Skip to content
Snippets Groups Projects
Commit 3b9fd5ff authored by Alex Klyubin's avatar Alex Klyubin
Browse files

SELinux policy: let adbd drop Linux capabilities. 

Change-Id: Id41891b89c7b067919cbda06ab97d5eff2ad044f
parent 77ec892b
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
adbd.te
+ 1
1
View file @ 3b9fd5ff
...@@ -3,7 +3,7 @@ ...@@ -3,7 +3,7 @@
type adbd, domain, mlstrustedsubject; type adbd, domain, mlstrustedsubject;
allow adbd adb_device:chr_file rw_file_perms; allow adbd adb_device:chr_file rw_file_perms;
allow adbd qemu_device:chr_file rw_file_perms; allow adbd qemu_device:chr_file rw_file_perms;
allow adbd self:capability { net_raw setgid setuid dac_override sys_boot sys_admin }; allow adbd self:capability { net_raw setgid setuid setpcap dac_override sys_boot sys_admin };
allow adbd rootfs:file { r_file_perms entrypoint }; allow adbd rootfs:file { r_file_perms entrypoint };
allow adbd init:process sigchld; allow adbd init:process sigchld;
allow adbd self:tcp_socket *; allow adbd self:tcp_socket *;
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment