| Adam Shih | 8146116 | 2022-10-20 11:23:26 +0800 | [diff] [blame^] | 1 | type aocd, domain; |
| 2 | type aocd_exec, vendor_file_type, exec_type, file_type; |
| 3 | init_daemon_domain(aocd) |
| 4 | |
| 5 | # access persist files |
| 6 | allow aocd mnt_vendor_file:dir search; |
| 7 | allow aocd persist_file:dir search; |
| 8 | r_dir_file(aocd, persist_aoc_file); |
| 9 | |
| 10 | # sysfs operations |
| 11 | allow aocd sysfs_aoc:dir search; |
| 12 | allow aocd sysfs_aoc_firmware:file w_file_perms; |
| 13 | |
| 14 | # dev operations |
| 15 | allow aocd aoc_device:chr_file rw_file_perms; |
| 16 | |
| 17 | # allow inotify to watch for additions/removals from /dev |
| 18 | allow aocd device:dir r_dir_perms; |
| 19 | |
| 20 | # set properties |
| 21 | set_prop(aocd, vendor_aoc_prop) |