564d5e393cb8eacb4cf41cb732918139645a2216 - android_system_sepolicy

commit	564d5e393cb8eacb4cf41cb732918139645a2216	[log] [tgz]
author	Tom Cherry <tomcherry@google.com>	Mon Jan 22 14:18:31 2018 -0800
committer	Tom Cherry <tomcherry@google.com>	Wed Jan 24 07:05:33 2018 +0000
tree	006d8c8c971d8cf343fdcbeef36b39eca4b450eb
parent	cf391269acd6ff71fe254d2f62d9c82571dd24bf [diff]

Disallow vendor_init from accessing core_data_file_type

Now that the vendor_init mechanism is in place, this SELinux
restriction will disallow vendor init scripts from touching core data
files as intended with Treble.

Bug: 62875318
Test: None
Change-Id: Ifa50486c48551ba095d2ed8cc6570fc5040c172d

public/vendor_init.te[diff]

1 file changed

tree: 006d8c8c971d8cf343fdcbeef36b39eca4b450eb

prebuilts/
private/
public/
reqd_mask/
tests/
tools/
vendor/
Android.bp
Android.mk
CleanSpec.mk
definitions.mk
MODULE_LICENSE_PUBLIC_DOMAIN
NOTICE
OWNERS
PREUPLOAD.cfg
README