blob: 5b6d691c268288277eaf32bdcb02e72666aea9f6
1 | # NTFS |
2 | #userdebug_or_eng(` |
3 | # allow vold self:capability { sys_rawio }; |
4 | #') |
5 | #allow vold self:capability { setgid setuid }; |
6 | # |
7 | #allow vold cpuctl_device:dir search; |
8 | # |
9 | #allow vold device:dir { open read }; |
10 | #allow vold usb_device:dir { open read search }; |
11 | #allow vold system_data_file:fifo_file { open read write }; |
12 | #allow vold kernel:system { module_request }; |
13 | # |
14 | #domain_auto_trans(vold, vold_ext_exec, vold_ext) |
15 | #allow vold vold_ext_exec:file { execute read open execute_no_trans }; |
16 | #allow vold kernel:system module_request; |
17 | #allow vold mnt_media_rw_stub_file:dir { r_dir_perms mounton }; |
18 | # |
19 | ##for dig |
20 | #allow vold cache_file:file create_file_perms; |
21 | #allow vold cache_file:dir { create_file_perms add_name remove_name }; |
22 | # |
23 | #allow vold param_tv_file:dir { read open }; |
24 | # |
25 | #allow vold storage_stub_file:dir { getattr read open search write add_name }; |
26 | |
27 | # for make ext4fs |
28 | #domain_auto_trans(vold, make_ext4fs_exec, make_ext4fs); |
29 | |
30 | allow vold tee_data_file:dir { open read ioctl }; |
31 | |
32 | allow vold vold_block_device:blk_file { create read open ioctl unlink }; |
33 | |
34 | #for hw keymaster |
35 | allow vold drm_device:chr_file {open read write ioctl}; |
36 |