ADHOC/replicant-vendor_replicant
3
0
Fork 0
Code Issues 6 Pull Requests Releases Activity

sepolicy: Allow minivold execute_no_trans

Browse Source 
After assimilating minivold into /sbin/recovery, we need to allow the
minivold service (a symlink to the recovery binary) to transition from
the recovery to the vold domain.

Change-Id: I112e6d371a8da8fc55a06967852c869105190616
This commit is contained in:
Matt Mower 2015-12-27 12:26:23 -06:00 committed by Gerrit Code Review
parent 14e765cd71
commit 511152cd2c
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
sepolicy/vold.te
View File

@ -13,6 +13,7 @@ allow vold self:capability { setgid setuid };
# Vold can also run as minivold in the rootfs # Vold can also run as minivold in the rootfs
recovery_only(` recovery_only(`
allow vold rootfs:dir { add_name write }; allow vold rootfs:dir { add_name write };
allow vold rootfs:file execute_no_trans;
') ')
# External storage # External storage