sanders: sepol: update sepolicy

-ref: https://github.com/crdroidandroid/android_device_motorola_sanders/tree/10.0-20200126 Signed-off-by: ronaxdevil <pratabidya.007@gmail.com>
2020-03-26 10:26:49 +05:30
parent e4a48bc271
commit 63a775260b
79 changed files with 399 additions and 267 deletions
--- a/sepolicy/vendor/rmt_storage.te
+++ b/sepolicy/vendor/rmt_storage.te
@@ -1,24 +1,15 @@
-#allow rmt_storage {
-#    modem_efs_partition_device
-#}:blk_file rw_file_perms;
+allow rmt_storage sysfs_rmt_storage:file rw_file_perms;
+allow rmt_storage sysfs_rmt_storage:dir { search open };
+allow rmt_storage sysfs_uio:file r_file_perms;
+allow rmt_storage sysfs_uio:dir { read open search };
+allow rmt_storage sysfs_uio:lnk_file { read };
+allow rmt_storage debugfs_rmt_storage:dir search;
+allow rmt_storage debugfs_rmt_storage:file w_file_perms;

-#r_dir_file(rmt_storage fsg_file)
-#r_dir_file(rmt_storage, persist_file)
+allow rmt_storage fsg_file:file { open read };
+allow rmt_storage fsg_file:dir search;
+allow rmt_storage fsg_file:lnk_file read;

-#allow rmt_storage sysfs_rmt_storage:file rw_file_perms;
-#allow rmt_storage sysfs_rmt_storage:dir { search open };
-#allow rmt_storage sysfs_uio:file r_file_perms;
-#allow rmt_storage sysfs_uio:dir { read open search };
-#allow rmt_storage sysfs_uio:lnk_file { read };
-
-#allow rmt_storage debugfs_rmt_storage:dir r_dir_perms;
-#allow rmt_storage debugfs_rmt_storage:file rw_file_perms;
-
-#allow rmt_storage fsg_file:file { open read };
-#allow rmt_storage fsg_file:dir search;
-#allow rmt_storage fsg_file:lnk_file read;
-
-#allow rmt_storage persist_file:dir r_dir_perms;
-
-#allow rmt_storage vendor_radio_prop:file { getattr open read };
-#allow rmt_storage vendor_file:dir search;
+allow rmt_storage self:capability dac_override;
+allow rmt_storage unlabeled:dir search;
+allow rmt_storage unlabeled:file { open read };