Allow system_server to delete directories in preloads (cherry picked from commit 028ed753b5d7f11baf00033c8dbc6089dc7c32cd) avc: denied { rmdir } for name="apps" scontext=u:r:system_server:s0 tcontext=u:object_r:preloads_data_file:s0 tclass=dir permissive=0 avc: denied { rmdir } for name="demo" scontext=u:r:system_server:s0 tcontext=u:object_r:preloads_data_file:s0 tclass=dir permissive=0 Bug: 28855287 Change-Id: Ia470f94d1d960cc4ebe68cb364b8425418acdbd4

commit: 31899451923b4e8cb1042dc147912161631eef6d [log] [tgz]
author: Fyodor Kupolov <fkupolov@google.com> Fri Jul 08 10:34:22 2016 -0700
committer: Jeff Vander Stoep <jeffv@google.com> Thu Sep 15 09:31:05 2016 -0700
tree: 1a61fe6f55c3aeeeb339bf71c8a2e04370aae054
parent: 1a640f327d3bf45db118e3924a0a1fb556253f60 [diff]
diff --git a/system_server.te b/system_server.te
index 73ef436..5ccc05f 100644
--- a/system_server.te
+++ b/system_server.te

@@ -547,7 +547,7 @@
 
 # Access to /data/preloads
 allow system_server preloads_data_file:file { r_file_perms unlink };
-allow system_server preloads_data_file:dir { r_dir_perms write remove_name };
+allow system_server preloads_data_file:dir { r_dir_perms write remove_name rmdir };
 
 r_dir_file(system_server, cgroup)
 allow system_server ion_device:chr_file r_file_perms;
commit	31899451923b4e8cb1042dc147912161631eef6d	[log] [tgz]
author	Fyodor Kupolov <fkupolov@google.com>	Fri Jul 08 10:34:22 2016 -0700
committer	Jeff Vander Stoep <jeffv@google.com>	Thu Sep 15 09:31:05 2016 -0700
tree	1a61fe6f55c3aeeeb339bf71c8a2e04370aae054
parent	1a640f327d3bf45db118e3924a0a1fb556253f60 [diff]