diff options
author | Jeff Sharkey <jsharkey@android.com> | 2013-11-14 16:07:57 -0800 |
---|---|---|
committer | Jeff Sharkey <jsharkey@android.com> | 2013-11-14 16:11:56 -0800 |
commit | 80176dc44570c15c786e6129a7f9ae1fa9d1c27a (patch) | |
tree | f25bb3d3f4092b700f4a8156eef5e7f2d05cb136 /vold.te | |
parent | 2abfe7d4f72b0265b1dec31e675650c77998f4d6 (diff) | |
download | android_external_sepolicy-80176dc44570c15c786e6129a7f9ae1fa9d1c27a.tar.gz android_external_sepolicy-80176dc44570c15c786e6129a7f9ae1fa9d1c27a.tar.bz2 android_external_sepolicy-80176dc44570c15c786e6129a7f9ae1fa9d1c27a.zip |
Let vold mount OBB files on external storage.
Fixes this specific violation:
type=1400 audit(1384468728.202:16): avc: denied { read write } for
pid=271 comm="vold" name="test1.obb" dev="fuse" ino=3100664872
scontext=u:r:vold:s0 tcontext=u:object_r:sdcard_internal:s0
tclass=file
Bug: 11693888
Change-Id: I45d30ecabdf0bc8871f3dd67b5695ac909109d9a
Diffstat (limited to 'vold.te')
-rw-r--r-- | vold.te | 3 |
1 files changed, 1 insertions, 2 deletions
@@ -14,6 +14,7 @@ allow vold rootfs:dir mounton; allow vold sdcard_type:dir mounton; allow vold sdcard_type:filesystem { mount remount unmount }; allow vold sdcard_type:dir create_dir_perms; +allow vold sdcard_type:file create_file_perms; allow vold tmpfs:filesystem { mount unmount }; allow vold tmpfs:dir create_dir_perms; allow vold tmpfs:dir mounton; @@ -69,5 +70,3 @@ allow vold asec_image_file:dir rw_dir_perms; security_access_policy(vold) allow vold asec_apk_file:dir { rw_dir_perms setattr }; allow vold asec_apk_file:file { r_file_perms setattr }; -allow vold sdcard_external:dir create_dir_perms; -allow vold sdcard_external:file create_file_perms; |