universal7870: import Pie sepolicies

2025-09-06 00:17:47 -04:00 · 2020-01-28 00:06:11 +01:00 · 2020-01-28 00:06:11 +01:00 · 221b221b8a
commit 221b221b8a
parent 734b50ffaa
41 changed files with 583 additions and 0 deletions
--- a/sepolicy/kernel.te
+++ b/sepolicy/kernel.te
@ -0,0 +1,29 @@
+allow kernel self:capability { chown mknod };
+
+# /dev/mbin0
+allow kernel emmcblk_device:blk_file r_file_perms;
+allow kernel device:blk_file { create setattr getattr unlink };
+
+# /bus/usb/001/001
+allow kernel device:dir { create write remove_name rmdir add_name };
+allow kernel device:chr_file { create setattr getattr unlink };
+
+# /sys/devices/system/cpu/cpu[0-9]/cpufreq/*
+allow kernel sysfs_devices_system_cpu:file { setattr };
+allow kernel sysfs:file { setattr open };
+
+# /efs contents
+allow kernel { app_efs_file battery_efs_file efs_file sensor_efs_file }:dir r_dir_perms;
+allow kernel { app_efs_file battery_efs_file efs_file sensor_efs_file }:file rw_file_perms;
+
+allow kernel sysfs_sec:dir search;
+allow kernel sysfs_sec:lnk_file read;
+
+allow kernel device:blk_file { create setattr };
+
+# /efs/wifi/.mac.info
+allow kernel wifi_efs_file:dir r_dir_perms;
+allow kernel wifi_efs_file:file r_file_perms;
+
+# /data/misc/conn/.wifiver.info
+allow kernel wifi_data_file:file rw_file_perms;