Give domains read access to security_file domain. /data/security is another location that policy files can reside. In fact, these policy files take precedence over their rootfs counterparts under certain circumstances. Give the appropriate players the rights to read these policy files. Change-Id: I9951c808ca97c2e35a9adb717ce5cb98cda24c41

commit: 7bb2a55c4732126b7e99718cd66d5e2305e34683 [log] [tgz]
author: William Roberts <w.roberts@sta.samsung.com> Thu Apr 04 13:17:36 2013 -0700
committer: repo sync <gcondra@google.com> Fri Apr 05 13:11:23 2013 -0700
tree: d2460f21ccc61d1c8d92283a54e51c8b91df09a8
parent: 74ba8c86137d85285a09780999b79034c7e935b1 [diff] [blame]
diff --git a/debuggerd.te b/debuggerd.te
index a0041e6..aca499b 100644
--- a/debuggerd.te
+++ b/debuggerd.te

@@ -9,7 +9,7 @@
 allow debuggerd domain:dir r_dir_perms;
 allow debuggerd domain:file r_file_perms;
 allow debuggerd domain:process ptrace;
-allow debuggerd rootfs:file r_file_perms;
+security_access_policy(debuggerd)
 allow debuggerd system_data_file:dir create_dir_perms;
 allow debuggerd system_data_file:dir relabelfrom;
 allow debuggerd tombstone_data_file:dir relabelto;
commit	7bb2a55c4732126b7e99718cd66d5e2305e34683	[log] [tgz]
author	William Roberts <w.roberts@sta.samsung.com>	Thu Apr 04 13:17:36 2013 -0700
committer	repo sync <gcondra@google.com>	Fri Apr 05 13:11:23 2013 -0700
tree	d2460f21ccc61d1c8d92283a54e51c8b91df09a8
parent	74ba8c86137d85285a09780999b79034c7e935b1 [diff] [blame]