Using macro "rx_file_perms" instead of "execute_no_trans".

Bug: 147320338 Test: Run the maintenance and check if the compiled is executed.
2020-01-09 13:23:01 -08:00 · 2020-01-09 13:23:01 -08:00 · 67e8fcc902
commit 67e8fcc902
parent 7d844ee436
1 changed files with 1 additions and 1 deletions
--- a/public/iorapd.te
+++ b/public/iorapd.te
@ -37,7 +37,7 @@ allow iorapd self:global_capability_class_set sys_nice;
 unix_socket_connect(iorapd, traced_consumer, traced)

 # Allow iorapd to execute compilation (iorap.cmd.compiler) in idle time.
-allow iorapd system_file:file execute_no_trans;
+allow iorapd system_file:file rx_file_perms;

 ###
 ### neverallow rules