commit 9a93d79a92000ba8b4f27522032f9262a0d15783
author Treehugger Robot <treehugger-gerrit@google.com> Wed Dec 08 00:28:52 2021 +0000
committer Gerrit Code Review <noreply-gerritcodereview@google.com> Wed Dec 08 00:28:52 2021 +0000
tree 27f8f692dd526c383831823fa4626564b2a28c99
parent d725f8acaf88643ea14ea735c186401f3ac5cf28
parent f97cc1fd26d2c80b28681da6e98870deccae4753

Merge changes I81ab0a73,Ia66015b7

* changes:
  Allow compsvc to execute odrefresh
  Allow composd to run fd_server

microdroid/system/private/microdroid_manager.te

diff --git a/microdroid/system/private/microdroid_manager.te b/microdroid/system/private/microdroid_manager.te
index 38fabcd..b914775 100644
--- a/microdroid/system/private/microdroid_manager.te
+++ b/microdroid/system/private/microdroid_manager.te
@@ -73,4 +73,8 @@
 # Allow microdroid_manager to shutdown the device when verification fails
 set_prop(microdroid_manager, powerctl_prop)
 
+# Allow microdroid_manager to read bootconfig so that it can reject a bootconfig
+# that is different from what is recorded in the instance.img file.
+allow microdroid_manager proc_bootconfig:file r_file_perms;
+
 neverallow microdroid_manager { file_type fs_type }:file execute_no_trans;

public/recovery.te

diff --git a/public/recovery.te b/public/recovery.te
index 33658e8..b4b4109 100755
--- a/public/recovery.te
+++ b/public/recovery.te
@@ -9,9 +9,12 @@
 recovery_only(`
   # Allow recovery to perform an update as update_engine would do.
   typeattribute recovery update_engine_common;
-  # Recovery can only use HALs in passthrough mode
+  # Recovery can use HIDL HALs in passthrough mode
   passthrough_hal_client_domain(recovery, hal_bootctl)
 
+  # Recovery can use AIDL HALs in binder mode
+  hal_client_domain(recovery, hal_health)
+
   allow recovery self:global_capability_class_set {
     chown
     dac_override