tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Allow shell to read /vendor/apex/*"

Browse source
This commit is contained in:
Treehugger Robot 2021-06-14 13:20:30 +00:00 committed by Gerrit Code Review
commit 05b6365178
1 changed files with 3 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
private/shell.te
View file

@ -114,8 +114,10 @@ allow shell profcollectd_exec:file rx_file_perms;
allow shell self:perf_event { open read write kernel };
neverallow shell self:perf_event ~{ open read write kernel };
# Allow shell to read /apex/apex-info-list.xml
# Allow shell to read /apex/apex-info-list.xml and the vendor apexes
allow shell apex_info_file:file r_file_perms;
allow shell vendor_apex_file:file r_file_perms;
allow shell vendor_apex_file:dir r_dir_perms;
# Set properties.
set_prop(shell, shell_prop)