commit f5a723a306ae1ab76f2d5552b1f69762efdcb776
author Roshan Pius <rpius@google.com> Wed Apr 14 02:31:41 2021 +0000
committer Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com> Wed Apr 14 02:31:41 2021 +0000
tree 1d5f769b2e72e640347dac14ab8061204122dc7d
parent 6caaac5e73dce007ef2a28212794e44cc32a5e63
parent 4b47c8094478b22a000b8d505385071cf3833e16

Merge "Uwb: Create a new Uwb system service" am: 0b8eafb54b am: 4b47c80944

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1673587

Change-Id: I6d7f4bc39e2b1cce388a18292bac0d7e7b37003d

prebuilts/api/30.0/private/gmscore_app.te

diff --git a/prebuilts/api/30.0/private/gmscore_app.te b/prebuilts/api/30.0/private/gmscore_app.te
index 2355326..b7c9235 100644
--- a/prebuilts/api/30.0/private/gmscore_app.te
+++ b/prebuilts/api/30.0/private/gmscore_app.te
@@ -75,6 +75,10 @@
 # TODO: Tighten (b/112357170)
 allow gmscore_app privapp_data_file:file execute;
 
+# Chrome Crashpad uses the the dynamic linker to load native executables
+# from an APK (b/112050209, crbug.com/928422)
+allow gmscore_app system_linker_exec:file execute_no_trans;
+
 allow gmscore_app privapp_data_file:lnk_file create_file_perms;
 
 # /proc access

prebuilts/api/30.0/private/priv_app.te

diff --git a/prebuilts/api/30.0/private/priv_app.te b/prebuilts/api/30.0/private/priv_app.te
index 44c81ee..c5f7013 100644
--- a/prebuilts/api/30.0/private/priv_app.te
+++ b/prebuilts/api/30.0/private/priv_app.te
@@ -25,6 +25,10 @@
 # TODO: Tighten (b/112357170)
 allow priv_app privapp_data_file:file execute;
 
+# Chrome Crashpad uses the the dynamic linker to load native executables
+# from an APK (b/112050209, crbug.com/928422)
+allow priv_app system_linker_exec:file execute_no_trans;
+
 allow priv_app privapp_data_file:lnk_file create_file_perms;
 
 # Priv apps can find services that expose both @SystemAPI and normal APIs.