diff options
| author | LuK1337 <priv.luk@gmail.com> | 2023-04-06 15:33:27 +0200 |
|---|---|---|
| committer | alk3pInjection <webmaster@raspii.tech> | 2023-06-13 00:20:25 +0800 |
| commit | bc3033c672f84481e64298aef1236ff7a77da2cf (patch) | |
| tree | 09171366affd3035144d38b0c969ce9ab0c29330 | |
| parent | c504c58a6144268e733eaefa7cd790eb94403e4d (diff) | |
sepolicy_vndr: Allow init to unmount bt_firmware_file/firmware_file
Change-Id: Iab72245735d39aabbdf4f3f40238b36cf1701452
| -rw-r--r-- | generic/vendor/common/init.te | 2 | ||||
| -rw-r--r-- | legacy/vendor/common/init.te | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/generic/vendor/common/init.te b/generic/vendor/common/init.te index 6c947266..6d3aa361 100644 --- a/generic/vendor/common/init.te +++ b/generic/vendor/common/init.te @@ -44,7 +44,7 @@ allow init vendor_ab_block_device:lnk_file relabelto; #Allow init to mount non-hlos partitions in A/B builds allow init { bt_firmware_file vendor_firmware_file firmware_file } :dir mounton; -allow init { bt_firmware_file firmware_file }:filesystem { relabelfrom mount }; +allow init { bt_firmware_file firmware_file }:filesystem { relabelfrom mount unmount }; allow { bt_firmware_file firmware_file }self:filesystem associate; allow init vendor_qmcs_file:dir { mounton }; diff --git a/legacy/vendor/common/init.te b/legacy/vendor/common/init.te index 73a9d0eb..2366cd03 100644 --- a/legacy/vendor/common/init.te +++ b/legacy/vendor/common/init.te @@ -59,7 +59,7 @@ allow init configfs:lnk_file create_file_perms; allow init { bt_firmware_file vendor_firmware_file firmware_file } :dir mounton; # Moved to vendor so need relabelfrom and associate permissions -allow init { bt_firmware_file firmware_file }:filesystem { relabelfrom mount }; +allow init { bt_firmware_file firmware_file }:filesystem { relabelfrom mount unmount }; #TODO: This should not be needed and needs to be cleaned. allow { bt_firmware_file firmware_file }self:filesystem associate; |