blob: e8f84d1d36f89510b0bec40f19b8230a3eb336e9 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
|
type mlog_qmi, domain;
type mlog_qmi_exec, exec_type, file_type;
# Started by init
init_daemon_domain(mlog_qmi)
allow mlog_qmi self:capability { net_raw net_bind_service };
allow mlog_qmi self:socket create_socket_perms;
# NOTE: using self:socket for the ioctl results in a denial
allowxperm mlog_qmi mlog_qmi:socket ioctl mlog_qmi_ioctls;
# Access to /dev/smem_log
allow mlog_qmi smem_log_device:chr_file rw_file_perms;
# qseecom
allow mlog_qmi tee_device:chr_file rw_file_perms;
allowxperm mlog_qmi tee_device:chr_file ioctl qseecom_sock_ipc_ioctls;
|