public/priv_app.te · 72d18125c1fadceff865da93cef7bb435792b189 · Werner Sembach / AndroidSystemSEPolicy

Something went wrong on our end

8 years ago

priv_app.te: drop app_data_file:file execute_no_trans; · 8fb4cb8b

Nick Kralevich authored 8 years ago

auditallow (added in commit 758e6b36)
has been in place for about 2 weeks now, and no hits. Remove
execute_no_trans.

The net effect of this change is that priv_apps won't be able to exec()
a file from their home directory, but dlopen() and friends will still
work.

Test: Compiles and boots successfully.
Test: No auditallow messages received via SELinux denial collection.
Change-Id: I60fcdc260d12e1bcc2355ca4dd912de7e6d0a145

8fb4cb8b

History

priv_app.te: drop app_data_file:file execute_no_trans;

Nick Kralevich authored 8 years ago

auditallow (added in commit 758e6b36)
has been in place for about 2 weeks now, and no hits. Remove
execute_no_trans.

The net effect of this change is that priv_apps won't be able to exec()
a file from their home directory, but dlopen() and friends will still
work.

Test: Compiles and boots successfully.
Test: No auditallow messages received via SELinux denial collection.
Change-Id: I60fcdc260d12e1bcc2355ca4dd912de7e6d0a145