diff options
| author | Mister Oyster <oysterized@gmail.com> | 2017-01-02 12:44:35 +0100 |
|---|---|---|
| committer | Mister Oyster <oysterized@gmail.com> | 2017-01-02 12:44:35 +0100 |
| commit | a184d985bf43d3fe6eeba971bc6b32f79ea38b37 (patch) | |
| tree | 6f6e56e090777cc149bc1ab39e5987cc2b03e867 /sepolicy/mdlogger.te | |
initial releasecm-13.0
Diffstat (limited to 'sepolicy/mdlogger.te')
| -rw-r--r-- | sepolicy/mdlogger.te | 62 |
1 files changed, 62 insertions, 0 deletions
diff --git a/sepolicy/mdlogger.te b/sepolicy/mdlogger.te new file mode 100644 index 0000000..67bd14e --- /dev/null +++ b/sepolicy/mdlogger.te @@ -0,0 +1,62 @@ +# ============================================== +# Policy File of /system/binmdlogger Executable File + + +# ============================================== +# Type Declaration +# ============================================== + +type mdlogger_exec , exec_type, file_type; +type mdlogger ,domain; + +# ============================================== +# Android Policy Rule +# ============================================== + +# ============================================== +# NSA Policy Rule +# ============================================== + +# ============================================== +# MTK Policy Rule +# ============================================== + +#permissive mdlogger; +init_daemon_domain(mdlogger) + +binder_use(mdlogger) +binder_service(mdlogger) + +#=============allow mdlogger to set ============== +allow mdlogger debug_mdlogger_prop:property_service set; +allow mdlogger debug_prop:property_service set; +allow mdlogger ccci_device:chr_file { read write ioctl open }; +allow mdlogger ttyGS_device:chr_file { read write open ioctl}; +allow mdlogger fuse:dir { write search create rmdir add_name remove_name read open rename}; +allow mdlogger fuse:file { write read create open rename unlink getattr setattr append}; +allow mdlogger mdlog_data_file:dir { write search read create open rmdir remove_name add_name relabelto getattr}; +allow mdlogger mdlog_data_file:fifo_file { read open create setattr}; +allow mdlogger mdlog_data_file:file { write read create open rename unlink getattr setattr}; +allow mdlogger mdlog_device:chr_file { read write open ioctl}; +allow mdlogger system_data_file:dir { write create open add_name relabelfrom}; + +allow mdlogger init:unix_stream_socket connectto; +allow mdlogger property_socket:sock_file write; +allow mdlogger platform_app:unix_stream_socket connectto; + +allow mdlogger shell_exec:file { read execute open execute_no_trans }; +allow mdlogger system_file:file execute_no_trans; +allow mdlogger zygote_exec:file { read getattr open }; +allow mdlogger tmpfs:lnk_file read; + +#============= mdlogger usb logging ============== +# Date : 2014/09/26 +# Operation : Migration +# Purpose : [MDLOGGER] [mdlogger usb logging tcp_socket] +# Package: system/bin/mdlogger + +allow mdlogger fuse:dir search; +allow mdlogger node:tcp_socket node_bind; +allow mdlogger port:tcp_socket name_bind; +allow mdlogger self:tcp_socket { write read bind create setopt accept listen }; + |