Merge "Allow app_zygote to map memfd backed memeory as PROT_EXEC"
This commit is contained in:
Dimitry Ivanov
Gerrit Code Review
commit
c01d3fb36c
1 changed files with 3 additions and 0 deletions
|
|
@ -20,6 +20,9 @@ allow app_zygote isolated_app:process dyntransition;
|
|||
# For JIT
|
||||
allow app_zygote self:process execmem;
|
||||
|
||||
# Allow exec mapping from tmpfs (memfds) for binary translation
|
||||
allow app_zygote app_zygote_tmpfs:file execute;
|
||||
|
||||
# Allow app_zygote to stat the files that it opens. It must
|
||||
# be able to inspect them so that it can reopen them on fork
|
||||
# if necessary: b/30963384.
|
||||
|
|
|
|||
Loading…
Reference in a new issue