Blame - sepolicy/smdexe.te - android_device_samsung_j5lte

blob: 65e387d87a4eb810e163d4a22b714cfd5de17071 [file] [log] [blame]

Zvikomborero VIncent Zvikaramba	3927d12	2016-08-21 22:49:17 -0400	[diff] [blame^]	1	#============smdexe============
				2	type smdexe, domain;
				3	type smdexe_exec, exec_type, file_type;
				4	init_daemon_domain(smdexe)
				5	net_domain(smdexe)
				6
				7	# To make VT call
				8	binder_use(smdexe)
				9
				10	allow smdexe ddexe:unix_stream_socket connectto;
				11	allow smdexe dun_device:chr_file { read lock getattr write ioctl open append };
				12	allow smdexe init:process sigchld;
				13	allow smdexe rild:unix_stream_socket connectto;
				14	allow smdexe smd_device:chr_file { read lock getattr write ioctl open append };
				15	allow smdexe smdexe:appletalk_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				16	allow smdexe smdexe:capability { setuid sys_nice dac_override };
				17	allow smdexe smdexe:dir { read search ioctl open getattr };
				18	allow smdexe smdexe:fd use;
				19	allow smdexe smdexe:fifo_file { read lock getattr write ioctl open append };
				20	allow smdexe smdexe:file { read lock getattr write ioctl open append };
				21	allow smdexe smdexe:ipc { unix_read setattr associate read create write getattr unix_write destroy };
				22	allow smdexe smdexe:key { search setattr read create write link view };
				23	allow smdexe smdexe:key_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				24	allow smdexe smdexe:lnk_file { read lock ioctl open getattr };
				25	allow smdexe smdexe:msg { receive send };
				26	allow smdexe smdexe:msgq { unix_read setattr associate read create write enqueue getattr unix_write destroy };
				27	allow smdexe smdexe:netlink_route_socket { nlmsg_write lock accept connect shutdown append create nlmsg_read write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				28	allow smdexe smdexe:netlink_selinux_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				29	allow smdexe smdexe:packet_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				30	allow smdexe smdexe:process { sigkill share getpgid signull setkeycreate siginh getattr setcurrent setrlimit rlimitinh fork getsession setexec setpgid setsched sigstop ptrace noatsecure setsockcreate setfscreate execheap sigchld execstack signal transition setcap execmem getcap getsched dyntransition };
				31	allow smdexe smdexe:rawip_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto node_bind };
				32	allow smdexe smdexe:sem { unix_read setattr associate read create write getattr unix_write destroy };
				33	allow smdexe smdexe:shm { unix_read setattr associate read lock create write getattr unix_write destroy };
				34	allow smdexe smdexe:socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				35	allow smdexe smdexe:tcp_socket { lock accept connect shutdown append connectto create write relabelfrom getattr getopt listen acceptfrom setopt read newconn ioctl recv_msg name_bind name_connect send_msg setattr bind recvfrom sendto relabelto node_bind };
				36	allow smdexe smdexe:tun_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read attach_queue ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				37	allow smdexe smdexe:udp_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto node_bind };
				38	allow smdexe smdexe:unix_dgram_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				39	allow smdexe smdexe:unix_stream_socket { lock accept connect shutdown append connectto create write relabelfrom getattr getopt listen acceptfrom setopt read newconn ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				40	allow smdexe smdexe_exec:file { read open getattr entrypoint execute };
				41	allow smdexe smdexe_tmpfs:file { read write };
				42	allow smdexe sysfs:file { read lock getattr write ioctl open append };
				43	allow smdexe sysfs_ss_writable:file { read lock getattr write ioctl open append };
				44	allow smdexe system_data_file:sock_file { read lock getattr write ioctl open append };