fdeedcba65
Bug: 182524202 Bug: 182524203 Test: modem_img is mounted under enforcing mode Change-Id: Ie5448468d4d7f1ad6acdd2c93055bba9001185d1
19 lines
788 B
Text
19 lines
788 B
Text
allow init custom_ab_block_device:lnk_file relabelto;
|
|
|
|
# This is needed for chaining a boot partition vbmeta
|
|
# descriptor, where init will probe the boot partition
|
|
# to read the chained vbmeta in the first-stage, then
|
|
# relabel /dev/block/by-name/boot_[a|b] to block_device
|
|
# after loading sepolicy in the second stage.
|
|
allow init boot_block_device:lnk_file relabelto;
|
|
|
|
allow init modem_img_file:dir mounton;
|
|
allow init mnt_vendor_file:dir mounton;
|
|
allow init modem_img_file:filesystem { getattr mount relabelfrom };
|
|
|
|
allow init persist_file:dir mounton;
|
|
allow init modem_efs_file:dir mounton;
|
|
allow init modem_userdata_file:dir mounton;
|
|
allow init ram_device:blk_file w_file_perms;
|
|
allow init per_boot_file:file ioctl;
|
|
allowxperm init per_boot_file:file ioctl { F2FS_IOC_SET_PIN_FILE };
|