106 lines
3.0 KiB
Plaintext
Executable File
106 lines
3.0 KiB
Plaintext
Executable File
# ==============================================
|
|
# MTK Policy Rule
|
|
# ==============================================
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : Set NFC permission to access nfc_socket.
|
|
|
|
allow nfc nfc_socket:dir { write remove_name add_name search };
|
|
allow nfc nfc_socket:sock_file { write create setattr unlink };
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : Set NFC permission to access custom file.
|
|
|
|
allow nfc custom_file:dir getattr;
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : Set NFC permission to access mt6605_device ( nfc device node ) .
|
|
|
|
allow nfc mt6605_device:chr_file { read write getattr open ioctl };
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : Set NFC permission to access nfc data file.
|
|
|
|
allow nfc nfc_data_file:dir { write remove_name add_name search create setattr };
|
|
allow nfc nfc_data_file:file { read getattr open rename write ioctl setattr create unlink };
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : Set NFC permission to access SD card for debug purpose.
|
|
|
|
allow nfc sdcard_internal:dir { write remove_name search create add_name };
|
|
allow nfc sdcard_internal:file { read write getattr open rename create };
|
|
allow nfc sdcard_external:dir { write add_name search };
|
|
allow nfc sdcard_external:file { read write getattr open create };
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : Set NFC permission for update screen (activity,dialog,animation, ex: Nfc Beam)
|
|
|
|
allow nfc guiext-server:binder call;
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : Set NFC permission for WFD
|
|
|
|
allow nfc surfaceflinger:dir search;
|
|
allow nfc surfaceflinger:file { read getattr open };
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : For Mdlogger
|
|
|
|
allow nfc node:tcp_socket node_bind;
|
|
allow nfc port:tcp_socket name_bind;
|
|
allow nfc self:tcp_socket { setopt read bind create accept write getattr connect getopt listen };
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : For Gallery3d
|
|
|
|
allow nfc init:binder { transfer };
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : For NFC-JNI
|
|
|
|
allow nfc zygote:unix_stream_socket { getopt getattr };
|
|
|
|
|
|
# ==============================================
|
|
# Date : 2014/10/15
|
|
# Operation : Refine
|
|
# Purpose : For VPN
|
|
|
|
allow nfc init:unix_stream_socket { write read setopt };
|
|
|
|
|
|
# allow nfc init_tmpfs:file read;
|
|
# allow nfc adbd:unix_stream_socket setopt;
|
|
# allow nfc dumpstate:fd use;
|
|
# allow nfc dumpstate:unix_stream_socket { read write getopt getattr };
|