1 # Policies for time daemon 2 type time_daemon, domain; 3 type time_daemon_exec, exec_type, file_type; 4 5 init_daemon_domain(time_daemon) 6 7 # Allow access to /dev/smem_log. 8 allow time_daemon smem_log_device:chr_file rw_file_perms; 9 10 # Add rules for access permissions 11 allow time_daemon rtc_device:chr_file r_file_perms; 12 allow time_daemon alarm_device:chr_file rw_file_perms; 13 14 # Allo access to /data/time/*. 15 allow time_daemon time_data_file:file r_file_perms; 16 17 allow time_daemon self:socket create_socket_perms; 18 19 allow time_daemon self:capability { setuid setgid }; 20
