49 lines
1.4 KiB
Plaintext
Executable File
49 lines
1.4 KiB
Plaintext
Executable File
# ==============================================
|
|
# MTK Policy Rule
|
|
# ============
|
|
|
|
|
|
#violate neverallow rule
|
|
#allow adbd block_device:blk_file { read ioctl open };
|
|
|
|
#violate neverallow rule
|
|
#allow adbd labeledfs:filesystem remount;
|
|
|
|
# Date : WK14.27
|
|
# Operation : KK.AOSP SQC
|
|
# Purpose : MTK snapshot-related mechanism
|
|
allow adbd graphics_device:chr_file { read ioctl open };
|
|
|
|
# Date : WK14.27
|
|
# Operation : KK.AOSP SQC
|
|
# Purpose : A process wants to access a specific path. For example : shell:ls -l /data/data/
|
|
allow adbd platform_app_data_file:dir { write getattr add_name };
|
|
allow adbd platform_app_data_file:file { read create open };
|
|
allow adbd radio_data_file:file { read open };
|
|
|
|
# Date : WK14.27
|
|
# Operation : KK.AOSP SQC
|
|
# Purpose : shell:logcat -v threadtime
|
|
allow adbd self:capability2 syslog;
|
|
|
|
allow adbd block_device:dir search;
|
|
allow adbd kernel:process setsched;
|
|
allow adbd self:capability { net_raw ipc_lock dac_override };
|
|
allow adbd system_data_file:dir { write remove_name add_name };
|
|
allow adbd system_data_file:file { write create unlink open setattr };
|
|
allow adbd tmpfs:lnk_file read;
|
|
|
|
# Date : WK14.46
|
|
# Operation : Migration
|
|
# Purpose : for MTK Emulator HW GPU
|
|
allow adbd qemu_pipe_device:chr_file rw_file_perms;
|
|
|
|
# call screencap by DDMS
|
|
allow adbd surfaceflinger:dir search;
|
|
allow adbd surfaceflinger:file r_file_perms;
|
|
|
|
# Date : WK14.48
|
|
# Operation : L0 SQC
|
|
# Purpose : push/pull files to specific folders
|
|
allow adbd sf_rtt_file:dir getattr;
|