59f0ec9f6e
[Detail] enable PRODUCT_COMPATIBLE_PROPERTY_OVERRIDE = true, will cause build error [Solution] Mark rules that violate AOSP neverallow rules MTK-Commit-Id: c850c6f1fcb8de76235ea2be51becb7a2ccc6190 Change-Id: Ib9a80f4495d6db588133f929c9ea70e7215ad2aa CR-Id: ALPS03881723 Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
40 lines
1.3 KiB
Plaintext
40 lines
1.3 KiB
Plaintext
# ==============================================
|
|
# Policy File of /system/bin/gsm0710muxd Executable File
|
|
|
|
# ==============================================
|
|
# Type Declaration
|
|
# ==============================================
|
|
type gsm0710muxd, domain;
|
|
type gsm0710muxd_exec , exec_type, file_type, vendor_file_type;
|
|
|
|
# ==============================================
|
|
# MTK Policy Rule
|
|
# ==============================================
|
|
init_daemon_domain(gsm0710muxd)
|
|
|
|
# Capabilities assigned for gsm0710muxd
|
|
allow gsm0710muxd self:capability { chown fowner setuid };
|
|
|
|
# Property service
|
|
# Set ctl.ril-daemon property
|
|
set_prop(gsm0710muxd, ctl_rildaemon_prop)
|
|
set_prop(gsm0710muxd, ctl_ril-daemon-mtk_prop)
|
|
set_prop(gsm0710muxd, ctl_fusion_ril_mtk_prop)
|
|
set_prop(gsm0710muxd, gsm0710muxd_prop)
|
|
#set_prop(gsm0710muxd, radio_prop)
|
|
# allow set muxreport control properties
|
|
set_prop(gsm0710muxd, ril_mux_report_case_prop)
|
|
|
|
# Allow read/write to devices/files
|
|
allow gsm0710muxd gsm0710muxd_device:chr_file rw_file_perms;
|
|
allow gsm0710muxd device:dir rw_dir_perms;
|
|
allow gsm0710muxd device:lnk_file { create unlink };
|
|
allow gsm0710muxd devpts:chr_file setattr;
|
|
allow gsm0710muxd eemcs_device:chr_file rw_file_perms;
|
|
allow gsm0710muxd sysfs:file r_file_perms;
|
|
|
|
# Allow read to sys/kernel/ccci/* files
|
|
allow gsm0710muxd sysfs_ccci:dir search;
|
|
allow gsm0710muxd sysfs_ccci:file r_file_perms;
|
|
|