tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Fix braino in dexoptanalyzer policy and add dex2oat postinstall rule." into sc-dev

Browse source
This commit is contained in:
Nicolas Geoffray 2021-07-01 09:31:02 +00:00 committed by Android (Google) Code Review
commit b3b0d4da94
4 changed files with 4 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
prebuilts/api/31.0/private/dex2oat.te
View file

@ -79,6 +79,7 @@ allow dex2oat postinstall_file:file { execute getattr open };
# Allow dex2oat access to /postinstall/apex.
allow dex2oat postinstall_apex_mnt_dir:dir { getattr search };
allow dex2oat postinstall_apex_mnt_dir:file r_file_perms;
# Allow dex2oat access to files in /data/ota.
allow dex2oat ota_data_file:dir ra_dir_perms;

2
prebuilts/api/31.0/private/dexoptanalyzer.te
View file

@ -53,4 +53,4 @@ get_prop(dexoptanalyzer, device_config_runtime_native_prop)
get_prop(dexoptanalyzer, device_config_runtime_native_boot_prop)
# Allow dexoptanalyzer to read /apex/apex-info-list.xml
allow dex2oat apex_info_file:file r_file_perms;
allow dexoptanalyzer apex_info_file:file r_file_perms;

1
private/dex2oat.te
View file

@ -79,6 +79,7 @@ allow dex2oat postinstall_file:file { execute getattr open };
# Allow dex2oat access to /postinstall/apex.
allow dex2oat postinstall_apex_mnt_dir:dir { getattr search };
allow dex2oat postinstall_apex_mnt_dir:file r_file_perms;
# Allow dex2oat access to files in /data/ota.
allow dex2oat ota_data_file:dir ra_dir_perms;

2
private/dexoptanalyzer.te
View file

@ -53,4 +53,4 @@ get_prop(dexoptanalyzer, device_config_runtime_native_prop)
get_prop(dexoptanalyzer, device_config_runtime_native_boot_prop)
# Allow dexoptanalyzer to read /apex/apex-info-list.xml
allow dex2oat apex_info_file:file r_file_perms;
allow dexoptanalyzer apex_info_file:file r_file_perms;