Evolution-X-Devices/device_google_sunfish
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

SSRestarDetector: modify the SELinux policy to allow access files owned by system for Sunfish.

Browse Source 
It needs to access a file pushed by hosts of test suites (details: http://go/pd-client-for-lab#heading=h.wtp07hbqvwgx)
This CL is used to pass DeviceBootTest.DeviceBootTest#SELinuxUncheckedDenialBootTest.

Bug: 234359369
Bug: 273662631
Design: http://go/pd-client-for-lab
Test: manual
Ignore-AOSP-First: only for google devices.
Change-Id: I670191f20c741d807def4fad25fde92ee54f331a
This commit is contained in:
Enzo Liao
2023-03-15 17:17:46 +08:00
parent 3e93f89df9
commit 474381adee
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
vendor/google/ssr_detector.te vendored
View File

@@ -15,7 +15,8 @@ get_prop(ssr_detector_app, vendor_wifi_version)
get_prop(ssr_detector_app, public_vendor_system_prop)
# ssr_detector app's data type is system_app_data_file.
allow ssr_detector_app system_app_data_file:dir { getattr search };
allow ssr_detector_app system_app_data_file:dir create_dir_perms;
allow ssr_detector_app system_app_data_file:file create_file_perms;
allow ssr_detector_app cgroup:file w_file_perms;