NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
android_device_mediatek_sep.../plat_private/fuelgauged_static.te
mtk12101 bbecfaa68b [ALPS03825066] Resolve vendor violates 
[Detail] Google add new neverallows rules on android P,
some rule violate the rules

[Solution] Remove the rules which violate google new rules

MTK-Commit-Id: ff683b4eee0a6dd95ff25fbb6c7d1fc3a79c604d

Change-Id: Iead494212c6adcec234eaef14c83d1f8c7a49deb
CR-Id: ALPS03825066
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
2020-01-18 09:29:34 +08:00

51 lines
1.8 KiB
Plaintext
Raw Blame History

# ==============================================
# Policy File of /system/bin/fuelgauged_static Executable File
# ==============================================
# Type Declaration
# ==============================================
type fuelgauged_static_exec , exec_type, file_type;
type fuelgauged_static_file, file_type, data_file_type, core_data_file_type;
typeattribute fuelgauged_static coredomain;
# ==============================================
# Android Policy Rule
# ==============================================
# ==============================================
# NSA Policy Rule
# ==============================================
# ==============================================
# MTK Policy Rule
# ==============================================
init_daemon_domain(fuelgauged_static)
# Data : WK14.43
# Operation : Migration
# Purpose : Fuel Gauge daemon for access driver node
allow fuelgauged_static input_device:dir rw_dir_perms;
allow fuelgauged_static input_device:file r_file_perms;
# Data : WK14.43
# Operation : Migration
# Purpose : For fg daemon can comminucate with kernel
### TBD, neverallowxperm on line 177 of system/sepolicy/public/domain.te
#allow fuelgauged_static fuelgauged_static:netlink_kobject_uevent_socket create_socket_perms;
#allow fuelgauged_static fuelgauged_static:netlink_socket create_socket_perms;
# Data : WK16.21
# Operation : New Feature
# Purpose : For fg daemon can access /data/FG folder
file_type_auto_trans(fuelgauged_static, system_data_file, fuelgauged_static_file);
allow fuelgauged_static fuelgauged_static_file:file rw_file_perms;
allow fuelgauged_static system_data_file:dir rw_dir_perms;
# Data : WK16.25
# Operation : Migration
# Purpose : For fg daemon can work in recovery mode
allow fuelgauged_static rootfs:file entrypoint;
# Data : WK16.39
#allow fuelgauged_static self:capability { chown fsetid dac_override };
Reference in New Issue View Git Blame Copy Permalink