intro misctrl Generic binary for managing the misc partition. Bug: 317262681 Test: boot, check bugreport Change-Id: Ib172d101d68409f2500b507df50b02953c392448

commit: b4f42d449b803df11b9f62e9968fce25096ecd5b [log] [tgz]
author: Steven Moreland <smoreland@google.com> Fri Feb 16 22:32:02 2024 +0000
committer: Steven Moreland <smoreland@google.com> Tue Feb 20 18:56:05 2024 +0000
tree: cd27491818894842a7be5d384a1b12ee4046a367
parent: bbff9f5ea192df4dda5717b8dd34861301321d20 [diff] [blame]
diff --git a/private/misctrl.te b/private/misctrl.te
new file mode 100644
index 0000000..c570aa4
--- /dev/null
+++ b/private/misctrl.te

@@ -0,0 +1,15 @@
+# binary for generic misc partition management
+type misctrl, domain, coredomain;
+type misctrl_exec, system_file_type, exec_type, file_type;
+
+init_daemon_domain(misctrl)
+
+allow misctrl misc_block_device:blk_file rw_file_perms;
+allow misctrl block_device:dir r_dir_perms;
+read_fstab(misctrl)
+
+# bootloader_message tries to find the fstab in the device config path first,
+# but because we've already booted up we can use the ro.boot properties instead,
+# so we can just ignore the SELinux denial.
+dontaudit misctrl sysfs_dt_firmware_android:dir search;
+dontaudit misctrl vendor_property_type:file read;
commit	b4f42d449b803df11b9f62e9968fce25096ecd5b	[log] [tgz]
author	Steven Moreland <smoreland@google.com>	Fri Feb 16 22:32:02 2024 +0000
committer	Steven Moreland <smoreland@google.com>	Tue Feb 20 18:56:05 2024 +0000
tree	cd27491818894842a7be5d384a1b12ee4046a367
parent	bbff9f5ea192df4dda5717b8dd34861301321d20 [diff] [blame]