1*e4a36f41SAndroid Build Coastguard Worker# Raw writes to misc_block_device 2*e4a36f41SAndroid Build Coastguard Workerallow vendor_misc_writer misc_block_device:blk_file w_file_perms; 3*e4a36f41SAndroid Build Coastguard Workerallow vendor_misc_writer block_device:dir r_dir_perms; 4*e4a36f41SAndroid Build Coastguard Worker 5*e4a36f41SAndroid Build Coastguard Worker# Silence the denial when calling libfstab's ReadDefaultFstab, which tries to 6*e4a36f41SAndroid Build Coastguard Worker# load DT fstab. 7*e4a36f41SAndroid Build Coastguard Workerdontaudit vendor_misc_writer proc_cmdline:file r_file_perms; 8*e4a36f41SAndroid Build Coastguard Workerdontaudit vendor_misc_writer sysfs_dt_firmware_android:dir search; 9*e4a36f41SAndroid Build Coastguard Workerdontaudit vendor_misc_writer proc_bootconfig:file r_file_perms; 10*e4a36f41SAndroid Build Coastguard Worker 11*e4a36f41SAndroid Build Coastguard Worker# Allow ReadDefaultFstab(). 12*e4a36f41SAndroid Build Coastguard Workerread_fstab(vendor_misc_writer) 13