blob: 6cde24b031872c6979ce5751be8e9c5170483822 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
|
# Adding allow rule for search on /fuse
allow init fuse:dir { search mounton };
allow init self:capability sys_module;
allow init {
adsprpcd_file
cache_file
persist_file
storage_file
}:dir mounton;
allow init kmsg_device:chr_file write;
#Allow triggering IPA FWs loading
allow init ipa_dev:chr_file write;
#For insmod to search module key for signature verification
allow init kernel:key search;
#For sdcard
allow init tmpfs:lnk_file create_file_perms;
#Certain domains needs LD_PRELOAD passed from init
#allow it for most domain. Do not honor LD_PRELOAD
#for lmkd
allow init { domain -lmkd }:process noatsecure;
#For configfs file permission
allow init configfs:dir r_dir_perms;
allow init configfs:file { rw_file_perms link };
allow init configfs:lnk_file create_file_perms;
#Allow init to mount non-hlos partitions in A/B builds
allow init firmware_file:dir { mounton };
allow init bt_firmware_file:dir { mounton };
|
