Gitiles
Code Review Sign In
LeafOS / LeafOS-Project / android_system_sepolicy / 2e70509f39a352cbe05142330faba0c923c002e6^! / .
commit2e70509f39a352cbe05142330faba0c923c002e6[log] [tgz]
authorGabriele M <moto.falcon.git@gmail.com>Wed Jan 25 02:09:04 2017 +0100
committerTim Zimmermann <tim@linux4.de>Tue Mar 05 06:08:38 2024 +0100
tree17cdc38d00ed2b5a8234eaa058fe145baa96df3a
parent3581e8a7031a4573d0a4b6d3c757d8d8496e1515 [diff]
sepolicy: Allow recovery to alter /

This is needed for /etc/fstab, /adb_keys and volmgr

Change-Id: I53332a57ce7879d7ba63c4ea3e27add01f5a3a90

diff --git a/prebuilts/api/34.0/public/domain.te b/prebuilts/api/34.0/public/domain.te
index 17a0c37..c977c29 100644
--- a/prebuilts/api/34.0/public/domain.te
+++ b/prebuilts/api/34.0/public/domain.te

@@ -487,8 +487,8 @@
 # Don't allow mounting on top of /system files or directories
 neverallow * exec_type:dir_file_class_set mounton;
 
-# Nothing should be writing to files in the rootfs.
-neverallow * rootfs:file { create write setattr relabelto append unlink link rename };
+# Nothing should be writing to files in the rootfs, except recovery.
+neverallow { domain -recovery } rootfs:file { create write setattr relabelto append unlink link rename };
 
 # Restrict context mounts to specific types marked with
 # the contextmount_type attribute.

diff --git a/public/domain.te b/public/domain.te
index 48c8aa8..c336d5b 100644
--- a/public/domain.te
+++ b/public/domain.te

@@ -498,8 +498,8 @@
 # Don't allow mounting on top of /system files or directories
 neverallow * exec_type:dir_file_class_set mounton;
 
-# Nothing should be writing to files in the rootfs.
-neverallow * rootfs:file { create write setattr relabelto append unlink link rename };
+# Nothing should be writing to files in the rootfs, except recovery.
+neverallow { domain -recovery } rootfs:file { create write setattr relabelto append unlink link rename };
 
 # Restrict context mounts to specific types marked with
 # the contextmount_type attribute.