Blame - common/qmuxd.te - platform_device_qcom_sepolicy-legacy

blob: 091307522a5b560656e00d5b64e04fd17c9397ab [file] [log] [blame]

Biswajit Paul	6786a92	2017-03-16 11:53:53 -0700	[diff] [blame]	1	type qmuxd, domain;
Ravi Kumar Siddojigari	c7def12	2017-06-13 00:49:19 +0530	[diff] [blame]	2	type qmuxd_exec, exec_type, vendor_file_type, file_type;
Avijit Kanti Das	353e929	2014-07-23 23:39:30 -0700	[diff] [blame]	3	net_domain(qmuxd)
				4	init_daemon_domain(qmuxd)
Subash Abhinov Kasiviswanathan	1b307e7	2014-03-04 11:09:42 -0700	[diff] [blame]	5
				6	userdebug_or_eng(`
Avijit Kanti Das	0a2c91f	2014-06-18 16:02:17 -0700	[diff] [blame]	7	domain_auto_trans(shell, qmuxd_exec, qmuxd)
David Ng	a658efb	2016-10-07 11:38:22 -0700	[diff] [blame]	8	#domain_auto_trans(adbd, qmuxd_exec, qmuxd)
Subash Abhinov Kasiviswanathan	1b307e7	2014-03-04 11:09:42 -0700	[diff] [blame]	9	')
Avijit Kanti Das	353e929	2014-07-23 23:39:30 -0700	[diff] [blame]	10
				11	#Allow qmuxd to operate on various qmux device sockets
Biswajit Paul	64f83f6	2014-10-13 14:36:16 -0700	[diff] [blame]	12	#allow qmuxd qmux_radio_socket:dir { write add_name remove_name search };
				13	#allow qmuxd qmux_radio_socket:sock_file { create setattr getattr write unlink };
				14	#allow qmuxd qmux_audio_socket:dir { write add_name remove_name search };
				15	#allow qmuxd qmux_audio_socket:sock_file { create setattr getattr write unlink };
				16	#allow qmuxd qmux_gps_socket:dir { write add_name remove_name search };
				17	#allow qmuxd qmux_gps_socket:sock_file { create setattr getattr write unlink };
				18	#allow qmuxd qmux_bluetooth_socket:dir { write add_name remove_name search };
				19	#allow qmuxd qmux_bluetooth_socket:sock_file { create setattr getattr write unlink };
				20
				21	qmux_socket(qmuxd);
Avijit Kanti Das	353e929	2014-07-23 23:39:30 -0700	[diff] [blame]	22
				23	#Allow logging
Avijit Kanti Das	441bad4	2015-05-12 14:07:41 -0700	[diff] [blame]	24	allow qmuxd {
				25	#Allow operation in platform specific transports
				26	smd_device
				27	hsic_device
				28	mhi_device
Ravi Kumar Siddojigari	29f63ce	2015-07-09 12:55:00 +0530	[diff] [blame]	29	smem_log_device
Avijit Kanti Das	441bad4	2015-05-12 14:07:41 -0700	[diff] [blame]	30	}:chr_file rw_file_perms;
Avijit Kanti Das	353e929	2014-07-23 23:39:30 -0700	[diff] [blame]	31
				32	#Allow qmuxd to operate in platform specific transports
Avijit Kanti Das	441bad4	2015-05-12 14:07:41 -0700	[diff] [blame]	33	allow qmuxd {
				34	sysfs_smd_open_timeout
				35	#Allow qmuxd to write in hsic specific transport
				36	sysfs
				37	sysfs_hsic_modem_wait
				38	}:file w_file_perms;
Satya Durga Srinivasu Prabhala	93dce74	2014-10-15 16:44:33 -0700	[diff] [blame]	39
				40	allow qmuxd self:capability { setuid setgid setpcap dac_override };
Subash Abhinov Kasiviswanathan	5280ce9	2014-10-16 14:17:20 -0600	[diff] [blame]	41
				42	#Allow qmuxd to have the CAP_BLOCK_SUSPEND capability
Avijit Kanti Das	441bad4	2015-05-12 14:07:41 -0700	[diff] [blame]	43	wakelock_use(qmuxd)
Avijit Kanti Das	fe61c2d	2014-10-16 20:17:03 -0700	[diff] [blame]	44
Avijit Kanti Das	441bad4	2015-05-12 14:07:41 -0700	[diff] [blame]	45	r_dir_file(qmuxd, sysfs_esoc)
Avijit Kanti Das	d01b3b3	2014-10-21 10:30:09 -0700	[diff] [blame]	46
				47	r_dir_file(qmuxd, sysfs_ssr);
Avijit Kanti Das	441bad4	2015-05-12 14:07:41 -0700	[diff] [blame]	48
Avijit Kanti Das	d01b3b3	2014-10-21 10:30:09 -0700	[diff] [blame]	49	allow qmuxd mhi_device:chr_file rw_file_perms;
Biswajit Paul	28439f9	2015-07-15 13:28:27 -0700	[diff] [blame]	50
				51	#Allow qmuxd to access to IPC router
				52	allow qmuxd smem_log_device:chr_file rw_file_perms;
Biswajit Paul	2d35d98	2017-02-01 17:40:10 -0800	[diff] [blame]	53	allow qmuxd qmuxd:socket create_socket_perms_no_ioctl;