NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
android_device_mediatek_sep.../non_plat/thermalloadalgod.te
jerry-sc.wu 673540dbc3 [ALPS04735619] Thermal: modify file permission 
[Detail]
Remove unused sepolicy for security.

MTK-Commit-Id: 9dd692a0415d70888b316552857ccb6fc1a8f8fe

Change-Id: Id3cb597f38aac3629c70384b5b12b291dab60c1d
Signed-off-by: jerry-sc.wu <jerry-sc.wu@mediatek.com>
CR-Id: ALPS04735619
Feature: Thermal Management
(cherry picked from commit 0965c4af39de006e48b35f97cf1f670b72c2bc23)
2020-01-18 10:18:29 +08:00

50 lines
2.4 KiB
Plaintext
Raw Permalink Blame History

# ==============================================
# Policy File of /system/bin/thermalloadalgod_exec Executable File
# ==============================================
# Type Declaration
# ==============================================
type thermalloadalgod ,domain;
type thermalloadalgod_exec , exec_type, file_type, vendor_file_type;
# ==============================================
# MTK Policy Rule
# ==============================================
init_daemon_domain(thermalloadalgod)
# Data : WK14.43
# Operation : Migration
# Purpose : thermal algorithm daemon for access driver node
allow thermalloadalgod input_device:dir { r_dir_perms write };
allow thermalloadalgod input_device:file r_file_perms;
allow thermalloadalgod thermalloadalgod:netlink_socket { create bind write read};
allow thermalloadalgod thermal_manager_data_file:dir create_dir_perms;
allow thermalloadalgod thermal_manager_data_file:file create_file_perms;
allow thermalloadalgod kmsg_device:chr_file write;
# Data : WK16.49
# Operation : SPA porting
# Purpose : thermal algorithm daemon for SPA
# For /proc/[pid]/cgroup accessing
typeattribute thermalloadalgod mlstrustedsubject;
allow thermalloadalgod proc:dir {search getattr};
allow thermalloadalgod proc:file {getattr open read write ioctl};
allow thermalloadalgod shell:dir search;
allow thermalloadalgod platform_app:dir search;
allow thermalloadalgod platform_app:file {open read getattr};
allow thermalloadalgod priv_app:dir search;
allow thermalloadalgod priv_app:file {open read getattr};
allow thermalloadalgod system_app:dir search;
allow thermalloadalgod system_app:file {open read getattr};
allow thermalloadalgod untrusted_app:dir search;
allow thermalloadalgod untrusted_app:file {open read getattr};
allow thermalloadalgod mediaserver:dir search;
allow thermalloadalgod mediaserver:file {open read getattr};
allow thermalloadalgod proc_thermal:dir search;
allow thermalloadalgod proc_thermal:file { open read write getattr };
Reference in New Issue View Git Blame Copy Permalink