tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Allow system_server access to /data/media files passed via Binder."

Browse source
This commit is contained in:
Nick Kralevich 2014-06-04 18:07:00 +00:00 committed by Gerrit Code Review
commit 5eaa0afbc7
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
system_server.te
View file

@ -241,6 +241,9 @@ allow system_server system_app_data_file:file create_file_perms;
# Types extracted from seapp_contexts type= fields.
allow system_server { system_app_data_file bluetooth_data_file nfc_data_file radio_data_file shell_data_file app_data_file }:file { getattr read write };
# Receive and use open /data/media files passed over binder IPC.
allow system_server media_rw_data_file:file { getattr read write };
# Read /file_contexts and /data/security/file_contexts
security_access_policy(system_server)