| Adam Shih | 8e52437 | 2022-09-06 10:36:43 +0800 | [diff] [blame] | 1 | type insmod-sh, domain; |
| 2 | type insmod-sh_exec, vendor_file_type, exec_type, file_type; |
| 3 | init_daemon_domain(insmod-sh) |
| 4 | |
| 5 | allow insmod-sh self:capability sys_module; |
| Robin Peng | f938468 | 2023-03-15 09:52:49 +0000 | [diff] [blame] | 6 | allow insmod-sh system_dlkm_file:dir r_dir_perms; |
| 7 | allow insmod-sh system_dlkm_file:file r_file_perms; |
| 8 | allow insmod-sh system_dlkm_file:system module_load; |
| Adam Shih | 8e52437 | 2022-09-06 10:36:43 +0800 | [diff] [blame] | 9 | allow insmod-sh vendor_kernel_modules:system module_load; |
| 10 | allow insmod-sh vendor_toolbox_exec:file execute_no_trans; |
| 11 | |
| 12 | set_prop(insmod-sh, vendor_device_prop) |
| 13 | |
| 14 | dontaudit insmod-sh proc_cmdline:file r_file_perms; |