9213ad4850
[Detail] fix avc denied for mk2fs in boottime. MTK-Commit-Id: f0e39a287a24f65bb85aeda1229fcb9d9ef90712 Change-Id: I894765c5b9b5947d5bceaf37fac7f07e898e12dc CR-Id: ALPS04304578 Feature: [Android Default] F2FS File System
26 lines
999 B
Plaintext
26 lines
999 B
Plaintext
# ==============================================
|
|
# MTK Policy Rule
|
|
# ==============================================
|
|
|
|
# Date : WK17.32
|
|
# Operation : Migration
|
|
# Purpose : create ext4 images for protect1/protect2/persist/nvdata/nvcfg block devices.
|
|
allow e2fs protect1_block_device:blk_file rw_file_perms;
|
|
allow e2fs protect2_block_device:blk_file rw_file_perms;
|
|
allow e2fs persist_block_device:blk_file rw_file_perms;
|
|
allow e2fs nvdata_device:blk_file rw_file_perms;
|
|
allow e2fs nvcfg_block_device:blk_file rw_file_perms;
|
|
|
|
allow e2fs devpts:chr_file {read write};
|
|
|
|
# Date : WK18.23
|
|
# Operation: P migration
|
|
# Purpose : Allow mke2fs to format userdata and cache partition
|
|
allow e2fs cache_block_device:blk_file rw_file_perms;
|
|
allow e2fs userdata_block_device:blk_file rw_file_perms;
|
|
|
|
# Date : WK19.11
|
|
# Operation: Q migration
|
|
# Purpose : Allow mke2fs to use ioctl/ioctlcmd
|
|
allowxperm e2fs protect1_block_device:blk_file ioctl BLKPBSZGET;
|
|
allowxperm e2fs protect2_block_device:blk_file ioctl BLKPBSZGET; |