From 3f998a4c45a672fd10f22844bbb20fb1474977e2 Mon Sep 17 00:00:00 2001
From: Alessandro Astone <ales.astone@gmail.com>
Date: Feb 26 2022 14:58:35 +0000
Subject: Add sepolicy for crash handler


---

diff --git a/waydroid.spec b/waydroid.spec
index 941888d..2cfb769 100644
--- a/waydroid.spec
+++ b/waydroid.spec
@@ -6,7 +6,7 @@
 %forgemeta
 Name:           waydroid
 Version:        %{tag}
-Release:        4%{?dist}
+Release:        5%{?dist}
 Summary:        waydroid
 License:        LGPLv2+
 URL:            %{forgeurl}
@@ -97,6 +97,9 @@ fi
 %{_datadir}/selinux/targeted/%{name}.pp
 
 %changelog
+* Sat Feb 26 2022 Alessandro Astone <ales.astone@gmail.com> - 1.2.0-5.20220226git1.2.0
+- Add sepolicy for crash handler
+
 * Fri Feb 25 2022 Alessandro Astone <ales.astone@gmail.com> - 1.2.0-4.20220225git1.2.0
 - Respin package
 
diff --git a/waydroid.te b/waydroid.te
index 5fe04c6..6c1767a 100644
--- a/waydroid.te
+++ b/waydroid.te
@@ -7,6 +7,7 @@ require {
 	type spc_t;
 	type init_t;
 	type binder_device_t;
+	type abrt_t;
 	class capability2 mac_admin;
 	class binder { call set_context_mgr transfer };
 	class chr_file { ioctl map open read write };
@@ -23,3 +24,6 @@ allow spc_t unconfined_t:binder { call transfer };
 allow unconfined_service_t spc_t:binder { call transfer };
 
 allow unconfined_t spc_t:binder { call transfer };
+
+# For when we crash
+allow abrt_t binder_device_t:chr_file { open read };