| commit | b10cffe76819906d8d158764de7f384956c20cad | [log] [tgz] |
|---|---|---|
| author | Eric Biggers <ebiggers@google.com> | Mon May 09 14:45:11 2022 +0000 |
| committer | Gerrit Code Review <noreply-gerritcodereview@google.com> | Mon May 09 14:45:11 2022 +0000 |
| tree | 869ae8e2c0844bfc9b7759fe3b5af33a32199395 | |
| parent | 0105944bbc46f346b25fabc556442cf545b61124 [diff] | |
| parent | 9a5992336e888533ac3f6536f7ad9a70eb861396 [diff] |
Merge "Restrict creating per-user encrypted directories"
diff --git a/private/system_server.te b/private/system_server.te index b5e9e45..287503c 100644 --- a/private/system_server.te +++ b/private/system_server.te
@@ -1079,6 +1079,10 @@ FS_IOC_ENABLE_VERITY FS_IOC_MEASURE_VERITY }; +allowxperm system_server system_file:file ioctl { + FS_IOC_MEASURE_VERITY +}; + # Postinstall # # For OTA dexopt, allow calls coming from postinstall.