tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Add sepolicy for scheduling module data directories"

Browse source
This commit is contained in:
Gavin Corkery 2021-02-18 20:51:51 +00:00 committed by Gerrit Code Review
commit 3bb3559e2e
6 changed files with 9 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
private/apexd.te
View file

@ -22,6 +22,8 @@ allow apexd apex_module_data_file:dir { create_dir_perms relabelfrom };
allow apexd apex_module_data_file:file { create_file_perms relabelfrom };
allow apexd apex_rollback_data_file:dir create_dir_perms;
allow apexd apex_rollback_data_file:file create_file_perms;
allow apexd apex_scheduling_data_file:dir { create_dir_perms relabelto };
allow apexd apex_scheduling_data_file:file { create_file_perms relabelto };
allow apexd apex_wifi_data_file:dir { create_dir_perms relabelto };
allow apexd apex_wifi_data_file:file { create_file_perms relabelto };

1
private/compat/30.0/30.0.ignore.cil
View file

@ -11,6 +11,7 @@
apex_art_data_file
apex_art_staging_data_file
apex_info_file
apex_scheduling_data_file
app_hibernation_service
appcompat_data_file
arm64_memtag_prop

1
private/file_contexts
View file

@ -561,6 +561,7 @@
/data/misc/apexdata(/.*)? u:object_r:apex_module_data_file:s0
/data/misc/apexdata/com\.android\.art(/.*)? u:object_r:apex_art_data_file:s0
/data/misc/apexdata/com\.android\.permission(/.*)? u:object_r:apex_permission_data_file:s0
/data/misc/apexdata/com\.android\.scheduling(/.*)? u:object_r:apex_scheduling_data_file:s0
/data/misc/apexdata/com\.android\.wifi(/.*)? u:object_r:apex_wifi_data_file:s0
/data/misc/apexrollback(/.*)? u:object_r:apex_rollback_data_file:s0
/data/misc/apns(/.*)? u:object_r:radio_data_file:s0

2
private/system_server.te
View file

@ -1224,6 +1224,8 @@ allow system_server vendor_apex_file:file r_file_perms;
allow system_server apex_module_data_file:dir { getattr search };
allow system_server apex_permission_data_file:dir create_dir_perms;
allow system_server apex_permission_data_file:file create_file_perms;
allow system_server apex_scheduling_data_file:dir create_dir_perms;
allow system_server apex_scheduling_data_file:file create_file_perms;
allow system_server apex_wifi_data_file:dir create_dir_perms;
allow system_server apex_wifi_data_file:file create_file_perms;

2
private/vold_prepare_subdirs.te
View file

@ -20,6 +20,7 @@ allow vold_prepare_subdirs {
apex_module_data_file
apex_permission_data_file
apex_rollback_data_file
apex_scheduling_data_file
apex_wifi_data_file
backup_data_file
face_vendor_data_file
@ -36,6 +37,7 @@ allow vold_prepare_subdirs {
apex_module_data_file
apex_permission_data_file
apex_rollback_data_file
apex_scheduling_data_file
apex_wifi_data_file
backup_data_file
face_vendor_data_file

1
public/file.te
View file

@ -382,6 +382,7 @@ type adb_keys_file, file_type, data_file_type, core_data_file_type;
type apex_module_data_file, file_type, data_file_type, core_data_file_type;
type apex_permission_data_file, file_type, data_file_type, core_data_file_type;
type apex_rollback_data_file, file_type, data_file_type, core_data_file_type;
type apex_scheduling_data_file, file_type, data_file_type, core_data_file_type;
type apex_wifi_data_file, file_type, data_file_type, core_data_file_type;
type appcompat_data_file, file_type, data_file_type, core_data_file_type;
type audio_data_file, file_type, data_file_type, core_data_file_type;