-
- Downloads
sepolicy: restrict /vendor/overlay from most coredomains
The change makes 'vendor_overlay_file' accessible only to few platform
domains like idmap, system_server, zygote and appdomain.
The overlay files contains RROs (runtime resource overlays)
Bug: 36681210
Test: Boot sailfish (treble device) from wiped flashall
Test: Connect to wifi and launch chrome to load few websites.
Test: Launch camera and record + playback video
Change-Id: I3596ca89ad51d0e7d78c75121f22ea71209ee332
Signed-off-by: 
Sandeep Patil <sspatil@google.com>
Showing
- private/app.te 3 additions, 0 deletionsprivate/app.te
- private/system_server.te 3 additions, 0 deletionsprivate/system_server.te
- private/zygote.te 4 additions, 0 deletionsprivate/zygote.te
- public/domain.te 20 additions, 6 deletionspublic/domain.te
- public/idmap.te 3 additions, 0 deletionspublic/idmap.te
Loading
Please register or sign in to comment