platform_system_sepolicy

History

Alan Stokes 76fb93871d Policy changes for running payloads not as root Allow Microdroid Manager to setuid/setgid when spawning Microdroid Launcher. Allow encryptedstore binary to chmod the root directory. Also added some neverallow rules, because I was surprised that I didn't trigger one. Bug: 296393106 Test: atest MicrodroidTests Change-Id: I1f224d59548162d0b36c2c9f32710db2c2da5869	2023-08-23 13:44:40 +01:00
..
private	Policy changes for running payloads not as root	2023-08-23 13:44:40 +01:00
public	Allow system server to set dynamic ART properties.	2023-03-31 11:46:05 +01:00

Alan Stokes 76fb93871d Policy changes for running payloads not as root

Allow Microdroid Manager to setuid/setgid when spawning Microdroid
Launcher.

Allow encryptedstore binary to chmod the root directory.

Also added some neverallow rules, because I was surprised that I
didn't trigger one.

Bug: 296393106
Test: atest MicrodroidTests
Change-Id: I1f224d59548162d0b36c2c9f32710db2c2da5869

2023-08-23 13:44:40 +01:00

private

Policy changes for running payloads not as root

2023-08-23 13:44:40 +01:00

public

Allow system server to set dynamic ART properties.

2023-03-31 11:46:05 +01:00