1 type ramoops, domain, coredomain; 2 type ramoops_exec, exec_type, file_type; 3 4 init_daemon_domain(ramoops); 5 6 # kmod=crypto-gcm(aes) 7 dontaudit ramoops kernel:system module_request; 8 9 allow ramoops ramoops_exec:file rx_file_perms; 10 allow ramoops shell_exec:file rx_file_perms; 11 allow ramoops toolbox_exec:file rx_file_perms; 12 13 # Set the sys.ramoops.decrypted property 14 typeattribute ramoops system_writes_vendor_properties_violators; 15 set_prop(ramoops, ramoops_prop); 16 17 allow ramoops sysfs_pstore:file rw_file_perms; 18 allow ramoops ramoops_device:chr_file rw_file_perms; 19 allow ramoops ramoops_data_file:file create_file_perms; 20 allow ramoops ramoops_data_file:dir rw_dir_perms; 21
