William Roberts | 80ea1d2 | 2012-05-31 09:44:51 -0400 | [diff] [blame] | 1 | type sdcardd, domain; |
| 2 | type sdcardd_exec, exec_type, file_type; |
| 3 | |
| 4 | init_daemon_domain(sdcardd) |
| 5 | |
| 6 | allow sdcardd cgroup:dir create_dir_perms; |
| 7 | allow sdcardd fuse_device:chr_file rw_file_perms; |
| 8 | allow sdcardd rootfs:dir mounton; |
William Roberts | c195ec3 | 2013-03-06 16:26:36 -0800 | [diff] [blame] | 9 | allow sdcardd sdcard_type:filesystem mount; |
Robert Craig | 1ed1eff | 2013-01-30 06:51:22 -0500 | [diff] [blame] | 10 | allow sdcardd self:capability { setuid setgid dac_override sys_admin }; |
William Roberts | 80ea1d2 | 2012-05-31 09:44:51 -0400 | [diff] [blame] | 11 | allow sdcardd system_data_file:dir create_dir_perms; |
| 12 | allow sdcardd system_data_file:file create_file_perms; |