blob: 17bc2d2e652809d52f2fc8ebaaa106cce48cf0fb (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
|
# Policy for /vendor/bin/wcnss_filter
type wcnss_filter, domain;
type wcnss_filter_exec, exec_type, vendor_file_type, file_type;
init_daemon_domain(wcnss_filter)
# talk to /dev/ttyHS0
allow wcnss_filter hci_attach_dev:chr_file rw_file_perms;
set_prop(wcnss_filter, wc_prop)
# write to proc/sysrq-trigger
allow wcnss_filter proc_sysrq:file w_file_perms;
# access to /dev/diag on debug builds
userdebug_or_eng(`
allow wcnss_filter diag_device:chr_file rw_file_perms;
allow wcnss_filter sysfs_timestamp_switch:file r_file_perms;
r_dir_file(wcnss_filter, sysfs_diag)
allow wcnss_filter ramdump_vendor_data_file:dir w_dir_perms;
allow wcnss_filter ramdump_vendor_data_file:file { create w_file_perms };
r_dir_file(wcnss_filter, debugfs_ipc)
set_prop(wcnss_filter, vendor_ssr_prop)
')
dontaudit wcnss_filter diag_device:chr_file rw_file_perms;
# Allow reading Bluetooth-related system properties
get_prop(wcnss_filter, bluetooth_prop)
# allow wcnss to set threads to RT priority
allow wcnss_filter self:capability sys_nice;
|
