From cb51acc9dc1329e040f468e4e6016c4de6a5f700 Mon Sep 17 00:00:00 2001
From: Jooyung Han <jooyung@google.com>
Date: Mon, 3 Jun 2024 14:24:46 +0900
Subject: [PATCH] installd renames dirs in /data/app-staging

before removing a session directory. Hence, it needs more permissions on
staging_data_file.

Bug: 343165326
Test: atest CtsStagedInstallHostTestCases:com.android.tests.stagedinstall.host.StagedInstallTest#testRebootlessUpdate_unsignedPayload_fails
Change-Id: Ic94c74d4ef896129491cee39098f43f33793851f
---
 private/installd.te | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/private/installd.te b/private/installd.te
index 438746d22..742c89733 100644
--- a/private/installd.te
+++ b/private/installd.te
@@ -42,7 +42,7 @@ get_prop(installd, odsign_prop)
 
 # Allow installd to delete files in /data/staging
 allow installd staging_data_file:file unlink;
-allow installd staging_data_file:dir { open read remove_name rmdir search write getattr };
+allow installd staging_data_file:dir { open read add_name remove_name rename rmdir search write getattr };
 
 allow installd { dex2oat dexoptanalyzer }:process signal;