tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "uncrypt: allow reading /proc/bootconfig" am: 17a5e930cb

Browse source 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1723311

Change-Id: I0068f78afd33c85a769545bf1b0d223f900c7fdd
This commit is contained in:
Treehugger Robot 2021-06-02 10:52:28 +00:00 committed by Automerger Merge Worker
commit dd539387a5
1 changed files with 6 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
public/uncrypt.te
View file

@ -32,8 +32,12 @@ allow uncrypt userdata_block_device:blk_file w_file_perms;
r_dir_file(uncrypt, rootfs) r_dir_file(uncrypt, rootfs)
# uncrypt reads /proc/cmdline # Access to bootconfig is needed when calling ReadDefaultFstab.
allow uncrypt proc_cmdline:file r_file_perms; allow uncrypt {
proc_bootconfig
proc_cmdline
}:file r_file_perms;
# Read files in /sys # Read files in /sys
r_dir_file(uncrypt, sysfs_dt_firmware_android) r_dir_file(uncrypt, sysfs_dt_firmware_android)