commit 33210ec5cc12f9d94f857abb6efc33bc38b731a4
author Woody Lin <woodylin@google.com> Fri Jan 17 18:51:36 2020 +0800
committer Woody Lin <woodylin@google.com> Tue Jul 14 14:38:21 2020 +0800
tree df51d1c2eca04eae1c301b9b71605c60933c02d7
parent 87dcc6ddb64ce130f6196a6eb04b4e7c93995397

pixel-sepolicy/ramdump: Add sepolicies for ramdump types & domain

Bug: 160434722
Bug: 161103878
Change-Id: I7950c5eb9c3845da397e2c37aaf28234d8a8a6fe

ramdump/common/file.te

diff --git a/ramdump/common/file.te b/ramdump/common/file.te
new file mode 100644
index 0000000..e1382df
--- /dev/null
+++ b/ramdump/common/file.te
@@ -0,0 +1,2 @@
+type ramdump_vendor_data_file, file_type, data_file_type, mlstrustedobject;
+type ramdump_vendor_mnt_file, file_type, data_file_type, mlstrustedobject;

ramdump/common/file_contexts

diff --git a/ramdump/common/file_contexts b/ramdump/common/file_contexts
new file mode 100644
index 0000000..f5fbd93
--- /dev/null
+++ b/ramdump/common/file_contexts
@@ -0,0 +1,3 @@
+/vendor/bin/ramdump                       u:object_r:ramdump_exec:s0
+/data/vendor/ramdump(/.*)?                u:object_r:ramdump_vendor_data_file:s0
+/mnt/vendor/ramdump(/.*)?                 u:object_r:ramdump_vendor_mnt_file:s0

ramdump/common/property.te

diff --git a/ramdump/common/property.te b/ramdump/common/property.te
new file mode 100644
index 0000000..51a37c8
--- /dev/null
+++ b/ramdump/common/property.te
@@ -0,0 +1 @@
+type vendor_ramdump_prop, property_type;

ramdump/common/property_contexts

diff --git a/ramdump/common/property_contexts b/ramdump/common/property_contexts
new file mode 100644
index 0000000..25749fa
--- /dev/null
+++ b/ramdump/common/property_contexts
@@ -0,0 +1,2 @@
+ro.boot.ramdump                           u:object_r:vendor_ramdump_prop:s0
+vendor.debug.ramdump.                     u:object_r:vendor_ramdump_prop:s0