TheArchive/Magisk
1
0
Fork 0
mirror of https://github.com/topjohnwu/Magisk.git synced 2024-12-04 15:35:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

Allow all domains to access tmpfs files

Browse Source 
Fix #8457
This commit is contained in:
topjohnwu 2024-11-30 23:21:33 -08:00
parent 830fc758b9
commit da43ac89a0
1 changed files with 2 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
native/src/sepolicy/rules.rs
View File

@ -101,9 +101,8 @@ impl SepolicyMagisk for sepolicy {
"system_app", "priv_app", "untrusted_app", "untrusted_app_all"], "system_app", "priv_app", "untrusted_app", "untrusted_app_all"],
[proc], ["unix_stream_socket"], ["connectto", "getopt"]); [proc], ["unix_stream_socket"], ["connectto", "getopt"]);
// Let selected domains access tmpfs files // For tmpfs overlay on 2SI. We allow all domains to access tmpfs files.
// For tmpfs overlay on 2SI, Zygisk on lower Android versions and AVD scripts allow(["domain"], ["tmpfs"], ["file"], all);
allow(["init", "zygote", "shell"], ["tmpfs"], ["file"], all);
// Allow magiskinit daemon to handle mock selinuxfs // Allow magiskinit daemon to handle mock selinuxfs
allow(["kernel"], ["tmpfs"], ["fifo_file"], ["write"]); allow(["kernel"], ["tmpfs"], ["fifo_file"], ["write"]);