| Tom Marshall | 39a4244 | 2014-11-26 13:26:14 -0800 | [diff] [blame] | 1 | domain_trans(init, rootfs, vold) |
| 2 | |
| Pawit Pornkitprasan | ef90771 | 2013-11-14 10:46:26 +0700 | [diff] [blame] | 3 | # Allow vold to manage ASEC |
| 4 | allow vold sdcard_external:file create_file_perms; |
| Pawit Pornkitprasan | 9a19f57 | 2013-11-15 09:54:39 +0700 | [diff] [blame] | 5 | |
| Pawit Pornkitprasan | 54c91b8 | 2013-12-10 17:10:50 +0700 | [diff] [blame] | 6 | # Allow vold to access fuse for fuse-based fs |
| 7 | allow vold fuse_device:chr_file rw_file_perms; |
| 8 | |
| 9 | # NTFS-3g wants to drop permission |
| 10 | allow vold self:capability { setgid setuid }; |
| Matt Mower | 2806bc4 | 2014-12-19 10:45:10 -0600 | [diff] [blame^] | 11 | |
| 12 | # Vold can also run as minivold in the rootfs |
| 13 | recovery_only(` |
| 14 | allow vold rootfs:dir { add_name write }; |
| 15 | ') |