tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

system_linker_exec: Remove exec_type

Browse source 
system/sepolicy/public/attributes defines exec_type as:

  # All types used for domain entry points.
  attribute exec_type;

The linker is not a standalone executable, but rather, used by other
executables to resolve shared libraries. It isn't, and must never be, an
allowed entrypoint for a domain.

Remove the exec_type attribute from system_linker_exec.

Test: Device compiles and boots, no obvious problems running the system.
Change-Id: I8f2f608bc1a642193524396f46b22933faac5468
This commit is contained in:
Nick Kralevich 2018-09-26 12:20:10 -07:00
parent 1b2ea497aa
commit dbddbe42d2
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
public/file.te
View file

@ -135,7 +135,7 @@ type system_file, file_type;
# Default type for anything under /system/lib[64].
type system_lib_file, file_type;
# Default type for linker executable /system/bin/linker[64].
type system_linker_exec, exec_type, file_type;
type system_linker_exec, file_type;
# Default type for linker config /system/etc/ld.config.*.
type system_linker_config_file, file_type;
# Default type for linker config /system/etc/seccomp_policy/*.