tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Add initial sepolicy for app data snapshots." am: 9e332a59b2

Browse source 
am: 169013e771

Change-Id: I479b2e4ae42199b7625daa40d27b5f5b371b6ae3
This commit is contained in:
Annie Meng 2019-01-17 03:13:17 -08:00 committed by android-build-merger
commit dc5ac5b634
3 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
private/file.te
View file

@ -16,3 +16,7 @@ type debugfs_kcov, fs_type, debugfs_type;
# App executable files in /data/data directories
type app_exec_data_file, file_type, data_file_type, core_data_file_type;
typealias app_exec_data_file alias rs_data_file;
# /data/misc_[ce|de]/rollback : Used by installd to store snapshots
# of application data.
type rollback_data_file, file_type, data_file_type, core_data_file_type;

4
private/file_contexts
View file

@ -514,6 +514,10 @@
# Bootchart data
/data/bootchart(/.*)? u:object_r:bootchart_data_file:s0
# App data snapshots (managed by installd).
/data/misc_de/[0-9]+/rollback(/.*)? u:object_r:rollback_data_file:s0
/data/misc_ce/[0-9]+/rollback(/.*)? u:object_r:rollback_data_file:s0
#############################
# Expanded data files
#

2
private/vold_prepare_subdirs.te
View file

@ -17,6 +17,7 @@ allow vold_prepare_subdirs {
face_vendor_data_file
fingerprint_vendor_data_file
iris_vendor_data_file
rollback_data_file
storaged_data_file
vold_data_file
}:dir { create_dir_perms relabelto };
@ -24,6 +25,7 @@ allow vold_prepare_subdirs {
face_vendor_data_file
fingerprint_vendor_data_file
iris_vendor_data_file
rollback_data_file
storaged_data_file
system_data_file
vold_data_file