Merge "init: change overlayfs_file rule to dontaudit" into sc-dev am: 3582ffbdbf
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15243218 Change-Id: Ie4fbc4fdc55beb1e3cabb65f9454fccde8b1aa2d
This commit is contained in:
Salmax Chang
Automerger Merge Worker
commit
75e43acd87
1 changed files with 3 additions and 4 deletions
7
whitechapel/vendor/google/init.te
vendored
7
whitechapel/vendor/google/init.te
vendored
|
|
@ -19,7 +19,6 @@ allow init per_boot_file:file ioctl;
|
|||
allowxperm init per_boot_file:file ioctl { F2FS_IOC_SET_PIN_FILE };
|
||||
allow init sysfs_scsi_devices_0000:file w_file_perms;
|
||||
|
||||
userdebug_or_eng(`
|
||||
allow init overlayfs_file:file { rename };
|
||||
allow init overlayfs_file:chr_file { unlink };
|
||||
')
|
||||
# Workaround for b/193113005 that modem_img unlabeled after disable-verity
|
||||
dontaudit init overlayfs_file:file { rename };
|
||||
dontaudit init overlayfs_file:chr_file { unlink };
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue