diff options
| -rw-r--r-- | common/iop.te | 3 | ||||
| -rw-r--r-- | common/system_server.te | 1 |
2 files changed, 3 insertions, 1 deletions
diff --git a/common/iop.te b/common/iop.te index e0a64637..9f7fd712 100644 --- a/common/iop.te +++ b/common/iop.te @@ -39,7 +39,8 @@ r_dir_file( dumpstate, appdomain ); r_dir_file( dumpstate, apk_data_file ); #Create a socket for receiving info from IOP -allow dumpstate iop_socket:sock_file rw_file_perms; +type_transition dumpstate iop_data_file:sock_file iop_socket "iop"; +allow dumpstate iop_socket:sock_file { create_file_perms unlink }; #default_values file allow dumpstate iop_data_file:dir rw_dir_perms; diff --git a/common/system_server.te b/common/system_server.te index 87bfc53c..f933ca94 100644 --- a/common/system_server.te +++ b/common/system_server.te @@ -39,6 +39,7 @@ allow system_server { bluetooth_prop usf_prop }:property_service set; allow system_server bluetooth:unix_stream_socket connectto; # access to iop allow system_server iop_socket:dir r_dir_perms; +allow system_server iop_data_file:dir r_dir_perms; unix_socket_send(system_server, iop, dumpstate) unix_socket_connect(system_server, iop, dumpstate) |