PWN-Hunter/android_system_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge "priv_app: Remove rules allowing a priv-app to ptrace itself"

Browse Source
This commit is contained in:
Treehugger Robot 2020-01-10 20:23:06 +00:00 committed by Gerrit Code Review
commit 623fb38952
1 changed files with 0 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
private/priv_app.te
View File

@ -14,13 +14,6 @@ bluetooth_domain(priv_app)
# Used by: https://play.privileged.com/store/apps/details?id=jackpal.androidterm
create_pty(priv_app)
# webview crash handling depends on self ptrace (b/27697529, b/20150694, b/19277529#comment7)
allow priv_app self:process ptrace;
# b/142672293: No other priv-app should need this allow rule now that GMS core runs in its own domain.
userdebug_or_eng(`
auditallow priv_app self:process ptrace;
')
# Allow loading executable code from writable priv-app home
# directories. This is a W^X violation, however, it needs
# to be supported for now for the following reasons.