0c5449b193
CompOS no longer talks directly to DICE (compos_key_helper does). odsign no longer promotes or deletes instance CompOS files, and the key files don't exist any more. Bug: 218494522 Test: Manual; trigger compilation, reboot & watch odsign Change-Id: Ibc251180122e6e4789b4be5669da3da67517b49c
34 lines
1.2 KiB
Text
34 lines
1.2 KiB
Text
# TODO(b/193504816): move this to compos APEX
|
|
type compos, domain, coredomain, microdroid_payload;
|
|
type compos_exec, exec_type, file_type, system_file_type;
|
|
|
|
# Expose RPC Binder service over vsock
|
|
allow compos self:vsock_socket { create_socket_perms_no_ioctl listen accept };
|
|
|
|
# Allow using various binder services
|
|
binder_use(compos);
|
|
allow compos authfs_binder_service:service_manager find;
|
|
binder_call(compos, authfs_service);
|
|
|
|
# Read artifacts created by odrefresh and create signature files.
|
|
allow compos authfs_fuse:dir rw_dir_perms;
|
|
allow compos authfs_fuse:file create_file_perms;
|
|
|
|
# Allow locating the authfs mount directory.
|
|
allow compos authfs_data_file:dir search;
|
|
|
|
# Run derive_classpath in our domain
|
|
allow compos derive_classpath_exec:file rx_file_perms;
|
|
allow compos apex_mnt_dir:dir r_dir_perms;
|
|
# Ignore harmless denials on /proc/self/fd
|
|
dontaudit compos self:dir write;
|
|
# See b/35323867#comment3
|
|
dontaudit compos self:global_capability_class_set dac_override;
|
|
|
|
# Allow running odrefresh in its own domain
|
|
domain_auto_trans(compos, odrefresh_exec, odrefresh)
|
|
|
|
# Allow running compos_key_helper in its own domain
|
|
domain_auto_trans(compos, compos_key_helper_exec, compos_key_helper)
|
|
# And killing it on error
|
|
allow compos compos_key_helper:process sigkill;
|