summaryrefslogtreecommitdiff
path: root/sepolicy/whitechapel/vendor/google/scd.te
diff options
context:
space:
mode:
Diffstat (limited to 'sepolicy/whitechapel/vendor/google/scd.te')
-rw-r--r--sepolicy/whitechapel/vendor/google/scd.te17
1 files changed, 17 insertions, 0 deletions
diff --git a/sepolicy/whitechapel/vendor/google/scd.te b/sepolicy/whitechapel/vendor/google/scd.te
new file mode 100644
index 00000000..28aaee0a
--- /dev/null
+++ b/sepolicy/whitechapel/vendor/google/scd.te
@@ -0,0 +1,17 @@
+type scd, domain;
+type scd_exec, vendor_file_type, exec_type, file_type;
+init_daemon_domain(scd)
+
+# Allow scd access PixelLogger unix socket in debug build only
+userdebug_or_eng(`
+ typeattribute scd mlstrustedsubject;
+ allow scd logger_app:unix_stream_socket connectto;
+')
+
+# Allow a base set of permissions required for network access.
+net_domain(scd);
+
+# Allow scd access data vendor gps files
+allow scd vendor_gps_file:dir create_dir_perms;
+allow scd vendor_gps_file:file create_file_perms;
+allow scd vendor_gps_file:fifo_file create_file_perms;
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-03 03:22:51 +0000