1# ============================================== 2# Policy File of /system/bin/ccci_fsd Executable File 3 4# ============================================== 5# Type Declaration 6# ============================================== 7type ccci_fsd_exec, exec_type, file_type, vendor_file_type; 8type ccci_fsd, domain; 9 10# ============================================== 11# MTK Policy Rule 12# ============================================== 13init_daemon_domain(ccci_fsd) 14 15wakelock_use(ccci_fsd) 16 17#============= ccci_fsd MD NVRAM============== 18allow ccci_fsd nvram_data_file:dir create_dir_perms; 19allow ccci_fsd nvram_data_file:file create_file_perms; 20allow ccci_fsd nvram_data_file:lnk_file read; 21allow ccci_fsd nvdata_file:lnk_file read; 22allow ccci_fsd nvdata_file:dir create_dir_perms; 23allow ccci_fsd nvdata_file:file create_file_perms; 24allow ccci_fsd nvram_device:chr_file rw_file_perms; 25allow ccci_fsd vendor_configs_file:file r_file_perms; 26allow ccci_fsd vendor_configs_file:dir r_dir_perms; 27 28#============= ccci_fsd device/path/data access============== 29allow ccci_fsd ccci_device:chr_file rw_file_perms; 30allow ccci_fsd ccci_cfg_file:dir create_dir_perms; 31allow ccci_fsd ccci_cfg_file:file create_file_perms; 32#============= ccci_fsd MD Data============== 33allow ccci_fsd protect_f_data_file:dir create_dir_perms; 34allow ccci_fsd protect_f_data_file:file create_file_perms; 35 36allow ccci_fsd protect_s_data_file:dir create_dir_perms; 37allow ccci_fsd protect_s_data_file:file create_file_perms; 38#============= ccci_fsd MD3 related============== 39allow ccci_fsd c2k_file:dir create_dir_perms; 40allow ccci_fsd c2k_file:file create_file_perms; 41allow ccci_fsd otp_part_block_device:blk_file rw_file_perms; 42allow ccci_fsd otp_device:chr_file rw_file_perms; 43allow ccci_fsd sysfs_boot_type:file { read open }; 44#============= ccci_fsd MD block data============== 45##restore>NVM_GetDeviceInfo>open /dev/block/platform/bootdevice/by-name/nvram 46allow ccci_fsd block_device:dir search; 47allow ccci_fsd nvram_device:blk_file rw_file_perms; 48allow ccci_fsd nvdata_device:blk_file rw_file_perms; 49#============= ccci_fsd cryption related ============== 50allow ccci_fsd rawfs:dir create_dir_perms; 51allow ccci_fsd rawfs:file create_file_perms; 52#============= ccci_fsd sysfs related ============== 53allow ccci_fsd sysfs_ccci:dir search; 54allow ccci_fsd sysfs_ccci:file r_file_perms; 55 56#============= ccci_fsd ============== 57allow ccci_fsd mnt_vendor_file:dir search; 58 59# Purpose: for fstab parser 60allow ccci_fsd kmsg_device:chr_file w_file_perms; 61allow ccci_fsd proc_lk_env:file rw_file_perms; 62 63#============= ccci_fsd MD Low Power Monitor Related ============== 64allow ccci_fsd ccci_data_md1_file:dir create_dir_perms; 65allow ccci_fsd ccci_data_md1_file:file create_file_perms; 66allow ccci_fsd sysfs_devices_block:dir search; 67allow ccci_fsd sysfs_devices_block:file { read getattr open }; 68