summaryrefslogtreecommitdiff
path: root/sepolicy/modem/user/dmd.te
diff options
context:
space:
mode:
Diffstat (limited to 'sepolicy/modem/user/dmd.te')
-rw-r--r--sepolicy/modem/user/dmd.te29
1 files changed, 29 insertions, 0 deletions
diff --git a/sepolicy/modem/user/dmd.te b/sepolicy/modem/user/dmd.te
new file mode 100644
index 00000000..eabf8930
--- /dev/null
+++ b/sepolicy/modem/user/dmd.te
@@ -0,0 +1,29 @@
+type dmd, domain;
+type dmd_exec, vendor_file_type, exec_type, file_type;
+init_daemon_domain(dmd)
+
+# Grant to access serial device for external logging tool
+allow dmd serial_device:chr_file rw_file_perms;
+
+# Grant to access radio device
+allow dmd radio_device:chr_file rw_file_perms;
+
+# Grant to access slog dir/file
+allow dmd vendor_slog_file:dir create_dir_perms;
+allow dmd vendor_slog_file:file create_file_perms;
+
+# Grant to access tcp socket
+allow dmd node:tcp_socket node_bind;
+allow dmd self:tcp_socket { create_socket_perms_no_ioctl listen accept bind };
+
+# Grant to access log related properties
+set_prop(dmd, vendor_diag_prop)
+set_prop(dmd, vendor_slog_prop)
+set_prop(dmd, vendor_modem_prop)
+
+get_prop(dmd, vendor_persist_config_default_prop)
+
+# Grant to access hwservice manager
+get_prop(dmd, hwservicemanager_prop)
+
+binder_call(dmd, hwservicemanager)
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-03 03:17:03 +0000