NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
android_device_mediatek_sep.../non_plat/workaround.te
Juju Sung 0a3b110ac5 [ALPS04357449] Sepolicy: workaround for denied policy 
[Detail]
Set proc node specific node
- hraphic_composer
- bootanimation
- aee_core_forwarder
- surfaceflinger

MTK-Commit-Id: 46901e2900a497c472b8a7c01f1350bdd28bbdae

Change-Id: I89a1ab578a2841d3a16718153d5a716ad45c399b
CR-Id: ALPS04357449
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
2020-01-18 10:09:09 +08:00

57 lines
1.9 KiB
Plaintext
Raw Blame History

#============= aee_core_forwarder ==============
allow aee_core_forwarder aee_aed:unix_stream_socket connectto;
allow aee_core_forwarder aee_core_data_file:dir read;
allow aee_core_forwarder hwservicemanager:binder { call transfer };
#============= audioserver ==============
allow audioserver vendor_default_prop:file read;
#============= bip ==============
allow bip net_dns_prop:file read;
#============= bluetooth ==============
allow bluetooth mtk_amslog_prop:file read;
#============= emdlogger ==============
allow emdlogger logmuch_prop:file read;
#============= merged_hal_service ==============
allow merged_hal_service nvram_agent_binder_hwservice:hwservice_manager find;
#============= mtk_hal_audio ==============
allow mtk_hal_audio audioserver:fifo_file write;
allow mtk_hal_audio sysfs_boot_mode:file read;
allow mtk_hal_audio sysfs_dt_firmware_android:dir search;
#============= mtk_hal_camera ==============
allow mtk_hal_camera sysfs_dt_firmware_android:dir search;
#============= platform_app ==============
allow platform_app mtk_amslog_prop:file read;
#============= rild ==============
allow rild proc_cmdline:file read;
#============= shared_relro ==============
allow shared_relro mtk_amslog_prop:file read;
#============= system_server ==============
allow system_server vendor_default_prop:file read;
#============= ueventd ==============
allow ueventd tmpfs:lnk_file read;
#============= wmt_loader ==============
allow wmt_loader proc_wmtdbg:file setattr;
# interface=android.hardware.audio::IDevicesFactory for hal_audio_hwservice
allow hal_audio_client hal_audio_hwservice:hwservice_manager find;
allow hal_audio_server hal_audio_hwservice:hwservice_manager find;
allow hal_audio hal_audio_hwservice:hwservice_manager find;
# interface=android.system.suspend::ISystemSuspend for aee_core_forwarder
allow aee_core_forwarder system_suspend_hwservice:hwservice_manager find;
Reference in New Issue View Git Blame Copy Permalink