diff options
| author | Chitti Babu Theegala <ctheegal@codeaurora.org> | 2016-02-18 16:29:38 +0530 |
|---|---|---|
| committer | Ricardo Cerqueira <ricardo@cyngn.com> | 2016-05-29 16:48:57 +0100 |
| commit | 8ad941e14d19b01ae5c07bcd39f191da894baa51 (patch) | |
| tree | 19a6c40ac506ab55af4eee6caa55bab7a1a8534c | |
| parent | 090aa3b208553ca8d228cf94c4414f3b91772698 (diff) | |
| download | android_device_qcom_sepolicy-8ad941e14d19b01ae5c07bcd39f191da894baa51.tar.gz android_device_qcom_sepolicy-8ad941e14d19b01ae5c07bcd39f191da894baa51.tar.bz2 android_device_qcom_sepolicy-8ad941e14d19b01ae5c07bcd39f191da894baa51.zip | |
sepolicy: Add zram, swap disks creation permission
Add policies to permit zram & swap disks creation
Change-Id: Ibf79c60901cb2b8ccf62ad98f3a331481119892c
| -rw-r--r-- | common/file.te | 3 | ||||
| -rw-r--r-- | common/file_contexts | 1 | ||||
| -rw-r--r-- | common/init_shell.te | 9 |
3 files changed, 13 insertions, 0 deletions
diff --git a/common/file.te b/common/file.te index ab4758e5..ff65b5b2 100644 --- a/common/file.te +++ b/common/file.te @@ -178,3 +178,6 @@ type qtitetherservice_app_data_file, file_type, data_file_type; # Boot KPI Marker files type sys_bootkpi, sysfs_type, file_type; + +# /data/system/swap/swapfile - swapfile +type swap_data_file, file_type, data_file_type; diff --git a/common/file_contexts b/common/file_contexts index 95c66d2b..e18e6094 100644 --- a/common/file_contexts +++ b/common/file_contexts @@ -307,6 +307,7 @@ /data/misc/audio_pp(/.*)? u:object_r:audio_pp_data_file:s0 /data/ramdump(/.*)? u:object_r:ssr_ramdump_data_file:s0 /data/misc/SelfHost/socket(/.*)? u:object_r:RIDL_socket:s0 +/data/system/swap(/.*)? u:object_r:swap_data_file:s0 ################################### # persist files diff --git a/common/init_shell.te b/common/init_shell.te index adafb523..ca8bcbdf 100644 --- a/common/init_shell.te +++ b/common/init_shell.te @@ -45,6 +45,7 @@ allow qti_init_shell self:capability { fsetid dac_override dac_read_search + sys_admin }; # For property starting with hw @@ -155,3 +156,11 @@ allow qti_init_shell cgroup:dir add_name; # To allow copy for mbn files r_dir_file(qti_init_shell, firmware_file) + +# /dev/block/zram0 +allow qti_init_shell block_device:dir r_dir_perms; +allow qti_init_shell swap_block_device:blk_file rw_file_perms; + +# /data/system/swap/swapfile +allow qti_init_shell swap_data_file:dir rw_dir_perms; +allow qti_init_shell swap_data_file:file create_file_perms; |