1# rmt_storage daemon 2type rmt_storage, domain; 3type rmt_storage_exec, exec_type, file_type; 4 5init_daemon_domain(rmt_storage) 6 7# Drop (user, group) to (nobody, nobody) 8allow rmt_storage self:capability { setuid setgid }; 9 10# Opens and reads /dev/block/mmcblk0. 11allow rmt_storage root_block_device:blk_file r_file_perms; 12 13# Allow access to /dev/uio0. 14allow rmt_storage uio_device:chr_file rw_file_perms; 15 16# Allow access to /dev/smem_log. 17allow rmt_storage smem_log_device:chr_file rw_file_perms; 18 19# Allow access to modem related block devices. 20allow rmt_storage modem_block_device:blk_file rw_file_perms; 21 22# Allow access to SSD related block devices. 23allow rmt_storage ssd_block_device:blk_file rw_file_perms; 24 25allow rmt_storage self:socket create_socket_perms; 26 27allow rmt_storage sysfs:file r_file_perms; 28 29allow rmt_storage sysfs:dir r_dir_perms; 30 31# Wake lock access. 32wakelock_use(rmt_storage) 33