tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Isolate app profile ref data" am: ab8d2f0178

Browse source 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1729396

Change-Id: I49a9f6f73fa63e8f9cfa6054c32148737009d3cd
This commit is contained in:
Treehugger Robot 2021-06-15 11:37:02 +00:00 committed by Automerger Merge Worker
commit 7fc02141ae
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
private/zygote.te
View file

@ -69,8 +69,8 @@ allow zygote system_data_file:{ dir lnk_file } relabelto;
# Zygote opens /mnt/expand to mount CE DE storage on each vol
allow zygote mnt_expand_file:dir { open read search relabelto };
# Bind mount subdirectories on /data/misc/profiles/cur
allow zygote user_profile_root_file:dir { mounton search };
# Bind mount subdirectories on /data/misc/profiles/cur and /data/misc/profiles/ref
allow zygote { user_profile_root_file user_profile_data_file }:dir { mounton search };
# Create and bind dirs on /data/data
allow zygote tmpfs:dir { create_dir_perms mounton };