diff options
Diffstat (limited to 'sepolicy/dualmdlogger.te')
| -rw-r--r-- | sepolicy/dualmdlogger.te | 63 |
1 files changed, 63 insertions, 0 deletions
diff --git a/sepolicy/dualmdlogger.te b/sepolicy/dualmdlogger.te new file mode 100644 index 0000000..01a8cfe --- /dev/null +++ b/sepolicy/dualmdlogger.te @@ -0,0 +1,63 @@ +# ============================================== +# Policy File of /system/bindualmdlogger Executable File + + +# ============================================== +# Type Declaration +# ============================================== + +type dualmdlogger_exec , exec_type, file_type; +type dualmdlogger ,domain; + +# ============================================== +# Android Policy Rule +# ============================================== + +# ============================================== +# NSA Policy Rule +# ============================================== + +# ============================================== +# MTK Policy Rule +# ============================================== + +#permissive dualmdlogger; +init_daemon_domain(dualmdlogger) + + +#=============allow mdlogger to set ============== +allow dualmdlogger debug_mdlogger_prop:property_service set; +allow dualmdlogger debug_prop:property_service set; +allow dualmdlogger ccci_device:chr_file { read write ioctl open }; +allow dualmdlogger ttyGS_device:chr_file { read write open ioctl}; +allow dualmdlogger fuse:dir { write search create rmdir add_name remove_name read open rename}; +allow dualmdlogger fuse:file { write read create open rename unlink getattr setattr append}; +allow dualmdlogger mdlog_data_file:dir { write search read create open rmdir remove_name add_name relabelto getattr}; +allow dualmdlogger mdlog_data_file:fifo_file { read open create setattr}; +allow dualmdlogger mdlog_data_file:file { write read create open rename unlink getattr setattr}; +allow dualmdlogger mdlog_device:chr_file { read write open ioctl}; +allow dualmdlogger system_data_file:dir { write create open add_name relabelfrom}; + +allow dualmdlogger init:unix_stream_socket connectto; +allow dualmdlogger property_socket:sock_file write; +allow dualmdlogger platform_app:unix_stream_socket connectto; + +allow dualmdlogger shell_exec:file { read execute open execute_no_trans }; +allow dualmdlogger system_file:file execute_no_trans; +allow dualmdlogger zygote_exec:file { read getattr open execute execute_no_trans }; +allow dualmdlogger tmpfs:lnk_file read; + +#============= dualmdlogger usb logging ============== +# Date : 2014/09/26 +# Operation : Migration +# Purpose : [DUALMDLOGGER] [dualmdlogger usb logging tcp_socket] +# Package: system/bin/dualmdlogger + +allow dualmdlogger fuse:dir search; +allow dualmdlogger node:tcp_socket node_bind; +allow dualmdlogger port:tcp_socket name_bind; +allow dualmdlogger self:tcp_socket { write read bind create setopt accept listen }; + + +binder_use(dualmdlogger) +binder_service(dualmdlogger) |