Skip to content
Snippets Groups Projects
Commit 8ef9a36a authored by Andreas Gampe's avatar Andreas Gampe Committed by android-build-merger
Browse files

Sepolicy: Allow postinstall to read links am: 3cc71b09 

am: 87ec1d55

Change-Id: I93b7abac24ba6edf158d9caa0d91cb247e6e73f0
parents 1e77eac6 87ec1d55
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
public/dex2oat.te
+ 1
0
View file @ 8ef9a36a
...@@ -34,6 +34,7 @@ allow dex2oat app_data_file:file { getattr read write lock }; ...@@ -34,6 +34,7 @@ allow dex2oat app_data_file:file { getattr read write lock };
allow dex2oat postinstall_dexopt:fd use; allow dex2oat postinstall_dexopt:fd use;
allow dex2oat postinstall_file:dir { getattr search }; allow dex2oat postinstall_file:dir { getattr search };
allow dex2oat postinstall_file:lnk_file read;
# Allow dex2oat access to files in /data/ota. # Allow dex2oat access to files in /data/ota.
allow dex2oat ota_data_file:dir ra_dir_perms; allow dex2oat ota_data_file:dir ra_dir_perms;
......
public/postinstall_dexopt.te
+ 1
0
View file @ 8ef9a36a
...@@ -8,6 +8,7 @@ type postinstall_dexopt, domain; ...@@ -8,6 +8,7 @@ type postinstall_dexopt, domain;
allow postinstall_dexopt self:capability { chown dac_override fowner setgid setuid }; allow postinstall_dexopt self:capability { chown dac_override fowner setgid setuid };
allow postinstall_dexopt postinstall_file:dir { getattr search }; allow postinstall_dexopt postinstall_file:dir { getattr search };
allow postinstall_dexopt postinstall_file:lnk_file read;
allow postinstall_dexopt proc:file { getattr open read }; allow postinstall_dexopt proc:file { getattr open read };
allow postinstall_dexopt tmpfs:file read; allow postinstall_dexopt tmpfs:file read;
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment