Re: [PATCH 1/6] external/sepolicy: allow media_app more permissions on sdcard

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I made a mistake. Sorry for that. 

On Mon, Jul 23, 2012 at 6:22 AM, Stephen Smalley <sds@xxxxxxxxxxxxx> wrote:
On Thu, 2012-07-19 at 16:07 -0700, Haiqing Jiang wrote:
> ---
>  app.te |    2 +-
>  1 files changed, 1 insertions(+), 1 deletions(-)
>
> diff --git a/app.te b/app.te
> index 0866e95..a5ff295 100644
> --- a/app.te
> +++ b/app.te
> @@ -41,7 +41,7 @@ allow media_app cache_file:dir rw_dir_perms;
>  allow media_app cache_file:file create_file_perms;
>  # Access sdcard.
>  allow media_app sdcard:dir create_dir_perms;
> -allow media_app sdcard:file create_file_perms;
> +allow media_app sdcard:file { create_file_perms link_file_perms };
>  # Read/[write] to /proc/net/xt_qtaguid/ctrl and /dev/xt_qtaguid
>  allow media_app qtaguid_proc:file rw_file_perms;
>  allow media_app qtaguid_device:chr_file r_file_perms;

create_file_perms already contains link_file_perms, so this does
nothing.

--
Stephen Smalley
National Security Agency




--
-----------------------------------
Haiqing Jiang, PH.D student

Computer Science Department, North Carolina State University


[Index of Archives]     [Selinux Refpolicy]     [Linux SGX]     [Fedora Users]     [Fedora Desktop]     [Yosemite Photos]     [Yosemite Camping]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

  Powered by Linux