287 files changed, 177798 insertions, 0 deletions
diff --git a/sepolicy/vold.te b/sepolicy/vold.te new file mode 100644 index 0000000..5b6d691 --- a/dev/null +++ b/sepolicy/vold.te @@ -0,0 +1,35 @@ +# NTFS +#userdebug_or_eng(` +# allow vold self:capability { sys_rawio }; +#') +#allow vold self:capability { setgid setuid }; +# +#allow vold cpuctl_device:dir search; +# +#allow vold device:dir { open read }; +#allow vold usb_device:dir { open read search }; +#allow vold system_data_file:fifo_file { open read write }; +#allow vold kernel:system { module_request }; +# +#domain_auto_trans(vold, vold_ext_exec, vold_ext) +#allow vold vold_ext_exec:file { execute read open execute_no_trans }; +#allow vold kernel:system module_request; +#allow vold mnt_media_rw_stub_file:dir { r_dir_perms mounton }; +# +##for dig +#allow vold cache_file:file create_file_perms; +#allow vold cache_file:dir { create_file_perms add_name remove_name }; +# +#allow vold param_tv_file:dir { read open }; +# +#allow vold storage_stub_file:dir { getattr read open search write add_name }; + +# for make ext4fs +#domain_auto_trans(vold, make_ext4fs_exec, make_ext4fs); + +allow vold tee_data_file:dir { open read ioctl }; + +allow vold vold_block_device:blk_file { create read open ioctl unlink }; + +#for hw keymaster +allow vold drm_device:chr_file {open read write ioctl}; |