Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 9a19f575 authored by Pawit Pornkitprasan's avatar Pawit Pornkitprasan
Browse files

sepolicy: allow vold to mount ext4 sdcard 

When vold mounts an ext4 sdcard, it needs to force the context to
sdcard_external.

avc:  denied  { relabelfrom } for  pid=190 comm=vold scontext=u:r:vold:s0 tcontext=u:object_r:labeledfs:s0 tclass=filesystem
avc:  denied  { relabelto } for  pid=190 comm=vold scontext=u:r:vold:s0 tcontext=u:object_r:sdcard_external:s0 tclass=filesystem
avc:  denied  { relabelfrom } for  pid=190 comm=vold scontext=u:r:vold:s0 tcontext=u:object_r:sdcard_external:s0 tclass=filesystem

Change-Id: I80f42fbdf738dee10958ce1bdc1893a41234f0d9
parent ef907713

sepolicy/vold.te

+5 −0
Original line number Diff line number Diff line 
# Allow vold to manage ASEC

allow vold sdcard_external:file create_file_perms;



# Allow vold to change context for mounted ext4 sdcard

relabelto_domain(vold)

allow vold labeledfs:filesystem { relabelfrom };

allow vold sdcard_external:filesystem { relabelfrom relabelto };