1 type mmi_touch_sh, domain, domain_deprecated; 2 type mmi_touch_sh_exec, exec_type, file_type; 3 4 # Started by init 5 init_daemon_domain(mmi_touch_sh) 6 7 # shell scripts need to execute /system/bin/sh and toolbox 8 allow mmi_touch_sh shell_exec:file rx_file_perms; 9 allow mmi_touch_sh toolbox_exec:file rx_file_perms; 10 11 # Logs to /dev/kmsg 12 allow mmi_touch_sh kmsg_device:chr_file w_file_perms; 13 14 # Write to /sys/path/to/firmware/forcereflash 15 # Read from /sys/path/to/firmware/poweron (and others) 16 allow mmi_touch_sh sysfs_mmi_touch:file rw_file_perms; 17 allow mmi_touch_sh sysfs_mmi_touch:dir search; 18
