Google Git
Sign in
android / platform / system / sepolicy / 0ec941469d52004bb8c33a9927c231dbff7ff7d9
commit0ec941469d52004bb8c33a9927c231dbff7ff7d9[log] [tgz]
authorNick Kralevich <nnk@google.com>Mon Jan 23 22:19:06 2017 -0800
committergitbuildkicker <android-build@google.com>Tue Jan 24 14:13:43 2017 -0800
treedc8c61de20f59e0ea19016ed8967e8fa4dd8eb33
parentf16be38675bfb975cff8846e53cd481c736d548c [diff]
priv_app: allow reading /cache symlink

Addresses the following denial:

  avc: denied { read } for name="cache" dev="dm-0" ino=2755
  scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:cache_file:s0
  tclass=lnk_file permissive=0

which occurs when a priv-app attempts to follow the /cache symlink. This
symlink occurs on devices which don't have a /cache partition, but
rather symlink /cache to /data/cache.

Bug: 34644911
Test: Policy compiles.
Change-Id: I9e052aeb0c98bac74fa9225b9253b1537ffa5adc
(cherry picked from commit 21cb045bd5f8715cdad13bc4f242b0e2028bc56d)
1 file changed
tree: dc8c61de20f59e0ea19016ed8967e8fa4dd8eb33
  1. private/
  2. public/
  3. reqd_mask/
  4. tools/
  5. Android.mk
  6. CleanSpec.mk
  7. MODULE_LICENSE_PUBLIC_DOMAIN
  8. NOTICE
  9. PREUPLOAD.cfg
  10. README