Skip to content
Snippets Groups Projects
Commit f34cf22b authored by Nick Kralevich's avatar Nick Kralevich Committed by android-build-merger
Browse files

Merge "Allow more file ioctls" am: 03453d0a am: 21164880 

am: 3b1d6d59

Change-Id: I368418776f7b82188eb686fc5bff03335149fdee
parents 385c9bd2 3b1d6d59
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 7 additions and 1 deletion
public/domain.te
+ 7
1
View file @ f34cf22b
...@@ -325,11 +325,17 @@ allowxperm domain devpts:chr_file ioctl unpriv_tty_ioctls; ...@@ -325,11 +325,17 @@ allowxperm domain devpts:chr_file ioctl unpriv_tty_ioctls;
# named pipes, and named sockets) # named pipes, and named sockets)
allowxperm domain { file_type fs_type }:{ dir notdevfile_class_set } ioctl { 0 }; allowxperm domain { file_type fs_type }:{ dir notdevfile_class_set } ioctl { 0 };
# Allow a process to make a determination whether a file descriptor
# for a plain file is a tty. Note that granting this whitelist to domain
# does not grant the ioctl permission to these files. That must be granted
# separately.
allowxperm domain { file_type fs_type }:file ioctl { TCGETS };
# Support sqlite F2FS specific optimizations # Support sqlite F2FS specific optimizations
# ioctl permission on the specific file type is still required # ioctl permission on the specific file type is still required
# TODO: consider only compiling these rules if we know the # TODO: consider only compiling these rules if we know the
# /data partition is F2FS # /data partition is F2FS
allowxperm domain file_type:file ioctl { allowxperm domain { file_type sdcard_type }:file ioctl {
F2FS_IOC_ABORT_VOLATILE_WRITE F2FS_IOC_ABORT_VOLATILE_WRITE
F2FS_IOC_COMMIT_ATOMIC_WRITE F2FS_IOC_COMMIT_ATOMIC_WRITE
F2FS_IOC_GET_FEATURES F2FS_IOC_GET_FEATURES
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment