projects / GitHub / LineageOS / android_device_samsung_universal7580-common.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
universal7580: sepolicy: Resolve tethering_service denial
[GitHub/LineageOS/android_device_samsung_universal7580-common.git] / sepolicy / system_server.te
1 # /efs
2 allow system_server efs_file:dir r_dir_perms;
3
4 # /efs/gyro_cal_data
5 allow system_server sensor_efs_file:file r_file_perms;
6
7 # /data/system/gps/.gps.interface.pipe.*
8 type_transition system_server system_data_file:fifo_file gps_data_file ".flp.interface.pipe.to_gpsd";
9 type_transition system_server system_data_file:fifo_file gps_data_file ".gps.interface.pipe.to_gpsd";
10 type_transition system_server system_data_file:fifo_file gps_data_file ".gps.interface.pipe.to_jni";
11 allow system_server gps_data_file:fifo_file create_file_perms;
12 allow system_server gps_data_file:dir rw_dir_perms;
13
14 # /data/system/gps/chip.info
15 allow system_server gps_data_file:file r_file_perms;
16
17 # /efs/prox_cal
18 allow system_server efs_file:file r_file_perms;
19
20 # /efs/FactoryApp
21 allow system_server app_efs_file:dir r_dir_perms;
22 allow system_server app_efs_file:file r_file_perms;
23
24 # WifiMachine
25 allow system_server self:capability sys_module;
26 allow system_server wifi_efs_file:dir r_dir_perms;
27 allow system_server wifi_efs_file:file r_file_perms;
28
29 # mDNIE
30 allow system_server sysfs_mdnie:lnk_file rw_file_perms;
31 #allow system_server sysfs_mdnie:dir rw_dir_perms;
32 allow system_server sysfs_mdnie:file rw_file_perms;
33
34 # memtrack HAL
35 allow system_server debugfs:dir r_dir_perms;
36
37 # sensor HAL
38 allow system_server sensor_device:chr_file rw_file_perms;
39 allow system_server baro_delta_factoryapp_efs_file:file r_file_perms;
40 allow system_server sensor_factoryapp_efs_file:file r_file_perms;
41 allow system_server sysfs_sensors:file rw_file_perms;
42
43 # /data/system/gps/xtraee.bin
44 allow system_server gps_data_file:file create_file_perms;
45
46 # Bluetooth buildprop
47 get_prop(system_server, bluetooth_prop)
48
49 # Grpahics sysfs
50 allow system_server sysfs_graphics:file rw_file_perms;
51
52 # Input sysfs
53 allow system_server sysfs_input:file rw_file_perms;
54
55 allow system_server proc_input_devices:file r_file_perms;
56
57 unix_socket_connect(system_server, property, gpsd)
58
59 get_prop(system_server, exported_camera_prop);
60 get_prop(system_server, userspace_reboot_exported_prop);
61 get_prop(system_server, userspace_reboot_config_prop);