diff --git a/rootdir/etc/fstab.qcom b/rootdir/etc/fstab.qcom index 4e8a72c..f42f4e2 100644 --- a/rootdir/etc/fstab.qcom +++ b/rootdir/etc/fstab.qcom @@ -9,10 +9,10 @@ # /dev/block/bootdevice/by-name/system /system ext4 ro,barrier=1,discard wait /dev/block/bootdevice/by-name/userdata /data f2fs rw,discard,nosuid,nodev,noatime,nodiratime,nobarrier,inline_xattr,inline_data wait,check,formattable,encryptable=/dev/block/bootdevice/by-name/metadata,reservedsize=128M /dev/block/bootdevice/by-name/cache /cache ext4 rw,noatime,nosuid,nodev,barrier=1,data=ordered wait,check,formattable -/dev/block/bootdevice/by-name/modem /vendor/firmware_mnt ext4 ro,nosuid,nodev,barrier=0 wait -/dev/block/bootdevice/by-name/fsg /fsg ext4 ro,nosuid,nodev wait +/dev/block/bootdevice/by-name/modem /vendor/firmware_mnt ext4 ro,nosuid,nodev,barrier=0,context=u:object_r:firmware_file:s0 wait +/dev/block/bootdevice/by-name/fsg /fsg ext4 ro,nosuid,nodev,context=u:object_r:fsg_file:s0 wait /dev/block/bootdevice/by-name/dsp /vendor/dsp ext4 ro,nosuid,nodev,barrier=1 wait -/dev/block/bootdevice/by-name/persist /mnt/vendor/persist ext4 nosuid,nodev,barrier=1,noatime,noauto_da_alloc wait +/dev/block/bootdevice/by-name/persist /mnt/vendor/persist ext4 nosuid,nodev,barrier=1,noatime,noauto_da_alloc,context=u:object_r:persist_file:s0 wait /dev/block/bootdevice/by-name/boot /boot emmc defaults recoveryonly /dev/block/bootdevice/by-name/recovery /recovery emmc defaults recoveryonly /dev/block/bootdevice/by-name/misc /misc emmc defaults defaults diff --git a/sepolicy/vendor/rmt_storage.te b/sepolicy/vendor/rmt_storage.te index c28fa64..af3475c 100644 --- a/sepolicy/vendor/rmt_storage.te +++ b/sepolicy/vendor/rmt_storage.te @@ -8,3 +8,6 @@ allow rmt_storage debugfs_rmt_storage:file w_file_perms; allow rmt_storage fsg_file:file { open read }; allow rmt_storage fsg_file:dir search; +allow rmt_storage fsg_file:lnk_file read; + +allow rmt_storage persist_file:dir r_dir_perms;