android_device_mediatek_sep.../plat_private/cmddumper.te

# ==============================================
# MTK Policy Rule
# ==============================================

# New added for move to /system
type cmddumper_exec, system_file_type, exec_type, file_type;
typeattribute cmddumper coredomain;

init_daemon_domain(cmddumper)

# cmddumper  access on /data/mdlog
allow cmddumper system_data_file:dir { create_dir_perms relabelfrom relabelto};

# "mdl_serv_fifo" scontext=u:r:cmddumper:s0 tcontext=u:object_r:system_data_file
allow cmddumper system_data_file:fifo_file create_file_perms;


# for modem logging sdcard access
allow cmddumper sdcard_type:dir create_dir_perms;
allow cmddumper sdcard_type:file create_file_perms;

# modem logger socket access
allow cmddumper init:unix_stream_socket connectto;
allow cmddumper property_socket:sock_file { write read };
allow cmddumper platform_app:unix_stream_socket connectto;
allow cmddumper shell_exec:file { rx_file_perms };
allow cmddumper system_file:file x_file_perms;


# purpose: allow cmddumper to access storage in N version
allow cmddumper media_rw_data_file:file  { create_file_perms };
allow cmddumper media_rw_data_file:dir { create_dir_perms };

# purpose: access plat_file_contexts
allow cmddumper file_contexts_file:file { read getattr open };
import from mediatek/master to mediatek/alps-mp-o1.mp1 Change-Id: Ic78db8195c5c51f85c9c6fd3ef8333489afd6e79 MTK-Commit-Id: 848bf57127be9d01fd1df4aab95737855456afee 2020-01-18 09:29:32 +08:00			`# ==============================================`
			`# MTK Policy Rule`
			`# ==============================================`

			`# New added for move to /system`
[ALPS04239425] Sepolicy: fix undefined type declration [Detail] Unknown type:untrusted_v2_app,alarm_device,qtaguid_proc,mtd_device Duplicated type:proc_slabinfo MTK-Commit-Id: 11ccfcffb994452eb58a697e94a8da748ac73933 Change-Id: I2e847041d14d6b6613044cfaa98f242b7fd9381a CR-Id: ALPS04239425 Feature: Build System 2020-01-18 10:08:05 +08:00			`type cmddumper_exec, system_file_type, exec_type, file_type;`
import from mediatek/master to mediatek/alps-mp-o1.mp1 Change-Id: Ic78db8195c5c51f85c9c6fd3ef8333489afd6e79 MTK-Commit-Id: 848bf57127be9d01fd1df4aab95737855456afee 2020-01-18 09:29:32 +08:00			`typeattribute cmddumper coredomain;`

			`init_daemon_domain(cmddumper)`

			`# cmddumper access on /data/mdlog`
			`allow cmddumper system_data_file:dir { create_dir_perms relabelfrom relabelto};`

			`# "mdl_serv_fifo" scontext=u:r:cmddumper:s0 tcontext=u:object_r:system_data_file`
			`allow cmddumper system_data_file:fifo_file create_file_perms;`


			`# for modem logging sdcard access`
			`allow cmddumper sdcard_type:dir create_dir_perms;`
			`allow cmddumper sdcard_type:file create_file_perms;`

			`# modem logger socket access`
			`allow cmddumper init:unix_stream_socket connectto;`
			`allow cmddumper property_socket:sock_file { write read };`
			`allow cmddumper platform_app:unix_stream_socket connectto;`
			`allow cmddumper shell_exec:file { rx_file_perms };`
			`allow cmddumper system_file:file x_file_perms;`


			`# purpose: allow cmddumper to access storage in N version`
			`allow cmddumper media_rw_data_file:file { create_file_perms };`
			`allow cmddumper media_rw_data_file:dir { create_dir_perms };`

			`# purpose: access plat_file_contexts`
			`allow cmddumper file_contexts_file:file { read getattr open };`