1typeattribute vendor_init data_between_core_and_vendor_violators; 2 3allow vendor_init { 4 dhcp_data_file 5 elabel_data_file 6 media_rw_data_file 7 system_data_file 8 tombstone_data_file 9 wifi_data_file 10}:dir { create search getattr open read setattr ioctl write add_name remove_name rmdir relabelfrom }; 11 12allow vendor_init debugfs_clk:file w_file_perms; 13allow vendor_init proc_uid_cpupower:file write; 14allow vendor_init proc_swappiness:file w_file_perms; 15dontaudit vendor_init kernel:system module_request; 16 17# Allow vendor_init to write to /proc/sysrq-trigger on userdebug and eng builds 18userdebug_or_eng(` 19 allow vendor_init proc_sysrq:file w_file_perms; 20') 21 22set_prop(vendor_init, vendor_bluetooth_prop) 23set_prop(vendor_init, camera_prop) 24set_prop(vendor_init, modem_diag_prop) 25set_prop(vendor_init, power_prop) 26set_prop(vendor_init, public_vendor_default_prop) 27set_prop(vendor_init, vendor_radio_prop) 28set_prop(vendor_init, thermal_prop) 29set_prop(vendor_init, vendor_charge_prop) 30 31dontaudit vendor_init unlabeled:dir getattr; 32dontaudit vendor_init unlabeled:file getattr; 33 34allow vendor_init debugfs_tracing_instances:dir create_dir_perms; 35allow vendor_init debugfs_tracing_instances:file w_file_perms; 36 37# Write to touch vrmode node 38allow vendor_init sysfs_touch:file w_file_perms; 39