MarcoBuster/Magisk
1
1
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Samsung need more rules :)

Browse Source
This commit is contained in:
topjohnwu 2018-01-02 00:10:49 +08:00
parent 5c338cd0a7
commit 2f4062a923
1 changed files with 3 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
rules.c
View File

@ -123,19 +123,14 @@ void sepol_magisk_rules() {
sepol_allow("init", "system_file", "file", ALL);
sepol_allow("init", "rootfs", "lnk_file", ALL);
// Shell, prop management, simple su rights, logs
if (sepol_exists("default_prop")) {
// Shell, properties, logs
if (sepol_exists("default_prop"))
sepol_allow("su", "default_prop", "property_service", "set");
sepol_allow("su", "default_prop", "file", "write");
}
sepol_allow("su", "init", "unix_stream_socket", "connectto");
sepol_allow("su", "rootfs", "filesystem", "remount");
sepol_allow("su", "su", "unix_dgram_socket", ALL);
sepol_allow("su", "su", "unix_stream_socket", ALL);
sepol_allow("su", "su", "process", ALL);
sepol_allow("su", "su", "capability", ALL);
if (sepol_exists("logd"))
sepol_allow("su", "logd", "unix_stream_socket", "connectto");
sepol_allow("su", "su", ALL, ALL);
// For sepolicy live patching
sepol_allow("su", "kernel", "security", "read_policy");