63 lines
2.3 KiB
Plaintext
Executable File
63 lines
2.3 KiB
Plaintext
Executable File
# ==============================================
|
|
# Policy File of /system/binmdlogger Executable File
|
|
|
|
|
|
# ==============================================
|
|
# Type Declaration
|
|
# ==============================================
|
|
|
|
type mdlogger_exec , exec_type, file_type;
|
|
type mdlogger ,domain;
|
|
|
|
# ==============================================
|
|
# Android Policy Rule
|
|
# ==============================================
|
|
|
|
# ==============================================
|
|
# NSA Policy Rule
|
|
# ==============================================
|
|
|
|
# ==============================================
|
|
# MTK Policy Rule
|
|
# ==============================================
|
|
|
|
#permissive mdlogger;
|
|
init_daemon_domain(mdlogger)
|
|
|
|
binder_use(mdlogger)
|
|
binder_service(mdlogger)
|
|
|
|
#=============allow mdlogger to set ==============
|
|
allow mdlogger debug_mdlogger_prop:property_service set;
|
|
allow mdlogger debug_prop:property_service set;
|
|
allow mdlogger ccci_device:chr_file { read write ioctl open };
|
|
allow mdlogger ttyGS_device:chr_file { read write open ioctl};
|
|
allow mdlogger fuse:dir { write search create rmdir add_name remove_name read open rename};
|
|
allow mdlogger fuse:file { write read create open rename unlink getattr setattr append};
|
|
allow mdlogger mdlog_data_file:dir { write search read create open rmdir remove_name add_name relabelto getattr};
|
|
allow mdlogger mdlog_data_file:fifo_file { read open create setattr};
|
|
allow mdlogger mdlog_data_file:file { write read create open rename unlink getattr setattr};
|
|
allow mdlogger mdlog_device:chr_file { read write open ioctl};
|
|
allow mdlogger system_data_file:dir { write create open add_name relabelfrom};
|
|
|
|
allow mdlogger init:unix_stream_socket connectto;
|
|
allow mdlogger property_socket:sock_file write;
|
|
allow mdlogger platform_app:unix_stream_socket connectto;
|
|
|
|
allow mdlogger shell_exec:file { read execute open execute_no_trans };
|
|
allow mdlogger system_file:file execute_no_trans;
|
|
allow mdlogger zygote_exec:file { read getattr open };
|
|
allow mdlogger tmpfs:lnk_file read;
|
|
|
|
#============= mdlogger usb logging ==============
|
|
# Date : 2014/09/26
|
|
# Operation : Migration
|
|
# Purpose : [MDLOGGER] [mdlogger usb logging tcp_socket]
|
|
# Package: system/bin/mdlogger
|
|
|
|
allow mdlogger fuse:dir search;
|
|
allow mdlogger node:tcp_socket node_bind;
|
|
allow mdlogger port:tcp_socket name_bind;
|
|
allow mdlogger self:tcp_socket { write read bind create setopt accept listen };
|
|
|