PWN-Hunter/android_system_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3b62596f4f
android_system_sepolicy/vendor/hal_gnss_default.te
Tri Vo 5c1fe61eaa More granular vendor access to /system files. 
This change limits global access to /system files down to:
/system/bin/linker*
/system/lib[64]/*
/system/etc/ld.config*
/system/etc/seccomp_policy/*
/system/etc/security/cacerts/*
/system/usr/share/zoneinfo/*

Bug: 111243627
Test: boot device, browse internet without denials to system_* types.
Test: VtsHalDrmV1_{1, 0}TargetTest without denials
Change-Id: I69894b29733979c2bc944ac80229e84de5d519f4
2018-09-20 03:07:50 +00:00

6 lines
183 B
Plaintext
Raw Blame History

type hal_gnss_default, domain;
hal_server_domain(hal_gnss_default, hal_gnss)
type hal_gnss_default_exec, exec_type, vendor_file_type, file_type;
init_daemon_domain(hal_gnss_default)
Reference in New Issue View Git Blame Copy Permalink