blob: 9d11e2c610dcee5ff45b436a540f120a773ca9ea
1 | # Allow read/write on system and boot partitions. |
2 | allow update_engine misc_block_device:blk_file rw_file_perms; |
3 | allow update_engine vendor_block_device:blk_file rw_file_perms; |
4 | allow update_engine odm_block_device:blk_file rw_file_perms; |
5 | allow update_engine system_app:binder { call }; |
6 | allow update_engine sysfs:file {read open getattr}; |
7 | allow update_engine sysfs:blk_file {read write getattr}; |
8 | allow update_engine rootfs:dir {getattr}; |
9 | allow update_engine system_block_fsck_device:blk_file { getattr ioctl open read write }; |
10 |