From ab0cd2119d8643d7efa1ad355265fc0d8bfc2ae4 Mon Sep 17 00:00:00 2001
From: Stephen Smalley <sds@tycho.nsa.gov>
Date: Thu, 4 Apr 2013 11:37:51 -0400
Subject: [PATCH] Allow fstat of platform app /data/data files.

Change-Id: I8d46a809c08cd21b0d6c3173998035ab3cc79ada
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
---
 app.te | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app.te b/app.te
index 126f5acaf..8d84e590b 100644
--- a/app.te
+++ b/app.te
@@ -126,7 +126,7 @@ allow appdomain app_data_file:notdevfile_class_set create_file_perms;
 
 # Read/write data files created by the platform apps if they
 # were passed to the app via binder or local IPC.  Do not allow open.
-allow appdomain platform_app_data_file:file { read write };
+allow appdomain platform_app_data_file:file { getattr read write };
 
 # lib subdirectory of /data/data dir is system-owned.
 allow appdomain system_data_file:dir r_dir_perms;
-- 
GitLab