# ==============================================
# MTK Policy Rule
# ============

# Date : WK14.37
# Operation : Migration 
# Purpose : for sdcard daemon to access lk_env
allow sdcardd proc_lk_env:file { read write ioctl open };
allow sdcardd misc_device:chr_file { read write open };
allow sdcardd mmcblk_device:blk_file rw_file_perms;
allow sdcardd platformblk_device:blk_file rw_file_perms;
allow sdcardd block_device:dir search;
allow sdcardd platformblk_device:dir search;

# Date : WK14.47
# Purpose : create symbolic link from /mnt/shell/emulated to /storage/emulated
allow sdcardd tmpfs:dir {write add_name mounton};
allow sdcardd tmpfs:lnk_file create;
allow sdcardd tmpfs:filesystem unmount;

# Date : WK14.48
# Purpose : invoke vdc for handle_users
allow sdcardd devpts:chr_file { read write getattr open ioctl };
allow sdcardd vdc_exec:file { read execute open execute_no_trans };
allow sdcardd vold:unix_stream_socket connectto;
allow sdcardd vold_socket:sock_file write;


# Date : WK14.48
# Purpose : unknown
allow sdcardd platform_app:fd use;
allow sdcardd untrusted_app:fd use;

# Date : WK15.02
# Purpose : ashared memory
allow sdcardd platform_app_tmpfs:file write;