One thing should be paid attentions here: We add a new entry of "user=app_* name=android.process.media domain=media_app levelFromUid=true" to seapp_context file. One would say it's nonecessary because there's already one policy "user=app_* seinfo=media domain=media_app levelFromUid=true". But the thing is that the seinfo of "android.process.media" is not media. If you have better ideas, pleae let us know. And we can resubmit the refined patches later. -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
