Skip to content
Snippets Groups Projects
Commit 1db81c06 authored by Alex Deymo's avatar Alex Deymo Committed by android-build-merger
Browse files

Merge "update_engine: Allow to tag sockets." am: 8d48aa79 am: 255e0ed3 

am: e8fdd805

Change-Id: I1acef5124c5188f947f6e974908223fd13c0103e
parents e25d83bb e8fdd805
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 5 additions and 0 deletions
public/update_engine.te
+ 5
0
View file @ 1db81c06
...@@ -6,6 +6,11 @@ type update_engine_data_file, file_type, data_file_type; ...@@ -6,6 +6,11 @@ type update_engine_data_file, file_type, data_file_type;
net_domain(update_engine); net_domain(update_engine);
# Read/[write] to /proc/net/xt_qtaguid/ctrl and /dev/xt_qtaguid to tag network
# sockets.
allow update_engine qtaguid_proc:file rw_file_perms;
allow update_engine qtaguid_device:chr_file r_file_perms;
# Following permissions are needed for update_engine. # Following permissions are needed for update_engine.
allow update_engine self:process { setsched }; allow update_engine self:process { setsched };
allow update_engine self:capability { fowner sys_admin }; allow update_engine self:capability { fowner sys_admin };
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment