openharmony/security_selinux
1
0
Fork 0
mirror of https://gitee.com/openharmony/security_selinux synced 2025-02-22 22:01:20 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

!2387 Fix aot data_local_arkcache neverallow permission

Browse Source 
Merge pull request !2387 from herongpeng/master
This commit is contained in:
openharmony_ci 2023-05-27 09:39:24 +00:00 committed by Gitee
commit 04d9be8c49
No known key found for this signature in database
GPG Key ID: 173E9B9CA92EEF8F
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
sepolicy/base/public/domain.te
View File

@ -130,8 +130,8 @@ neverallow * self:memprotect mmap_zero;
neverallow * { file_attr -lib_file -system_bin_file -system_lib_file -vendor_bin_file -vendor_lib_file
-vendor_file -exec_attr -hap_file_attr -data_local_tmp -chip_prod_file -module_update_lib_file
-module_update_bin_file -data_updater_file -data_local_arkcache}:file { execute execute_no_trans entrypoint };
neverallow { domain -hdcd} data_local_arkcache:file { write };
neverallow { domain -hdcd} data_local_arkcache:dir { write };
neverallow { domain } data_local_arkcache:file { write };
neverallow { domain } data_local_arkcache:dir { write };
neverallow * { file_attr -exec_attr -system_bin_file -vendor_bin_file }:file entrypoint;