54 lines
2.0 KiB
Plaintext
Executable File
54 lines
2.0 KiB
Plaintext
Executable File
# allow rild net_dns_prop:file { getattr open read };
|
|
allow rild ppp_device:chr_file ioctl;
|
|
allow rild rootfs:dir { open read };
|
|
#TODO removed for Q
|
|
#allow rild system_file:file execute_no_trans;
|
|
allow rild vendor_file:file execute_no_trans;
|
|
allow rild init:dir search;
|
|
allow rild init:file { open read };
|
|
allow rild kernel:dir search;
|
|
allow rild kernel:file { open read };
|
|
allow rild vendor_init:dir search;
|
|
allow rild vendor_init:file read;
|
|
allow rild vendor_toolbox_exec:file execute_no_trans;
|
|
allow rild hal_keymaster_default:dir search;
|
|
allow rild hwservicemanager:dir search;
|
|
allow rild logd:dir search;
|
|
allow rild servicemanager:dir search;
|
|
allow rild tee:dir search;
|
|
allow rild ueventd:dir search;
|
|
allow rild vendor_init:file open;
|
|
allow rild vndservicemanager:dir search;
|
|
allow rild hal_keymaster_default:file read;
|
|
allow rild hwservicemanager:file { open read };
|
|
allow rild logd:file { open read };
|
|
allow rild servicemanager:file { open read };
|
|
allow rild tee:file read;
|
|
allow rild ueventd:file { open read };
|
|
allow rild vndservicemanager:file read;
|
|
allow rild vold:dir search;
|
|
allow rild hal_audio_default:dir search;
|
|
allow rild hal_bluetooth_default:dir search;
|
|
allow rild hal_camera_default:dir search;
|
|
allow rild hal_keymaster_default:file open;
|
|
allow rild healthd:dir search;
|
|
allow rild tee:file open;
|
|
allow rild vndservicemanager:file open;
|
|
allow rild vold:file read;
|
|
allow rild hal_audio_default:file { open read };
|
|
allow rild healthd:file { open read };
|
|
allow rild vold:file open;
|
|
allow rild proc_net:file write;
|
|
allow rild self:packet_socket create;
|
|
allow rild self:packet_socket setopt;
|
|
allow rild self:packet_socket { bind read write read};
|
|
allow rild audioserver:file { open read };
|
|
allow rild hal_bluetooth_default:file { open read };
|
|
allow rild hal_camera_default:file { open read };
|
|
allow rild hal_cas_default:dir search;
|
|
allow rild hal_configstore_default:dir search;
|
|
allow rild hal_drm_clearkey:dir search;
|
|
allow rild hal_drm_default:dir search;
|
|
allow rild hal_drm_widevine:dir search;
|
|
allow rild lmkd:file { open read };
|