PawletOS/FrameworkAPI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update sepolicy/pawlet_device.te

Browse Source
This commit is contained in:
oxmc
2025-08-19 18:33:31 -07:00
parent 3d47277ba4
commit a5ad479170
1 changed files with 6 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
sepolicy/pawlet_device.te
View File

@@ -1,17 +1,14 @@
# Domain declaration
type pawlet_device, domain, coredomain;
type pawlet_device_exec, exec_type, file_type;
# Inherit from core domain # Inherit from core domain
typeattribute pawlet_device coredomain; typeattribute pawlet_device coredomain;
# Basic file access for your domain # Basic file access for your domain
allow pawlet_device pawlet_device_exec:file { execute read open map }; allow pawlet_device pawlet_device_exec:file { execute read open map };
allow pawlet_device system_file:file { read getattr open };
# Binder communication if needed # Binder communication
binder_use(pawlet_device) binder_use(pawlet_device)
binder_call(pawlet_device, system_server) binder_call(pawlet_device, system_server)
binder_call(pawlet_device, servicemanager) binder_call(pawlet_device, servicemanager)
# Define a new property type for your device
type pawlet_prop, property_type;
# Allow your device to get and set its own properties
allow pawlet_device pawlet_prop:property_service { get set };