allow toolbox ram_device:blk_file { read write };
|
allow toolbox ram_device:blk_file open;
|
allow toolbox ram_device:blk_file getattr;
|
allow toolbox system_data_file:dir create_dir_perms;
|
allow toolbox system_data_file:file create_file_perms;
|
allow toolbox system_data_file:lnk_file { unlink getattr create_file_perms };
|
allow toolbox apk_data_file:dir create_dir_perms;
|
allow toolbox apk_data_file:file create_file_perms;
|
allow toolbox shell_exec:file rx_file_perms;
|
allow toolbox toolbox_exec:file rx_file_perms;
|
allow toolbox file_contexts_file:file { rx_file_perms };
|
allow toolbox self:capability { chown fowner sys_admin fsetid };
|
allow toolbox dalvikcache_data_file:dir { getattr open read };
|
allow toolbox packages_list_file:file { getattr open read };
|
allow toolbox seapp_contexts_file:file read;
|
allow toolbox seapp_contexts_file:file { getattr open };
|
allow toolbox system_file:file execute_no_trans;
|
allow toolbox system_data_file:dir relabelfrom;
|
allow toolbox system_data_file:file relabelfrom;
|
allow toolbox apk_data_file:dir relabelto;
|
allow toolbox apk_data_file:file relabelto;
|
allow toolbox kernel:security check_context;
|
allow toolbox selinuxfs:file { open read write };
|
