persist.mmc.* only set in init

Bug: 26976972 Change-Id: I0e44bfc6774807a3bd2ba05637a432675d855118
2016-02-04 10:55:43 -08:00 · 2016-02-04 10:55:43 -08:00 · d143560445
commit d143560445
parent 4c42a0dcc0
3 changed files with 3 additions and 0 deletions
--- a/domain.te
+++ b/domain.te
@ -323,6 +323,7 @@ neverallow domain default_android_service:service_manager add;
 # Require that domains explicitly label unknown properties, and do not allow
 # anyone but init to modify unknown properties.
 neverallow { domain -init } default_prop:property_service set;
+neverallow { domain -init } mmc_prop:property_service set;

 neverallow { domain -init -recovery -system_server } frp_block_device:blk_file rw_file_perms;

--- a/property.te
+++ b/property.te
@ -23,6 +23,7 @@ type ctl_bugreport_prop, property_type;
 type ctl_console_prop, property_type;
 type audio_prop, property_type, core_property_type;
 type logd_prop, property_type, core_property_type;
+type mmc_prop, property_type;
 type restorecon_prop, property_type, core_property_type;
 type security_prop, property_type, core_property_type;
 type bluetooth_prop, property_type, core_property_type;
--- a/1
+++ b/1
@ -41,6 +41,7 @@ persist.debug.          u:object_r:persist_debug_prop:s0
 persist.logd.           u:object_r:logd_prop:s0
 persist.logd.security   u:object_r:device_logging_prop:s0
 persist.log.tag         u:object_r:logd_prop:s0
+persist.mmc.            u:object_r:mmc_prop:s0
 persist.sys.            u:object_r:system_prop:s0
 persist.service.        u:object_r:system_prop:s0
 persist.service.bdroid. u:object_r:bluetooth_prop:s0