donjohanliebert/device_xiaomi_sm6150-common
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
ed6986e80f
device_xiaomi_sm6150-common/sepolicy/vendor/uncrypt.te
Nvertigo 6156c1202c
davinci: sepolicy: Fix OTA auto-flashing with encrypted f2fs. 
If userdata is on f2fs and encrypted (stock config for userdata),
  /cache/recovery/block.map is not created due to this denial:

  05-01 13:43:47.512  6538  6538 W uncrypt : type=1400 audit(0.0:10): avc: denied { sys_admin } for capability=21 scontext=u:r:uncrypt:s0 tcontext=u:r:uncrypt:s0 tclass=capability permissive=0

  Without block.map the automatic flashing of the OTA without user
  interaction fails, and the user needs to manually mount data, and
  flash the OTA manually.

Change-Id: I6ecb84e8b730d4c641a8bd8769043dfbfb817b83
2020-10-10 21:43:31 +02:00

3 lines
67 B
Plaintext
Raw Blame History

# OTA with encrypted f2fs
allow uncrypt self:capability sys_admin;
Reference in New Issue View Git Blame Copy Permalink