summaryrefslogtreecommitdiff
path: root/sepolicy/vold.te
AgeCommit message (Collapse)Author
2015-12-08Explicitly mark properties readableNick Kralevich
Start explicitly marking device-specific properties as readable. This is needed to support a future change where not all properties are readable. Change-Id: I678beb1a2291f0f21962311b672ebe9c96cd3935
2015-08-26bullhead/sepolicy: allow vold to access zramdh.lee
avc: denied { getattr } for pid=2475 comm="e2fsck" path="/dev/block/zram0" dev="tmpfs" ino=12415 scontext=u:r:vold:s0 tcontext=u:object_r:swap_block_device:s0 tclass=blk_file permissive=0 Change-Id: I8e68fc3e379bac92beb269d83f8ca44a500ff81a
2015-07-29selinux: ignore denial from vold opening /proc/irqJeff Vander Stoep
In commit 66270a21df1058434e4d63691221f11ff5387a0f vold goes through each dir in /proc/ and opens for reading to gather information about each running process. /proc/irq is not a process and vold does not need access. Ignore the denial. Bug: 21591724 Change-Id: I32847a87bbea3ddb373d8bedaf2743a5ce2e98ff
2015-07-27selinux: flip into global enforcing modeJeff Vander Stoep
Put the domains still generating errors into permissive. Bug: 21591724 Change-Id: I11e205dcd126dfd0dfe7450bbc90c593c3c10fe1
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-20 04:25:58 +0000