Skip to content
Snippets Groups Projects
Commit 2abfe7d4 authored by Jeff Sharkey's avatar Jeff Sharkey
Browse files

Allow vold to invoke blkid, use external ASECs. 

Bug: 11175082
Change-Id: Ic1bd15e8729583be199551ec6baeb4acaf46c210
parent 4fc702ec
Branches
Tags
No related merge requests found
Show whitespace changes
Inline Side-by-side
Showing
with 5 additions and 0 deletions
vold.te
+ 5
0
View file @ 2abfe7d4
...@@ -29,6 +29,9 @@ allow vold domain:{ file lnk_file } r_file_perms; ...@@ -29,6 +29,9 @@ allow vold domain:{ file lnk_file } r_file_perms;
allow vold domain:process { signal sigkill }; allow vold domain:process { signal sigkill };
allow vold self:capability { sys_ptrace kill }; allow vold self:capability { sys_ptrace kill };
# For blkid
allow vold shell_exec:file rx_file_perms;
# XXX Label sysfs files with a specific type? # XXX Label sysfs files with a specific type?
allow vold sysfs:file rw_file_perms; allow vold sysfs:file rw_file_perms;
...@@ -66,3 +69,5 @@ allow vold asec_image_file:dir rw_dir_perms; ...@@ -66,3 +69,5 @@ allow vold asec_image_file:dir rw_dir_perms;
security_access_policy(vold) security_access_policy(vold)
allow vold asec_apk_file:dir { rw_dir_perms setattr }; allow vold asec_apk_file:dir { rw_dir_perms setattr };
allow vold asec_apk_file:file { r_file_perms setattr }; allow vold asec_apk_file:file { r_file_perms setattr };
allow vold sdcard_external:dir create_dir_perms;
allow vold sdcard_external:file create_file_perms;
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment