AetherDroid/android_device_samsung_universal7570-common
1
0
Fork 0
mirror of https://github.com/AetherDroid/android_device_samsung_universal7570-common.git synced 2025-09-08 01:08:05 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

universal7570: sepolicy: Update for exynos 7570

Browse source 
* I still don't know how to import these from stock
* So I 'kang' from https://github.com/Yilliee/android_device_samsung_on5xelte , hehe

Change-Id: I093d4b91602f1b26750f41bd9b9c056e707dd12d
This commit is contained in:
Hendra Manudinata 2021-03-09 09:10:57 +07:00
parent 926337f331
commit 602b4e4005
No known key found for this signature in database
GPG key ID: 8DB7A83A9B4EE2D6
53 changed files with 58 additions and 1095 deletions
Download patch file Download diff file Expand all files Collapse all files

102
sepolicy/init.te
View file

@ -1,97 +1,5 @@
# Mount debugfs on /sys/kernel/debug.
allow init debugfs:dir mounton;
# Mount EFS on /efs
allow init efs_file:dir mounton;
# Mount CPEFS on /cpefs
allow init sec_efs_file:dir mounton;
# /dev/block/mmcblk0p[0-9]
allow init emmcblk_device:blk_file rw_file_perms;
allow init block_device:lnk_file setattr;
allow init tmpfs:lnk_file create_file_perms;
# /sys/class/power_supply/battery and /sys/class/android_usb/android0
allow init sysfs_usb_supply:file { rw_file_perms setattr };
# /data
allow init sdcardd_exec:file r_file_perms;
# sysfs iio:device[0-9]
allow init sysfs:lnk_file setattr;
# sysfs ion device
allow init sysfs_ion:file setattr;
# sysfs usb device
allow init sysfs_android_usb:file setattr;
# read/chown mDNIE symlinks
allow init sysfs_mdnie:lnk_file { r_file_perms setattr };
allow init sysfs_mdnie:file rw_file_perms;
# read/chown camera firmware
allow init sysfs_camera:file { relabelto setattr };
allow init sysfs_camera:filesystem associate;
# WiFi firmware permissions
allow init sysfs_wifi:file setattr;
# Input devices
allow init sysfs_input:file { rw_file_perms setattr };
# BT permissions
allow init sysfs_bluetooth_writable:file setattr;
# GPS permissions
allow init sysfs_gps:lnk_file read;
allow init sysfs_gps:file { rw_file_perms setattr };
allow init gps_data_file:fifo_file write;
allow init gps_data_file:file lock;
allow init gps_device:chr_file { open read write };
# CPU permissions
allow init sysfs_devices_system_cpu:file rw_file_perms;
# umts permissions
allow init mif_device:chr_file rw_file_perms;
# sswap permissions
allow init sswap_device:blk_file write;
allow init sysfs_sswap:file { open write };
# Block device sysfs
allow init sysfs_block:file rw_file_perms;
# Audio Jack
allow init sysfs_jack:file setattr;
unix_socket_connect(init, property, rild)
# Allow access to /proc/device-tree nodes
r_dir_file(init, proc_dt_firmware)
allow init sysfs_mmc:file { w_file_perms setattr };
allow init sysfs_net:file rw_file_perms;
allow init sysfs_graphics:file { rw_file_perms setattr };
allow init sysfs_light:file { rw_file_perms setattr };
allow init sysfs_light:lnk_file { rw_file_perms setattr };
allow init sysfs_mdnie:file setattr;
allow init sysfs_sec:file { rw_file_perms setattr };
allow init sysfs_sec:lnk_file read;
allow init sysfs_sensors:file { rw_file_perms setattr };
allow init sysfs_sensors:lnk_file read;
allow init sysfs_multipdp:file setattr;
# Proc files
allow init proc_reset_reason:file { rw_file_perms setattr };
allow init proc_vm:file rw_file_perms;
allow init proc_simslot_count:file rw_file_perms;
allow init proc_sec:file { rw_file_perms setattr };
# Sockets
allow init socket_device:sock_file { read write getattr setattr create unlink };
# allow init hal_drm_hwservice:hwservice_manager add;
allow init vendor_configs_file:file mounton;
allow init vendor_overlay_file:dir mounton;
allow init ram_device:blk_file write;
allow init sysfs_zram:file { create_file_perms rw_file_perms };
allow init sysfs_zram:dir rw_dir_perms;