61d7044c46
[Detail] New sepolicy path declared and also support legacy android. MTK-Commit-Id: 8982268bbef8f852c153428f1a5f83849953c7c2 Change-Id: Ic10f297a312ff2e89e44a0aa323ffa11bc78ff6e CR-Id: ALPS04767749 Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
34 lines
1.2 KiB
Plaintext
34 lines
1.2 KiB
Plaintext
# ==============================================
|
|
# Policy File of /system/bin/biosensord_nvram Executable File
|
|
|
|
# ==============================================
|
|
# Type Declaration
|
|
# ==============================================
|
|
type biosensord_nvram ,domain;
|
|
type biosensord_nvram_exec , exec_type, file_type, vendor_file_type;
|
|
type biosensord_nvram_file, file_type, data_file_type;
|
|
|
|
# ==============================================
|
|
# Android Policy Rule
|
|
# ==============================================
|
|
|
|
# ==============================================
|
|
# NSA Policy Rule
|
|
# ==============================================
|
|
|
|
# ==============================================
|
|
# MTK Policy Rule
|
|
# ==============================================
|
|
|
|
init_daemon_domain(biosensord_nvram)
|
|
|
|
# Data : WK16.21
|
|
# Operation : New Feature
|
|
# Purpose : For biosensor daemon can do nvram r/w to save calibration data
|
|
allow biosensord_nvram nvdata_file:dir rw_dir_perms;
|
|
allow biosensord_nvram nvdata_file:file {rw_file_perms create_file_perms};
|
|
allow biosensord_nvram nvram_data_file:lnk_file rw_file_perms;
|
|
allow biosensord_nvram biometric_device:chr_file { open ioctl read write };
|
|
allow biosensord_nvram self:capability { chown fsetid };
|
|
allow biosensord_nvram system_data_file:lnk_file read;
|