diff options
| author | Alan Stokes <alanstokes@google.com> | 2018-02-26 14:07:12 +0000 |
|---|---|---|
| committer | Alan Stokes <alanstokes@google.com> | 2018-02-26 16:47:23 +0000 |
| commit | e8a1ddb264a7709cbb6589d0d4e8d3c0616d8a79 (patch) | |
| tree | 7572200f62364c865399d31b2958d634f3a85e94 /init.hardware.mpssrfs.rc.userdebug | |
| parent | 6a1438687150d1f38f1871967bc23305067aa123 (diff) | |
| download | bonito-e8a1ddb264a7709cbb6589d0d4e8d3c0616d8a79.tar.gz | |
Allow rfs_access (tftp server) to create its tombstone directories.
It runs as system, but data/vendor/tombstone is writeable only by
root, so we get init to create the initial directory. rfs_access then
creates sub-directories.
Denials:
denied { write } for name="rfs" dev="sda19" ino=51687 scontext=u:r:rfs_access:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir
denied { add_name } for name="modem" scontext=u:r:rfs_access:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir
denied { create } for name="modem" scontext=u:r:rfs_access:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir
denied { setattr } for name="modem" dev="sda19" ino=51689 scontext=u:r:rfs_access:s0 tcontext=u:object_r:vendor_data_file:s0 tclass=dir
Bug: 72643420
Test: Device boots, denials gone.
Change-Id: Ia5fba7aa59ee52367f72ce4ee337298d1c7ae915
Diffstat (limited to 'init.hardware.mpssrfs.rc.userdebug')
| -rw-r--r-- | init.hardware.mpssrfs.rc.userdebug | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/init.hardware.mpssrfs.rc.userdebug b/init.hardware.mpssrfs.rc.userdebug index 6abf2e33..5b2de5cc 100644 --- a/init.hardware.mpssrfs.rc.userdebug +++ b/init.hardware.mpssrfs.rc.userdebug @@ -2,6 +2,7 @@ on post-fs-data # Modem Remote FS mkdir /data/vendor/rfs 0700 system system mkdir /data/vendor/rfs/mpss 0700 system system + mkdir /data/vendor/tombstones/rfs 0700 system system write /data/vendor/rfs/mpss/mcfg_nv_list_flag "1" chown system system /data/vendor/rfs/mpss/mcfg_nv_list_flag chmod 0700 /data/vendor/rfs/mpss/mcfg_nv_list_flag |