Blame - sepolicy/cs.te - android_device_samsung_j5lte

blob: b2c592307f55bde80286d94f67fca7992cb15671 [file] [log] [blame]

Zvikomborero VIncent Zvikaramba	ce77c38	2016-08-21 04:37:28 -0400	[diff] [blame^]	1	#===================cs========================
				2	type cs, domain;
				3	type cs_exec, exec_type, file_type;
				4	init_daemon_domain(cs)
				5	net_domain(cs)
				6
				7	# To make VT call
				8	binder_use(cs)
				9
				10	allow cs cs:appletalk_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				11	allow cs cs:capability sys_nice;
				12	allow cs cs:dir { read search ioctl open getattr };
				13	allow cs cs:fd use;
				14	allow cs cs:fifo_file { read lock getattr write ioctl open append };
				15	allow cs cs:file { read lock getattr write ioctl open append };
				16	allow cs cs:ipc { unix_read setattr associate read create write getattr unix_write destroy };
				17	allow cs cs:key { search setattr read create write link view };
				18	allow cs cs:key_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				19	allow cs cs:lnk_file { read lock ioctl open getattr };
				20	allow cs cs:msg { receive send };
				21	allow cs cs:msgq { unix_read setattr associate read create write enqueue getattr unix_write destroy };
				22	allow cs cs:netlink_route_socket { nlmsg_write lock accept connect shutdown append create nlmsg_read write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				23	allow cs cs:netlink_selinux_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				24	allow cs cs:packet_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				25	allow cs cs:process { sigkill share getpgid signull setkeycreate siginh getattr setcurrent setrlimit rlimitinh fork getsession setexec setpgid setsched sigstop ptrace noatsecure setsockcreate setfscreate execheap sigchld execstack signal transition setcap execmem getcap getsched dyntransition };
				26	allow cs cs:rawip_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto node_bind };
				27	allow cs cs:sem { unix_read setattr associate read create write getattr unix_write destroy };
				28	allow cs cs:shm { unix_read setattr associate read lock create write getattr unix_write destroy };
				29	allow cs cs:socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				30	allow cs cs:tcp_socket { lock accept connect shutdown append connectto create write relabelfrom getattr getopt listen acceptfrom setopt read newconn ioctl recv_msg name_bind name_connect send_msg setattr bind recvfrom sendto relabelto node_bind };
				31	allow cs cs:tun_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read attach_queue ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				32	allow cs cs:udp_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto node_bind };
				33	allow cs cs:unix_dgram_socket { lock accept connect shutdown append create write relabelfrom getattr getopt listen setopt read ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				34	allow cs cs:unix_stream_socket { lock accept connect shutdown append connectto create write relabelfrom getattr getopt listen acceptfrom setopt read newconn ioctl recv_msg name_bind send_msg setattr bind recvfrom sendto relabelto };
				35	allow cs cs_exec:file { read open getattr entrypoint execute };
				36	allow cs cs_socket:dir { write remove_name search open add_name };
				37	allow cs cs_socket:sock_file { rename setattr read lock create getattr write ioctl link unlink open append };
				38	allow cs cs_tmpfs:file { read write };
				39	allow cs efs_file:dir { read search ioctl open getattr };
				40	allow cs efs_file:file { read lock ioctl open getattr };
				41	allow cs firmware_file:dir { read search ioctl open getattr };
				42	allow cs firmware_file:file { read lock ioctl open getattr };
				43	allow cs firmware_file:lnk_file { read lock ioctl open getattr };
				44	allow cs init:process sigchld;
				45	allow cs qseecom_device:chr_file { read lock getattr write ioctl open append };
				46	allow cs system_data_file:dir { rename search setattr read create reparent getattr write ioctl link rmdir remove_name unlink open add_name };
				47	allow cs system_data_file:file { rename setattr read lock create getattr write ioctl link unlink open append };