diff options
author | Linux Build Service Account <lnxbuild@localhost> | 2014-11-22 08:31:34 -0800 |
---|---|---|
committer | Gerrit - the friendly Code Review server <code-review@localhost> | 2014-11-22 08:31:34 -0800 |
commit | a47907da4a0735c152fcf17afcc3e0f7c91b03d8 (patch) | |
tree | 4e31d05815b1f853f6a4d180d6a6cc6d03b3548b | |
parent | e142abc32e7335a328e3b9a336ac54f8830c6bbe (diff) | |
parent | 733050a425e9fbfeaa5f07bfcba0c30795ca7291 (diff) | |
download | android_device_qcom_sepolicy-a47907da4a0735c152fcf17afcc3e0f7c91b03d8.tar.gz android_device_qcom_sepolicy-a47907da4a0735c152fcf17afcc3e0f7c91b03d8.tar.bz2 android_device_qcom_sepolicy-a47907da4a0735c152fcf17afcc3e0f7c91b03d8.zip |
Merge "SEAndroid: Updated vold domain related policy"
-rwxr-xr-x[-rw-r--r--] | Android.mk | 4 | ||||
-rwxr-xr-x[-rw-r--r--] | common/file.te | 3 | ||||
-rwxr-xr-x[-rw-r--r--] | common/genfs_contexts | 1 | ||||
-rwxr-xr-x | common/kernel.te | 1 | ||||
-rwxr-xr-x[-rw-r--r--] | common/vold.te | 1 |
5 files changed, 9 insertions, 1 deletions
diff --git a/Android.mk b/Android.mk index 7f51d730..4751e663 100644..100755 --- a/Android.mk +++ b/Android.mk @@ -89,7 +89,9 @@ BOARD_SEPOLICY_UNION := \ dhcp.te \ wfd_app.te \ mediaserver_test.te \ - hbtp.te + hbtp.te \ + kernel.te \ + vold.te # Compile sensor pilicy only for SSC targets SSC_TARGET_LIST := apq8084 diff --git a/common/file.te b/common/file.te index 1e5e53a4..93c6089a 100644..100755 --- a/common/file.te +++ b/common/file.te @@ -104,3 +104,6 @@ type ipacm_data_file, file_type; #Define the files written during the operation of mmi type mmi_data_file, file_type, data_file_type; + +#needed by vold +type proc_dirty_ratio, fs_type; diff --git a/common/genfs_contexts b/common/genfs_contexts index 201bd78c..f92adbdb 100644..100755 --- a/common/genfs_contexts +++ b/common/genfs_contexts @@ -1 +1,2 @@ genfscon proc /asound/card0/state u:object_r:proc_audiod:s0 +genfscon proc /proc/sys/vm/dirty_ratio u:object_r:proc_dirty_ratio:s0 diff --git a/common/kernel.te b/common/kernel.te new file mode 100755 index 00000000..2a9a0831 --- /dev/null +++ b/common/kernel.te @@ -0,0 +1 @@ +allow kernel block_device:blk_file r_file_perms; diff --git a/common/vold.te b/common/vold.te index d639d6f5..71b32cd0 100644..100755 --- a/common/vold.te +++ b/common/vold.te @@ -6,3 +6,4 @@ allow vold proc_sysrq:file rw_file_perms; allow vold self:capability sys_boot; allow vold cache_file:dir { write add_name }; allow vold cache_file:file { write create open }; +allow vold proc_dirty_ratio:file rw_file_perms; |