Make *-apex-info-list.xml readable by shell Enables CTS testing of the bootstrap apexes. Bug: 186767843 Test: adb shell cat bootstrap-apex-info-list.xml works without root Change-Id: Icf56d32d296f5a42160dbd9ea90a89c8b4db6aa7

commit: 75385efd27cad6db1791c81792e0e850857c77a2 [log] [tgz]
author: Tej Singh <singhtejinder@google.com> Mon Jun 07 13:27:52 2021 -0700
committer: Tej Singh <singhtejinder@google.com> Mon Jun 07 21:39:34 2021 +0000
tree: 8cdb3b00cc432e49bc6e00f3d832ef4a0e648e9e
parent: ed3ad1d253f4defe4210fac299977a683bc718b1 [diff]
diff --git a/private/shell.te b/private/shell.te
index 0e94cd1..f61c874 100644
--- a/private/shell.te
+++ b/private/shell.te

@@ -102,6 +102,9 @@
 allow shell self:perf_event { open read write kernel };
 neverallow shell self:perf_event ~{ open read write kernel };
 
+# Allow shell to read /apex/apex-info-list.xml
+allow shell apex_info_file:file r_file_perms;
+
 # Set properties.
 set_prop(shell, shell_prop)
 set_prop(shell, ctl_bugreport_prop)
commit	75385efd27cad6db1791c81792e0e850857c77a2	[log] [tgz]
author	Tej Singh <singhtejinder@google.com>	Mon Jun 07 13:27:52 2021 -0700
committer	Tej Singh <singhtejinder@google.com>	Mon Jun 07 21:39:34 2021 +0000
tree	8cdb3b00cc432e49bc6e00f3d832ef4a0e648e9e
parent	ed3ad1d253f4defe4210fac299977a683bc718b1 [diff]