421dadbc9dc4e5fdd7544a7ecc3343101644a9c3 - android_system_sepolicy

commit	421dadbc9dc4e5fdd7544a7ecc3343101644a9c3	[log] [tgz]
author	Paul Crowley <paulcrowley@google.com>	Mon May 11 10:46:22 2015 +0100
committer	Paul Crowley <paulcrowley@google.com>	Tue May 12 10:00:41 2015 +0100
tree	3400471b41fc68021deef408b6f8225c83ef781b
parent	540be83b82a395147388b54a8c8197d84cd255ab [diff]

Allow vold to create subdirectories within its private area.

AVC message we get without this change creating
/data/misc/vold/user_keys

05-12 08:57:54.839   189   189 W vold    : type=1400 audit(0.0:176):
avc: denied { create } for name="user_keys" scontext=u:r:vold:s0
tcontext=u:object_r:vold_data_file:s0 tclass=dir permissive=0

Bug: 19704432
Change-Id: I10fc90c64c7c10fa9811133a4289663ae8617607

vold.te[diff]

1 file changed

tree: 3400471b41fc68021deef408b6f8225c83ef781b

tools/
access_vectors
adbd.te
Android.mk
app.te
attributes
binderservicedomain.te
blkid.te
blkid_untrusted.te
bluetooth.te
bootanim.te
clatd.te
debuggerd.te
device.te
dex2oat.te
dhcp.te
dnsmasq.te
domain.te
drmserver.te
dumpstate.te
file.te
file_contexts
fs_use
fsck.te
fsck_untrusted.te
gatekeeperd.te
genfs_contexts
global_macros
gpsd.te
hci_attach.te
healthd.te
hostapd.te
init.te
initial_sid_contexts
initial_sids
inputflinger.te
install_recovery.te
installd.te
isolated_app.te
kernel.te
keys.conf
keystore.te
lmkd.te
logd.te
mac_permissions.xml
mdnsd.te
mediaserver.te
mls
mls_macros
mtp.te
net.te
netd.te
neverallow_macros
nfc.te
NOTICE
perfprofd.te
platform_app.te
policy_capabilities
port_contexts
ppp.te
procrank.te
property.te
property_contexts
racoon.te
radio.te
README
recovery.te
rild.te
roles
runas.te
sdcardd.te
seapp_contexts
security_classes
service.te
service_contexts
servicemanager.te
sgdisk.te
shared_relro.te
shell.te
slideshow.te
su.te
surfaceflinger.te
system_app.te
system_server.te
te_macros
tee.te
toolbox.te
tzdatacheck.te
ueventd.te
uncrypt.te
untrusted_app.te
users
vdc.te
vold.te
watchdogd.te
wpa.te
zygote.te