Explicitly label vold dependecies in /proc (9bf6a953) · Commits · CodeLinaro / public-release-test / platform / system / sepolicy

Commit 9bf6a953 authored 7 years ago by Tri Vo

Explicitly label vold dependecies in /proc

1. Labeled:
/proc/cmdline -> proc_cmdline

2. Removed access to proc label from vold domain.

3. Added access proc_cmdline to these domains:
init, kernel, vold

4. Also, added proc_drop_caches access to vold.

Bug: 66497047
Test: device boots without selinux denials to new labels
Change-Id: Ic88d11b7e56b07c0e8bd874e7f72788922a218e3

parent 01c57421

No related branches found

No related tags found

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 9 additions and 2 deletions

Please register or to comment