tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Allow compos_verify to write VM logs am: 1035ba1023

Browse source 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2129275

Change-Id: I6fd0fda4252c9bceecc859083ac34c6b509d5749
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
Alan Stokes 2022-06-20 10:19:01 +00:00 committed by Automerger Merge Worker
commit daedb78a2c
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
private/compos_verify.te
View file

@ -6,9 +6,10 @@ type compos_verify_exec, exec_type, file_type, system_file_type;
binder_use(compos_verify);
virtualizationservice_use(compos_verify);
# Access instance image files
# Read instance image & write VM logs
allow compos_verify apex_module_data_file:dir search;
r_dir_file(compos_verify, apex_compos_data_file)
allow compos_verify apex_compos_data_file:dir rw_dir_perms;
allow compos_verify apex_compos_data_file:file { rw_file_perms create };
# Read CompOS info & signature files
allow compos_verify apex_art_data_file:dir search;