463a35aa13
Add policy for read boot_type for bootctrl MTK-Commit-Id: 0665caa10660ea2b630fb3299e0c8ce9360d6d63 Change-Id: Ibe33047a14d32473d054c9e7c239947984748a00 CR-Id: ALPS04147660 Feature: A/B System Updates
14 lines
649 B
Plaintext
14 lines
649 B
Plaintext
# Add for bootctl
|
|
#============= hal_bootctl_default ==============
|
|
allow hal_bootctl_default para_block_device:blk_file { read open write};
|
|
allow hal_bootctl_default rootfs:file { read getattr open };
|
|
allow hal_bootctl_default sysfs:dir { read open };
|
|
allow hal_bootctl_default block_device:dir search;
|
|
allow hal_bootctl_default misc_sd_device:chr_file rw_file_perms;
|
|
allow hal_bootctl_default bootdevice_block_device:blk_file { read write ioctl open };
|
|
allow hal_bootctl_default proc_cmdline:file r_file_perms;
|
|
allow hal_bootctl_default sysfs_boot_type:file r_file_perms;
|
|
userdebug_or_eng(`
|
|
allow hal_bootctl_default self:capability sys_rawio;
|
|
')
|