Allow apexd to realpath(3) on apex_key_files

am: ecc09871ba Change-Id: I43f3d98669537d24879f3a734e2684968813e148
2018-10-18 23:46:29 -07:00 · 2018-10-18 23:46:29 -07:00 · 6d474849e8
commit 6d474849e8
parent b9c0ab6f88 ecc09871ba
1 changed files with 1 additions and 1 deletions
--- a/private/apexd.te
+++ b/private/apexd.te
@ -3,7 +3,7 @@ typeattribute apexd coredomain;
 init_daemon_domain(apexd)

 # Read /system/etc/security/apex_debug_key
-allow apexd apex_key_file:dir search;
+allow apexd apex_key_file:dir { search getattr };
 allow apexd apex_key_file:file r_file_perms;

 # Allow reading and writing of APEX files in the APEX data dir