09bb944221
Restrict access to controlling snapuserd via ctl properties. Allow update_engine to control snapuserd, and connect/write to its socket. update_engine needs this access so it can create the appropriate dm-user device (which sends queries to snapuserd), which is then used to build the update snapshot. This also fixes a bug where /dev/dm-user was not properly labelled. As a result, snapuserd and update_engine have been granted r_dir_perms to dm_user_device. Bug: 168554689 Test: full ota with VABC enabled Change-Id: I1f65ba9f16a83fe3e8ed41a594421939a256aec0
26 lines
847 B
Text
26 lines
847 B
Text
typeattribute update_engine coredomain;
|
|
|
|
init_daemon_domain(update_engine);
|
|
|
|
# Allow to talk to gsid.
|
|
allow update_engine gsi_service:service_manager find;
|
|
binder_call(update_engine, gsid)
|
|
|
|
# Allow to start gsid service.
|
|
set_prop(update_engine, ctl_gsid_prop)
|
|
|
|
# Allow to start snapuserd for dm-user communication.
|
|
set_prop(update_engine, ctl_snapuserd_prop)
|
|
|
|
# Allow to set the OTA related properties, e.g. ota.warm_reset.
|
|
set_prop(update_engine, ota_prop)
|
|
|
|
# Allow to get the DSU status
|
|
get_prop(update_engine, gsid_prop)
|
|
|
|
# Allow update_engine to call the callback function provided by GKI update hook.
|
|
binder_call(update_engine, gki_apex_prepostinstall)
|
|
|
|
# Allow to communicate with the snapuserd service, for dm-user snapshots.
|
|
allow update_engine snapuserd:unix_stream_socket connectto;
|
|
allow update_engine snapuserd_socket:sock_file write;
|