tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Allow otapreopt_chroot to use stdin and stdout pipes." into main am: 5896f3e58a am: 42b19d7a23 am: 20210305ee am: d0d9ec9082

Browse source 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2681276

Change-Id: Ia48613530481399ea4a2e56715088f59bb3ba0e4
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
Martin Stjernholm 2023-08-08 16:03:45 +00:00 committed by Automerger Merge Worker
commit 4195876232
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
private/otapreopt_chroot.te
View file

@ -36,9 +36,10 @@ allow otapreopt_chroot postinstall_file:dir r_dir_perms;
# Allow otapreopt_chroot to read the persist.apexd.verity_on_system system property.
get_prop(otapreopt_chroot, apexd_prop)
# Allow otapreopt to use file descriptors from update-engine. It will
# close them immediately.
# Allow otapreopt to use file descriptors from update-engine and the postinstall
# script. It will read dexopt commands from stdin and write progress to stdout.
allow otapreopt_chroot postinstall:fd use;
allow otapreopt_chroot postinstall:fifo_file { read write getattr };
allow otapreopt_chroot update_engine:fd use;
allow otapreopt_chroot update_engine:fifo_file write;