tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Allow incidentd to read apex-info-list.xml.

Browse source 
Spotted looking at a bugreport.

Test: m
Change-Id: I034099e5899b4fd75ec58f16f0fa49a3bdc079e1
This commit is contained in:
Nicolas Geoffray 2021-10-09 15:46:44 +01:00
parent aedd65ac20
commit 7a2693b61e
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
private/incidentd.te
View file

@ -150,6 +150,9 @@ dontaudit incidentd apex_module_data_file:dir r_dir_perms;
dontaudit incidentd apex_art_data_file:dir r_dir_perms; dontaudit incidentd apex_art_data_file:dir r_dir_perms;
dontaudit incidentd tmpfs:file rwx_file_perms; dontaudit incidentd tmpfs:file rwx_file_perms;
# Allow incidentd to read /apex/apex-info-list.xml
allow incidentd apex_info_file:file r_file_perms;
# logd access - work to be done is a PII safe log (possibly an event log?) # logd access - work to be done is a PII safe log (possibly an event log?)
userdebug_or_eng(`read_logd(incidentd)') userdebug_or_eng(`read_logd(incidentd)')
# TODO control_logd(incidentd) # TODO control_logd(incidentd)