diff options
| author | Stephen Smalley <sds@tycho.nsa.gov> | 2012-05-01 15:02:53 -0400 |
|---|---|---|
| committer | rpcraig <rpcraig@tycho.ncsc.mil> | 2012-08-09 09:59:10 -0400 |
| commit | ae6f3d7c05070f7e0e56fe0056c8923c6ee2f473 (patch) | |
| tree | 0fa2219d6539d7b9311b24ad60ab1601e15fba63 /rootdir | |
| parent | d25b8502ea2c1294c0afab97bf7f14fbd2087efd (diff) | |
| download | system_core-ae6f3d7c05070f7e0e56fe0056c8923c6ee2f473.zip system_core-ae6f3d7c05070f7e0e56fe0056c8923c6ee2f473.tar.gz system_core-ae6f3d7c05070f7e0e56fe0056c8923c6ee2f473.tar.bz2 | |
Add support for reloading policy from /data/system.
To support runtime policy management, add support for reloading
policy from /data/system. This can be triggered by setting the
selinux.loadpolicy property to 1, whether from init.rc after
mounting /data or from the system_server (e.g. upon invocation of
a new device admin API for provisioning policy). ueventd and
installd are restarted upon policy reloads to pick up the new
policy configurations relevant to their operation.
Change-Id: I97479aecef8cec23b32f60e09cc778cc5520b691
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
Diffstat (limited to 'rootdir')
| -rw-r--r-- | rootdir/init.rc | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/rootdir/init.rc b/rootdir/init.rc index 054c2ca..6a0c332 100644 --- a/rootdir/init.rc +++ b/rootdir/init.rc @@ -355,6 +355,10 @@ service ueventd /sbin/ueventd critical seclabel u:r:ueventd:s0 +on property:selinux.reload_policy=1 + restart ueventd + restart installd + service console /system/bin/sh class core console |