Stoep Committed by android-build-merger
Browse files

audit untrusted_app access to mtp_device 

am: 7b8f9f15

* commit '7b8f9f15':
  audit untrusted_app access to mtp_device
parents 312c2511 7b8f9f15
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
Showing
with 4 additions and 0 deletions
untrusted_app.te
+ 4
0
View file @ 775dda1f
...@@ -60,7 +60,11 @@ allow untrusted_app system_app_data_file:file { read write getattr }; ...@@ -60,7 +60,11 @@ allow untrusted_app system_app_data_file:file { read write getattr };
# #
# Access /dev/mtp_usb. # Access /dev/mtp_usb.
# TODO android.process.media moved to priv_app domain. Does
# untrusted_app still require these permissions? Can "open"
# be removed?
allow untrusted_app mtp_device:chr_file rw_file_perms; allow untrusted_app mtp_device:chr_file rw_file_perms;
auditallow untrusted_app mtp_device:chr_file rw_file_perms;
# Access to /data/media. # Access to /data/media.
allow untrusted_app media_rw_data_file:dir create_dir_perms; allow untrusted_app media_rw_data_file:dir create_dir_perms;
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment