NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[ALPS03939719] Refine sepolicy for bootctrl

Browse Source 
Add policy for bootctrl read cmdline

MTK-Commit-Id: a264204afb83417dacb4f1b76e05b71509a492de

Change-Id: I2bd838b67003dc13208810b4de724ca06b67067e
CR-Id: ALPS03939719
Feature: A/B System Updates
This commit is contained in:
haohsiang.hsu 2020-01-18 10:04:28 +08:00 committed by Haohsiang Hsu
parent cf8b0fcdd5
commit 435518d532
1 changed files with 1 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
non_plat/hal_bootctl_default.te
View File

@ -1,10 +1,9 @@
# Add for bootctl # Add for bootctl
#============= hal_bootctl_default ============== #============= hal_bootctl_default ==============
allow hal_bootctl_default para_block_device:blk_file { read open write}; allow hal_bootctl_default para_block_device:blk_file { read open write};
allow hal_bootctl_default proc:file { read getattr open };
allow hal_bootctl_default rootfs:file { read getattr open }; allow hal_bootctl_default rootfs:file { read getattr open };
allow hal_bootctl_default sysfs:dir { read open }; allow hal_bootctl_default sysfs:dir { read open };
allow hal_bootctl_default sysfs:file { read getattr open };
allow hal_bootctl_default block_device:dir search; allow hal_bootctl_default block_device:dir search;
allow hal_bootctl_default misc_sd_device:chr_file rw_file_perms; allow hal_bootctl_default misc_sd_device:chr_file rw_file_perms;
allow hal_bootctl_default bootdevice_block_device:blk_file { read write ioctl open }; allow hal_bootctl_default bootdevice_block_device:blk_file { read write ioctl open };
allow hal_bootctl_default proc_cmdline:file r_file_perms;