blob: 87e17c95d1aeaa8c4d91e9005b337f4b06c54e00 [file] [log] [blame]
type ss_ramdump, domain, device_domain_deprecated;
type ss_ramdump_exec, exec_type, file_type;
# Started by init
# read the contents of the /dev directory
allow ss_ramdump device:dir r_dir_perms;
# Read /dev/ramdump_* character devices
allow ss_ramdump ramdump_device:chr_file r_file_perms;
# Create files in /data/tombstones, for example
# /data/tombstones/ramdump_venus.elf
allow ss_ramdump tombstone_data_file:dir rw_dir_perms;
allow ss_ramdump tombstone_data_file:file rw_file_perms;
# Needed to allow UID=root to access /data/tombstones,
# which is owned by UID=system
allow ss_ramdump self:capability dac_override;