• Home
  • Raw
  • Download

Lines Matching refs:allow

16 allow shell pstorefs:dir search;
17 allow shell pstorefs:file r_file_perms;
19 allow shell misc_logd_file:dir r_dir_perms;
20 allow shell misc_logd_file:file r_file_perms;
23 allow shell anr_data_file:dir r_dir_perms;
24 allow shell anr_data_file:file r_file_perms;
27 allow shell shell_data_file:dir create_dir_perms;
28 allow shell shell_data_file:file create_file_perms;
29 allow shell shell_data_file:file rx_file_perms;
30 allow shell shell_data_file:lnk_file create_file_perms;
35 allow shell devpts:chr_file rw_file_perms;
36 allow shell tty_device:chr_file rw_file_perms;
37 allow shell console_device:chr_file rw_file_perms;
38 allow shell input_device:dir r_dir_perms;
39 allow shell input_device:chr_file rw_file_perms;
40 allow shell system_file:file x_file_perms;
41 allow shell shell_exec:file rx_file_perms;
42 allow shell zygote_exec:file rx_file_perms;
52 # systrace support - allow atrace to run
57 allow shell debugfs:file r_file_perms;
59 # allow shell to run dmesg
60 allow shell kernel:system syslog_read;
62 # allow shell access to services
63 allow shell servicemanager:service_manager list;
64 # don't allow shell to access GateKeeper service
65 allow shell { service_manager_type -gatekeeper_service }:service_manager find;
67 # allow shell to look through /proc/ for ps, top
68 allow shell domain:dir { search open read getattr };
69 allow shell domain:{ file lnk_file } { open read getattr };
71 # allow shell to read /proc/pid/attr/current for ps -Z
72 allow shell domain:process getattr;
77 allow shell bootchart_data_file:dir rw_dir_perms;
78 allow shell bootchart_data_file:file create_file_perms;
80 # only allow unprivileged socket ioctl commands
81 allow shell self:{ rawip_socket tcp_socket udp_socket } unpriv_sock_ioctls;
83 # Do not allow shell to hard link to any files.