diff options
Diffstat (limited to 'sepolicy/pvrsrvinit.te')
| -rw-r--r-- | sepolicy/pvrsrvinit.te | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/sepolicy/pvrsrvinit.te b/sepolicy/pvrsrvinit.te new file mode 100644 index 0000000..689f5a7 --- /dev/null +++ b/sepolicy/pvrsrvinit.te @@ -0,0 +1,15 @@ +# pvrsrvinit +type pvrsrvinit, domain; +type pvrsrvinit_exec, exec_type, file_type; + +init_daemon_domain(pvrsrvinit) + +allow pvrsrvinit block_device:dir search; +allow pvrsrvinit gpu_device:chr_file rw_file_perms; +allow pvrsrvinit init:unix_stream_socket connectto; +allow pvrsrvinit kernel:system module_request; +allow pvrsrvinit property_socket:sock_file write; +allow pvrsrvinit pvrsrvinit_exec:file rx_file_perms; +allow pvrsrvinit self:capability { sys_module }; +allow pvrsrvinit shell_exec:file rx_file_perms; +allow pvrsrvinit system_file:file x_file_perms; |