Blame - sepolicy/vold.te - android_vendor_omni

blob: 1a1d1adf1cc186b0d3d1d83d15f075a90055f7ba [file] [log] [blame]

maxwen	e87cc6d	2015-01-01 00:41:57 +0100	[diff] [blame]	1	###########################
				2	# OmniROM common sepolicy
				3	#
				4
				5	domain_trans(init, rootfs, vold)
				6
				7	# Allow vold to manage ASEC
Marko Man	6ca2827	2016-10-20 01:36:14 +0200	[diff] [blame^]	8	allow vold sdcard_type:file create_file_perms;
maxwen	85c37d6	2016-02-26 03:45:57 +0100	[diff] [blame]	9	allow vold vold_tmpfs:file create_file_perms;
maxwen	e87cc6d	2015-01-01 00:41:57 +0100	[diff] [blame]	10
				11	# Allow vold to access fuse for fuse-based fs
				12	allow vold fuse_device:chr_file rw_file_perms;
				13
maxwen	61638ae	2015-04-15 22:26:56 +0200	[diff] [blame]	14	# NTFS-3g wants to drop permission
				15	allow vold self:capability { setgid setuid };
maxwen	85c37d6	2016-02-26 03:45:57 +0100	[diff] [blame]	16	# External storage
				17	allow vold storage_stub_file:dir { rw_file_perms search add_name };
				18	allow vold mnt_media_rw_stub_file:dir r_dir_perms;
Marko Man	6ca2827	2016-10-20 01:36:14 +0200	[diff] [blame^]	19	allow vold mkfs_exec:file { execute read open getattr execute_no_trans };
maxwen	85c37d6	2016-02-26 03:45:57 +0100	[diff] [blame]	20
Marko Man	6ca2827	2016-10-20 01:36:14 +0200	[diff] [blame^]	21	allow vold fuse_device:dir getattr;
				22	allow vold fuse_device:filesystem unmount;
maxwen	85c37d6	2016-02-26 03:45:57 +0100	[diff] [blame]	23