Merge "Remove mounton from app and web zygote" into main am: a8f2bbf7c2
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2947925 Change-Id: I4143393154c2850cd4891420d0dc0eddcca0e3ab Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
commit
0980c27aef
@ -34,8 +34,6 @@ allow app_zygote system_server:process getpgid;
|
||||
# Interaction between the app_zygote and its children.
|
||||
allow app_zygote isolated_app:process setpgid;
|
||||
|
||||
allow app_zygote properties_device:dir mounton;
|
||||
|
||||
# TODO (b/63631799) fix this access
|
||||
dontaudit app_zygote mnt_expand_file:dir getattr;
|
||||
|
||||
|
@ -83,8 +83,6 @@ allow webview_zygote same_process_hal_file:file { execute read open getattr map
|
||||
|
||||
allow webview_zygote system_data_file:lnk_file r_file_perms;
|
||||
|
||||
allow webview_zygote properties_device:dir mounton;
|
||||
|
||||
# Send unsolicited message to system_server
|
||||
unix_socket_send(webview_zygote, system_unsolzygote, system_server)
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user