On Sep 19, 2016 22:28, "Inamdar Sharif" <isha...@nvidia.com> wrote:
>
> Hi ,
>
>
>
> I am getting the following avc denied

No, that woukd defeat the purpose if an isolated application. Isolated
applications are sandboxed even away from their own on disk resources.

https://developer.android.com/guide/topics/manifest/service-element.html#isolated

>
>
>
> avc: denied { search } for
pid=3174name="com.google.android.apps.mediashell" dev="mmcblk0p29"
ino=503938 scontext=u:r:isolated_app:s0:c512,c768
tcontext=u:object_r:app_data_file:s0:c512,c768 tclass=dir permissive=0
>
>
>
>
>
> Do we want to add the following rule:
>
> allow isolated_app app_data_file:dir search;
>
>
>
> Thanks.
>
> ________________________________
> This email message is for the sole use of the intended recipient(s) and
may contain confidential information.  Any unauthorized review, use,
disclosure or distribution is prohibited.  If you are not the intended
recipient, please contact the sender by reply email and destroy all copies
of the original message.
> ________________________________
>
> _______________________________________________
> Seandroid-list mailing list
> Seandroid-list@tycho.nsa.gov
> To unsubscribe, send email to seandroid-list-le...@tycho.nsa.gov.
> To get help, send an email containing "help" to
seandroid-list-requ...@tycho.nsa.gov.
_______________________________________________
Seandroid-list mailing list
Seandroid-list@tycho.nsa.gov
To unsubscribe, send email to seandroid-list-le...@tycho.nsa.gov.
To get help, send an email containing "help" to 
seandroid-list-requ...@tycho.nsa.gov.

Reply via email to