Skip to content
Snippets Groups Projects
Commit f8fd5ab2 authored by Jeff Sharkey's avatar Jeff Sharkey
Browse files

installd restorecon now requires getattr. 

avc: denied { getattr } for path="/mnt/expand" dev="tmpfs" ino=3146 scontext=u:r:installd:s0 tcontext=u:object_r:mnt_expand_file:s0 tclass=dir permissive=0

Bug: 21856349
Change-Id: Ib9984182a71408d5cb803d453f148856b68569e3
parent df545265
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
installd.te
+ 1
1
View file @ f8fd5ab2
...@@ -22,7 +22,7 @@ allow installd oemfs:dir r_dir_perms; ...@@ -22,7 +22,7 @@ allow installd oemfs:dir r_dir_perms;
allow installd oemfs:file r_file_perms; allow installd oemfs:file r_file_perms;
allow installd system_file:file x_file_perms; allow installd system_file:file x_file_perms;
allow installd cgroup:dir create_dir_perms; allow installd cgroup:dir create_dir_perms;
allow installd mnt_expand_file:dir search; allow installd mnt_expand_file:dir { search getattr };
# Check validity of SELinux context before use. # Check validity of SELinux context before use.
selinux_check_context(installd) selinux_check_context(installd)
# Read /seapp_contexts and /data/security/seapp_contexts # Read /seapp_contexts and /data/security/seapp_contexts
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment