lowi_server.te 1.4 KB

123456789101112131415161718192021222324252627282930313233343536
  1. # lowi_server service
  2. # which launches various other services supporting Wifi-RTT (LOWI) vendor_location
  3. type lowi_server, domain;
  4. type lowi_server_exec, exec_type, vendor_file_type, file_type;
  5. hwbinder_use(lowi_server)
  6. allow lowi_server self:udp_socket create_socket_perms;
  7. allow lowi_server self:netlink_route_socket create_socket_perms_no_ioctl;
  8. ## lowi-server
  9. ##############
  10. allow lowi_server vendor_location:fd use;
  11. allow lowi_server vendor_location:unix_dgram_socket {sendto read write};
  12. # some additional network access
  13. allow lowi_server self:netlink_generic_socket create_socket_perms_no_ioctl;
  14. allowxperm lowi_server self:udp_socket ioctl lowi_server_ioctls;
  15. # /data/vendor/wifi
  16. allow lowi_server vendor_wifi_vendor_data_file:dir rw_dir_perms;
  17. # /data/vendor/wifi/wpa
  18. allow lowi_server wpa_data_file:dir rw_dir_perms;
  19. allow lowi_server wpa_data_file:sock_file create_file_perms;
  20. allow lowi_server hal_wifi_supplicant_default:unix_dgram_socket sendto;
  21. # /dev/socket/wifihal
  22. allow lowi_server vendor_wifihal_socket:dir rw_dir_perms;
  23. allow lowi_server vendor_wifihal_socket:sock_file create_file_perms;
  24. allow lowi_server vendor_wifihal_socket:unix_dgram_socket sendto;
  25. unix_socket_send(lowi_server, vendor_wifihal, hal_wifi_default);
  26. unix_socket_send(lowi_server, vendor_wifihal, hal_wifi_ext);
  27. # /dev/socket/vendor_location
  28. allow lowi_server vendor_location_socket:{sock_file lnk_file} create_file_perms;
  29. allow lowi_server vendor_location_socket:dir rw_dir_perms;