tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Added permission to allow for ioctl to be added to install_data_file"

Browse source
This commit is contained in:
Shikha Malhotra 2022-03-22 16:32:40 +00:00 committed by Gerrit Code Review
commit b00341ad1e
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
public/installd.te
View file

@ -115,9 +115,10 @@ allow installd system_data_file:notdevfile_class_set { getattr relabelfrom unlin
allow installd app_data_file_type:dir { create_dir_perms relabelfrom relabelto }; allow installd app_data_file_type:dir { create_dir_perms relabelfrom relabelto };
allow installd app_data_file_type:notdevfile_class_set { create_file_perms relabelfrom relabelto }; allow installd app_data_file_type:notdevfile_class_set { create_file_perms relabelfrom relabelto };
# Allow setting extended attributes (for project quota IDs) on dirs # Allow setting extended attributes (for project quota IDs) on dirs and files
# and to enable project ID inheritance through FS_IOC_SETFLAGS # and to enable project ID inheritance through FS_IOC_SETFLAGS
allowxperm installd { app_data_file_type system_data_file }:{ dir file } ioctl { # Added install_data_file to be able to create file under /data/misc/installd/ioctl_check
allowxperm installd { app_data_file_type system_data_file install_data_file}:{ dir file } ioctl {
FS_IOC_FSGETXATTR FS_IOC_FSGETXATTR
FS_IOC_FSSETXATTR FS_IOC_FSSETXATTR
FS_IOC_GETFLAGS FS_IOC_GETFLAGS