9cbf8fb766
[Detail] System processes have no permission to access vendor_default_prop [Solution] Add get vendor_default_prop rule for system processes MTK-Commit-Id: ad4fb4d8ae4fb38767c16b82ce9d8351f5f59702 Change-Id: I31cf13db6b50a3cff193aa0a34bc1130e5b18942 CR-Id: ALPS03825066 Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
34 lines
1.2 KiB
Plaintext
34 lines
1.2 KiB
Plaintext
# Purpose : for access storage file
|
|
allow netdiag sdcard_type:dir create_dir_perms;
|
|
allow netdiag sdcard_type:file create_file_perms;
|
|
allow netdiag net_data_file:file r_file_perms;
|
|
allow netdiag net_data_file:dir search;
|
|
allow netdiag storage_file:dir search;
|
|
allow netdiag storage_file:lnk_file read;
|
|
allow netdiag mnt_user_file:dir search;
|
|
allow netdiag mnt_user_file:lnk_file read;
|
|
allow netdiag platform_app:dir search;
|
|
allow netdiag untrusted_app:dir search;
|
|
allow netdiag mnt_media_rw_file:dir search;
|
|
allow netdiag vfat:dir create_dir_perms;
|
|
allow netdiag vfat:file create_file_perms;
|
|
allow netdiag tmpfs:lnk_file read;
|
|
|
|
#Purpose : for network log property
|
|
set_prop(netdiag, debug_netlog_prop)
|
|
set_prop(netdiag, persist_mtklog_prop)
|
|
set_prop(netdiag, debug_mtklog_prop)
|
|
|
|
# Purpose : for acess /system/bin/toybox, mmc_prop,proc_net and safemode_prop
|
|
allow netdiag device_logging_prop:file { getattr open };
|
|
allow netdiag mmc_prop:file { getattr open };
|
|
|
|
# purpose: allow netdiag to access storage in new version
|
|
allow netdiag media_rw_data_file:file { create_file_perms };
|
|
allow netdiag media_rw_data_file:dir { create_dir_perms };
|
|
|
|
# Date : WK18.20
|
|
# Operation : Migration
|
|
# Purpose : no permission for vendor_default_prop
|
|
get_prop(netdiag, vendor_default_prop)
|