sepolicy/property.te


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224

# ==============================================
# MTK Policy Rule
# ==============================================
type mtk_default_prop, property_type;

# Date: W14.32
# Operation: Migration
# Purpose: don't allow to use default_prop
neverallow { domain -init } default_prop:property_service set;
neverallow { domain -init -system_server -recovery } ctl_default_prop:property_service set;

#=============allow ccci_mdinit to start gsm0710muxd==============
type ctl_gsm0710muxd_prop, property_type;
type ctl_gsm0710muxd-s_prop, property_type;
type ctl_gsm0710muxd-d_prop, property_type;
type ctl_gsm0710muxdmd2_prop, property_type;
#=============allow ccci_mdinit to ctl. mdlogger==============
type ctl_mdlogger_prop, property_type;
type ctl_emdlogger1_prop, property_type;
type ctl_emdlogger2_prop, property_type;
type ctl_emdlogger3_prop, property_type;
type ctl_dualmdlogger_prop, property_type;
#=============allow eemcs_mdinit to start mdlogger==========
type ctl_eemcs_fmdl_prop, property_type;
#type ctl_emdlogger5_prop, property_type;
#=============allow viarild to start property==============
type ctl_viarild_prop, property_type;
#=============allow mtkrild to set persist.ril property==============
type persist_ril_prop, property_type;
#=============allow terserver to set terservice property==============
type terservice_prop, property_type;
#=============allow gsm0710muxd to set mux property==============
type gsm0710muxd_prop, property_type;

#=============allow mtkmd to set property==============
type persist_mal_prop, property_type;

#=============allow atcp to set property==============
type atcp_prop, property_type;
#type persist_sys_dongle_usb_prop, property_type;

#=============allow lannetmngrd to set property==============
type lannetmngrd_prop, property_type;

#=============allow netlog running==============
type debug_mtklog_prop, property_type;
type persist_mtklog_prop, property_type;
type debug_netlog_prop, property_type;
#=============allow system_server to set media.wfd.*==============
type media_wfd_prop, property_type;

#=============allow mediaserver to set mjc.lib.*==============
type mjc_lib_prop, property_type;

#=============allow mediaserver to set mtk.mjc.*==============
type mtk_mjc_prop, property_type;

#=============allow netd to set mtk_wifi.*=========================
type mtk_wifi_prop, property_type;

#=============allow mdlogger==============
type debug_mdlogger_prop, property_type;

#=============allow AEE==============
type persist_mtk_aee_prop, property_type;
type persist_aee_prop, property_type;
type debug_mtk_aee_prop, property_type;

#=============allow aee_dumpstate==============
type debug_bq_dump_prop, property_type;

#=============allow ccci_mdinit to stop rild==============
type ctl_ril-daemon-mtk_prop, property_type;
type ctl_ril-daemon-s_prop, property_type;
type ctl_ril-daemon-d_prop, property_type;
type ctl_ril-daemon-md2_prop, property_type;
type ctl_ril-proxy_prop, property_type;

#=============allow ccci_mdinit to start ccci_fsd==============
type ctl_ccci_fsd_prop, property_type;
type ctl_ccci2_fsd_prop, property_type;
type ctl_ccci3_fsd_prop, property_type;

#=============allow ccci_mdinit to start ccci_rpcd==============
type ctl_ccci_rpcd_prop, property_type;
type ctl_ccci2_rpcd_prop, property_type;

#=============allow ccci_mdinit to set ril_active_md_prop==============
type ril_active_md_prop, property_type;

#=============allow ccci_mdinit to stop rild==============
type ril_mux_report_case_prop, property_type;
type ril_cdma_report_prop, property_type;

#=============allow ccci_mdinit to mtk_md_prop==============
type mtk_md_prop, property_type;

#=============allow mtkrild to start muxreport==============
type ctl_muxreport-daemon_prop, property_type;

#=============allow ppp to set pppoe.ppp0==============
type pppoe_ppp0_prop, property_type;

#=============allow rild to start pppd_via==============
type ctl_pppd_via_prop, property_type;

#=============allow mediatek_prop ==============
type mediatek_prop, property_type;

#=============allow bootanim==============
type bootani_prop, property_type;

#=============allow mnld_prop==============
type mnld_prop, property_type;

#=============allow audiohal==============
type audiohal_prop, property_type;

#=============allow contrl ril3gd===========
type ctl_ril3gd_prop, property_type;

#=============allow contrl zpppd_gprs===========
type ctl_zpppdgprs_prop, property_type;

#=============allow DM==============
type persist_dm_prop, property_type;
type ctl_rbfota_prop, property_type;

#=============allow ipod==============
type ipod_prop, property_type;
type ctl_ipod_prop, property_type;
type ctl_ipo_swap_prop, property_type;

#=============allow wmt==============
type wmt_prop, property_type;

#=============allow atcid==============
type ctl_atcid-daemon-u_prop, property_type;
type ctl_atci_service_prop, property_type;
type persist_service_atci_prop, property_type;

#=============allow volte_rcs_proxy ==============
type ril_volte_stack_rcsuaproxy_prop, property_type;


#============= permission_check ==============
type persist_md_prop, property_type;

#=============allow sensor==============
type ctl_msensord_prop, property_type;
type ctl_akmd8963_prop, property_type;
type ctl_s62xd_prop, property_type;
type ctl_akmd09911_prop, property_type;
type ctl_akmd09912_prop, property_type;
type ctl_bmm050d_prop, property_type;
type ctl_bmm056d_prop, property_type;
type ctl_geomagneticd_prop, property_type;
type ctl_orientationd_prop, property_type;
type ctl_emcsmdlogger_prop, property_type;
type ctl_eemcs_fsd_prop, property_type;
type ctl_istd8303_prop, property_type;
type ctl_st480_prop, property_type;
#=============allow statusd==============
type net_cdma_mdmstat, property_type;
type cdma_prop, property_type;

#=============allow saveLocale==============
type save_locale_prop, property_type;

#=============allow bt==============
type bt_prop, property_type;
type persist_bt_prop, property_type;

#=============allow ccci_mdinit EVDO ==============
type mtk_tele_prop, property_type;

#=============allow pppd ==============
type pppd_gprs_prop, property_type;

#=============allow wifi offload deamon  ==============
type mtk_wod_prop, property_type;
type persist_wod_prop, property_type;

#=============allow program binary deamon  ==============
type program_binary_prop, property_type;

#=============allow radio to set mtk_volte_enable property==============
type mtk_volte_prop, property_type;

#=============allow radio to set mtk_wfc_enable property==============
type mtk_wfc_prop, property_type;

#=============allow radio to set mtk_vt_enable property==============
type mtk_vt_prop, property_type;

#=============allow mtkmal to start volte==============
type ctl_volte_imcb_prop, property_type;
type ctl_volte_stack_prop, property_type;
type ctl_volte_ua_prop, property_type;
type volte_prop, property_type;

#=============allow hotknot deamon  ==============
type hotknot_prop, property_type;

#=============allow teei deamon and init_thh daemon to set property ==============
type soter_teei_prop, property_type;

#============= allow ged_srv set protocol ===============
type mtk_sf_prop, property_type;

#============= allow factory idle current prop ==============
type factory_idle_state_prop, property_type;

#============= allow em set protocol ===============
type mtk_em_pdn_prop, property_type;

#=============allow MBIMD==============
type ctl_mbimd_prop, property_type;

#============= allow em set protocol ===============
type mtk_em_ims_simulate_prop, property_type;

#============= allow em set property ===============
type mtk_em_auto_answer_prop, property_type;