Created
April 18, 2015 06:20
-
-
Save ma34s/23c1089012a4971fb221 to your computer and use it in GitHub Desktop.
MDI /data/local/tmp/seinfo --all
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Statistics for policy file: /sepolicy | |
| Policy Version & Type: v.24 (binary, mls) | |
| Classes: 84 Permissions: 249 | |
| Common classes: 5 | |
| Sensitivities: 1 Categories: 1024 | |
| Types: 539 Attributes: 24 | |
| Users: 1 Roles: 2 | |
| Booleans: 14 Cond. Expr.: 15 | |
| Allow: 5199 Neverallow: 0 | |
| Auditallow: 0 Dontaudit: 137 | |
| Type_trans: 191 Type_change: 0 | |
| Type_member: 0 Role allow: 0 | |
| Role_trans: 0 Range_trans: 0 | |
| Constraints: 63 Validatetrans: 0 | |
| Initial SIDs: 27 Fs_use: 14 | |
| Genfscon: 16 Portcon: 0 | |
| Netifcon: 0 Nodecon: 0 | |
| Permissives: 0 Polcap: 2 | |
| Object classes: 84 | |
| netlink_audit_socket | |
| tcp_socket | |
| msgq | |
| x_property | |
| binder | |
| db_procedure | |
| dir | |
| peer | |
| blk_file | |
| chr_file | |
| db_table | |
| db_tuple | |
| dbus | |
| ipc | |
| lnk_file | |
| process | |
| capability2 | |
| fd | |
| packet | |
| socket | |
| fifo_file | |
| file | |
| node | |
| x_cursor | |
| x_server | |
| zygote | |
| db_view | |
| netlink_nflog_socket | |
| key | |
| netlink_tcpdiag_socket | |
| unix_stream_socket | |
| x_synthetic_event | |
| db_database | |
| db_language | |
| kernel_service | |
| netlink_route_socket | |
| x_extension | |
| db_sequence | |
| shm | |
| x_resource | |
| netlink_selinux_socket | |
| property_service | |
| capability | |
| netlink_ip6fw_socket | |
| dccp_socket | |
| netlink_firewall_socket | |
| sock_file | |
| unix_dgram_socket | |
| netlink_kobject_uevent_socket | |
| db_blob | |
| filesystem | |
| netlink_xfrm_socket | |
| x_device | |
| db_schema | |
| netlink_dnrt_socket | |
| x_client | |
| x_gc | |
| context | |
| nscd | |
| passwd | |
| x_event | |
| x_font | |
| key_socket | |
| netif | |
| packet_socket | |
| memprotect | |
| msg | |
| tun_socket | |
| udp_socket | |
| appletalk_socket | |
| x_colormap | |
| x_screen | |
| rawip_socket | |
| x_application_data | |
| association | |
| x_selection | |
| db_column | |
| netlink_socket | |
| x_drawable | |
| sem | |
| system | |
| x_keyboard | |
| security | |
| x_pointer | |
| Common classes: 5 | |
| socket | |
| x_device | |
| database | |
| file | |
| ipc | |
| Types: 539 | |
| adbd_socket | |
| auditd_exec | |
| hci_attach_exec | |
| efsks_exec | |
| nfc | |
| rild_debug_socket | |
| ATFWD-daemon_exec | |
| gpsone_daemon | |
| smd_cxm_qmi | |
| mobexdaemon | |
| audio_socket | |
| radio_socket | |
| qseecom_device | |
| mdns_socket | |
| smd_device | |
| km_fips_prop | |
| ddexe_exec | |
| samsungpowersoundplay_tmpfs | |
| platform_app | |
| ram_device | |
| rootfs | |
| tmpfs | |
| gpsd_tmpfs | |
| installd_exec | |
| qrngd | |
| bugreport_exec | |
| ecryptfs | |
| ks_tmpfs | |
| system_library_file | |
| dbusd_exec | |
| untrusted_app_tmpfs | |
| cpuctl_device | |
| netmgrd_exec | |
| systemblk_device | |
| m9kefsblk_device | |
| media_app | |
| container_app_tmpfs | |
| p2p_supplicant_tmpfs | |
| efsblk_device | |
| fsgblk_device | |
| mdmblk_device | |
| paramblk_device | |
| cgroup | |
| gsiff_daemon_exec | |
| rmt_storage_tmpfs | |
| connfwexe_exec | |
| ppp_device | |
| wpa_socket | |
| qmux_gps_socket | |
| accelerometer_device | |
| auditd | |
| netd | |
| playready_tmpfs | |
| sdcardd | |
| zygote | |
| debuggerd | |
| input_device | |
| mediaserver_tmpfs | |
| ueventd_tmpfs | |
| mm-pp-daemon_exec | |
| bintvoutservice_tmpfs | |
| mfdp | |
| mtp | |
| secure_box_app | |
| backup_data_file | |
| bugreport | |
| ddexe_tmpfs | |
| immvibed | |
| servicemanager_tmpfs | |
| ks_exec | |
| su_exec | |
| ppp_exec | |
| qemud | |
| tee_exec | |
| wpa_exec | |
| cnd_exec | |
| mqueue | |
| mtp_exec | |
| tee | |
| anr_data_file | |
| app_data_file | |
| dhcp_data_file | |
| mmb_data_file | |
| shell_data_file | |
| vpn_data_file | |
| dalvikcache_data_file | |
| mm-pp-daemon | |
| keystore_tmpfs | |
| immvibed_exec | |
| kernel | |
| dhcp_tmpfs | |
| system | |
| platform_app_data_file | |
| dhcp | |
| securityfs | |
| dbusd_tmpfs | |
| drmserver | |
| kiesexe_tmpfs | |
| persist_data_file | |
| drmserver_tmpfs | |
| firmware | |
| keystore | |
| vold_exec | |
| vpn_device | |
| adbd | |
| netmgrd | |
| qcks_exec | |
| dumpstate | |
| mobexdaemon_exec | |
| racoon_exec | |
| secstarter_tmpfs | |
| vpn_app_data_file | |
| gpsone_daemon_exec | |
| rild_exec | |
| time_daemon_exec | |
| unlabeled | |
| fsslcmnd_tmpfs | |
| mobicore-user_device | |
| qosmgr_tmpfs | |
| mpdecision_tmpfs | |
| release_app | |
| bluetooth | |
| kgsl_device | |
| dhcp_exec | |
| system_tmpfs | |
| vcs_device | |
| gpsd_exec | |
| mm-qcamera-daemon_tmpfs | |
| pps_socket | |
| dbusd | |
| logwrapper_exec | |
| port | |
| persdata_data_file | |
| secstarter_exec | |
| mfdp_exec | |
| mfsc_exec | |
| smd_sns_adsp | |
| netd_exec | |
| qrngd_tmpfs | |
| asec_image_file | |
| radio_tmpfs | |
| tee_tmpfs | |
| wpa | |
| logwrapper_tmpfs | |
| runas | |
| wpa_tmpfs | |
| system_prop | |
| sdcard_external | |
| sdcard_internal | |
| sdcardd_exec | |
| at_distributor | |
| mfescand_exec | |
| selinuxfs | |
| tty_device | |
| tun_device | |
| mobicoredaemon_tmpfs | |
| installd_tmpfs | |
| mmb_apk | |
| imei_efs_file | |
| gsiff_daemon | |
| full_device | |
| null_device | |
| qemu_device | |
| ramdump_device | |
| edm_app | |
| fuse_device | |
| playready_exec | |
| usb_device | |
| vpn_app | |
| camera_device | |
| keystore_exec | |
| mobicore_prop | |
| cnd_tmpfs | |
| modem_device | |
| tee_device | |
| video_device | |
| mfc_tmpfs | |
| mfm_tmpfs | |
| mfs_tmpfs | |
| mfw_tmpfs | |
| thermald_exec | |
| apnhlosblk_device | |
| labeledfs | |
| mtp_tmpfs | |
| audio_device | |
| radio_device | |
| nfc_tmpfs | |
| qmux_audio_socket | |
| qmux_radio_socket | |
| ptmx_device | |
| qmux_bluetooth_socket | |
| samsungpowersoundplay | |
| bt_prop | |
| connfwexe | |
| container_mgmt_prop | |
| system_app_tmpfs | |
| tombstones_data_file | |
| oneseg_apk_tmpfs | |
| bluetooth_data_file | |
| usbaccessory_device | |
| edm_app_tmpfs | |
| media_app_tmpfs | |
| csc_prop | |
| qemud_socket | |
| socket_device | |
| vpn_prop | |
| bluetooth_tmpfs | |
| logwrapper | |
| installd_socket | |
| netd_tmpfs | |
| servicemanager_exec | |
| proc | |
| syscope_app | |
| sensorhubservice_tmpfs | |
| tzic_device | |
| bluetooth_socket | |
| installd | |
| mfsc_tmpfs | |
| at_distributor_tmpfs | |
| mfdp_tmpfs | |
| netmgrd_tmpfs | |
| bootanimation_tmpfs | |
| security_prop | |
| thermald_tmpfs | |
| wifi_device | |
| zygote_socket | |
| bluetoothd_exec | |
| dmdocomo_app_tmpfs | |
| bluetoothd | |
| rfkill_device | |
| rmt_storage_exec | |
| ctl_rildaemon_prop | |
| mpdecision_socket | |
| uhid_device | |
| racoon_socket | |
| container_app_sdcard_file | |
| ks | |
| wallpaper_file | |
| mobicoredaemon | |
| secure_box_app_tmpfs | |
| android_mbim | |
| asec_apk_file | |
| console_device | |
| mm-qcamera-daemon | |
| mobicore_device | |
| audio_prop | |
| dumpsys | |
| mmap_device | |
| qtaguid_proc | |
| boot_prop | |
| container_service_tmpfs | |
| init | |
| qmuxd | |
| ddexe | |
| dttexe | |
| kiesexe | |
| smdexe | |
| kmem_device | |
| immvibed_tmpfs | |
| gps_control | |
| init_tmpfs | |
| kies_prop | |
| surfaceflinger_exec | |
| kmsg_device | |
| samsung_app_tmpfs | |
| vold_prop | |
| audit_log | |
| release_app_tmpfs | |
| syscope_app_tmpfs | |
| oneseg_apk | |
| sysfs_lcd_writable | |
| rild_prop | |
| netif | |
| app_library_file | |
| app_efs_file | |
| klog_device | |
| sec-ril | |
| radio | |
| secure_storage_device | |
| connfwexe_tmpfs | |
| debuggerd_tmpfs | |
| dttexe_exec | |
| oneseg_mw_exec | |
| qosmgr | |
| mfc | |
| powervr_device | |
| bluetoothd_data_file | |
| diag_uart_log_exec | |
| efsks_tmpfs | |
| netd_socket | |
| qseecomd_exec | |
| samsung_app | |
| zygote_tmpfs | |
| mfm | |
| hdmi_socket | |
| mediaserver | |
| mediaserver_exec | |
| debugfs | |
| mfs | |
| pipefs | |
| sockfs | |
| sysfs | |
| drmserver_exec | |
| kiesexe_exec | |
| secure_storage_tmpfs | |
| container_service | |
| mfw | |
| mm-qcamera-daemon_exec | |
| bootanimation_exec | |
| sdcardblk_device | |
| backupblk_device | |
| inotify | |
| vold_tmpfs | |
| padblk_device | |
| ssdblk_device | |
| debuggerd_exec | |
| seclevel_prop | |
| untrusted_app | |
| gps_socket | |
| usb_bus | |
| ueventd | |
| node | |
| adb_device | |
| akm_device | |
| qemud_tmpfs | |
| sec-ril_exec | |
| smd_cntl | |
| drm_efs_file | |
| gsiff_daemon_tmpfs | |
| shared_app | |
| system_data_file | |
| alarm_device | |
| dttexe_tmpfs | |
| dumpstate_device | |
| felica_data_file | |
| oneseg_data_file | |
| smdexe_tmpfs | |
| sysfs_bluetooth_writable | |
| hci_attach_tmpfs | |
| devpts | |
| location-mq | |
| apk_data_file | |
| audio_data_file | |
| bluetooth_efs_file | |
| dm_device | |
| drm_data_file | |
| gps_data_file | |
| media_data_file | |
| nfc_data_file | |
| radio_data_file | |
| tee_data_file | |
| time_data_file | |
| wifi_data_file | |
| browser_app | |
| mpdecision | |
| bluetooth_serial_device | |
| oneseg_mw_tmpfs | |
| userdatablk_device | |
| sensorhubservice_exec | |
| nv_device | |
| ssr_diag_tmpfs | |
| auditd_tmpfs | |
| system_app | |
| fsg_device | |
| qemud_exec | |
| ppp_system_file | |
| system_file | |
| mobexdaemon_tmpfs | |
| mfescand_tmpfs | |
| hci_attach_dev | |
| smd_pkt_loopback | |
| su | |
| dhcp_system_file | |
| qmuxd_exec | |
| qseecomd_tmpfs | |
| racoon_tmpfs | |
| apk_tmp_file | |
| playready | |
| felica | |
| gps_device | |
| mfsc | |
| dumplog_data_file | |
| gpsd | |
| init_shell | |
| device | |
| secure_storage | |
| system_wpa_socket | |
| container_app | |
| container_storage | |
| hidden_file | |
| qrngd_exec | |
| surfaceflinger | |
| felicalock | |
| dmdocomo_app | |
| sysfs_nfc_power_writable | |
| time_daemon_tmpfs | |
| genlock | |
| recoveryblk_device | |
| rild_tmpfs | |
| gpsone_daemon_tmpfs | |
| isolated_app_tmpfs | |
| runas_exec | |
| tspdrv_device | |
| time_daemon | |
| watchdogd | |
| dun_device | |
| mpctl_socket | |
| qcks_tmpfs | |
| platform_media_app_data_file | |
| ATFWD-daemon_tmpfs | |
| persistblk_device | |
| mmb_mw_tmpfs | |
| qtaguid_device | |
| setupwizard_prop | |
| smd_sns_dsps | |
| felicashell_device | |
| wifi_efs_file | |
| shell_exec | |
| ppp | |
| ssr_diag | |
| dumpstate_exec | |
| secstarter | |
| zero_device | |
| modemstblk_device | |
| systemkeys_data_file | |
| dbus_socket | |
| binder_device | |
| property_socket | |
| sdcardd_tmpfs | |
| at_distributor_exec | |
| carrierblk_device | |
| hw_random_device | |
| qmuxd_device | |
| random_device | |
| urandom_device | |
| watchdog_device | |
| persdatablk_device | |
| diag_uart_log_tmpfs | |
| container_app_data_backend | |
| ctl_default_prop | |
| ctl_dumpstate_prop | |
| security_file | |
| smdexe_exec | |
| fsslcmnd | |
| mfescand | |
| shared_app_tmpfs | |
| secure_storage_exec | |
| cnd | |
| mmb_mw_exec | |
| container_apk_file | |
| mmb_apk_tmpfs | |
| vpn_app_tmpfs | |
| default_prop | |
| camera_calibration_file | |
| p2p_supplicant_exec | |
| dumpsys_exec | |
| fsslcmnd_exec | |
| bluetoothd_tmpfs | |
| mm-pp-daemon_tmpfs | |
| racoon | |
| felica_device | |
| keystore_socket | |
| graphics_device | |
| sensorhubservice | |
| ssr_diag_exec | |
| diag_device | |
| serial_device | |
| efs_file | |
| thermald | |
| rild | |
| vold | |
| sdcard_prop | |
| nfcfelica_device | |
| mmb_mw | |
| location-mq_exec | |
| iio_device | |
| ion_device | |
| shell | |
| tombstone_data_file | |
| ATFWD-daemon | |
| qmuxd_tmpfs | |
| location-mq_tmpfs | |
| system_sysscope_file | |
| qseecomd | |
| rmt_storage | |
| cache_backup_file | |
| qosmgr_exec | |
| sec-ril_tmpfs | |
| bootanimation | |
| felica_tmpfs | |
| felicalock_tmpfs | |
| hci_attach | |
| vold_socket | |
| diag_uart_log | |
| block_device | |
| clock_device | |
| zygote_exec | |
| efsks | |
| qcks | |
| radio_prop | |
| sysfs_music_power_writable | |
| loop_device | |
| sysfs_writable | |
| oneseg_mw | |
| container_app_data_file | |
| usb_serial_device | |
| surfaceflinger_tmpfs | |
| samsungpowersoundplay_exec | |
| secmm_prop | |
| mobicoredaemon_exec | |
| nfc_device | |
| mpdecision_exec | |
| p2p_supplicant | |
| bintvoutservice | |
| servicemanager | |
| sysfs_exynos_writable | |
| obb_apk_file | |
| dnsproxyd_socket | |
| sysrq_proc | |
| rild_socket | |
| shell_prop | |
| browser_app_tmpfs | |
| keystore_data_file | |
| ashmem_device | |
| isolated_app | |
| mhl_device | |
| system_fifo | |
| shm | |
| platform_app_tmpfs | |
| bintvoutservice_exec | |
| rpmsg_device | |
| shell_tmpfs | |
| carrier_file | |
| cache_file | |
| mtp_device | |
| mtd_device | |
| camera_prop | |
| log_device | |
| mmcblk0_device | |
| Attributes: 24 | |
| file_type | |
| exec_type | |
| property_type | |
| binderservicedomain | |
| node_type | |
| port_type | |
| container_app_group | |
| dev_type | |
| fs_type | |
| netif_type | |
| data_file_type | |
| mlstrustedobject | |
| unconfineddomain | |
| mlstrustedsubject | |
| sysfs_type | |
| platformappdomain | |
| sdcard_type | |
| bluetoothdomain | |
| container_data_file_type | |
| netdomain | |
| appdomain | |
| untrusted_app_domain | |
| container_secure | |
| domain | |
| Roles: 2 | |
| r | |
| object_r | |
| Users: 1 | |
| u | |
| Conditional Booleans: 14 | |
| android_cts | |
| debugfs | |
| manage_mac | |
| in_qemu | |
| system_app_manage | |
| app_read_logs | |
| manage_selinux | |
| app_internal_sdcard_rw | |
| app_ndk | |
| support_runas | |
| app_bluetooth | |
| app_external_sdcard_rw | |
| app_network | |
| app_vpn | |
| Sensitivities: 1 | |
| s0 | |
| Categories: 1024 | |
| c0 | |
| c1 | |
| c2 | |
| c3 | |
| c4 | |
| c5 | |
| c6 | |
| c7 | |
| c8 | |
| c9 | |
| c10 | |
| c11 | |
| c12 | |
| c13 | |
| c14 | |
| c15 | |
| c16 | |
| c17 | |
| c18 | |
| c19 | |
| c20 | |
| c21 | |
| c22 | |
| c23 | |
| c24 | |
| c25 | |
| c26 | |
| c27 | |
| c28 | |
| c29 | |
| c30 | |
| c31 | |
| c32 | |
| c33 | |
| c34 | |
| c35 | |
| c36 | |
| c37 | |
| c38 | |
| c39 | |
| c40 | |
| c41 | |
| c42 | |
| c43 | |
| c44 | |
| c45 | |
| c46 | |
| c47 | |
| c48 | |
| c49 | |
| c50 | |
| c51 | |
| c52 | |
| c53 | |
| c54 | |
| c55 | |
| c56 | |
| c57 | |
| c58 | |
| c59 | |
| c60 | |
| c61 | |
| c62 | |
| c63 | |
| c64 | |
| c65 | |
| c66 | |
| c67 | |
| c68 | |
| c69 | |
| c70 | |
| c71 | |
| c72 | |
| c73 | |
| c74 | |
| c75 | |
| c76 | |
| c77 | |
| c78 | |
| c79 | |
| c80 | |
| c81 | |
| c82 | |
| c83 | |
| c84 | |
| c85 | |
| c86 | |
| c87 | |
| c88 | |
| c89 | |
| c90 | |
| c91 | |
| c92 | |
| c93 | |
| c94 | |
| c95 | |
| c96 | |
| c97 | |
| c98 | |
| c99 | |
| c100 | |
| c101 | |
| c102 | |
| c103 | |
| c104 | |
| c105 | |
| c106 | |
| c107 | |
| c108 | |
| c109 | |
| c110 | |
| c111 | |
| c112 | |
| c113 | |
| c114 | |
| c115 | |
| c116 | |
| c117 | |
| c118 | |
| c119 | |
| c120 | |
| c121 | |
| c122 | |
| c123 | |
| c124 | |
| c125 | |
| c126 | |
| c127 | |
| c128 | |
| c129 | |
| c130 | |
| c131 | |
| c132 | |
| c133 | |
| c134 | |
| c135 | |
| c136 | |
| c137 | |
| c138 | |
| c139 | |
| c140 | |
| c141 | |
| c142 | |
| c143 | |
| c144 | |
| c145 | |
| c146 | |
| c147 | |
| c148 | |
| c149 | |
| c150 | |
| c151 | |
| c152 | |
| c153 | |
| c154 | |
| c155 | |
| c156 | |
| c157 | |
| c158 | |
| c159 | |
| c160 | |
| c161 | |
| c162 | |
| c163 | |
| c164 | |
| c165 | |
| c166 | |
| c167 | |
| c168 | |
| c169 | |
| c170 | |
| c171 | |
| c172 | |
| c173 | |
| c174 | |
| c175 | |
| c176 | |
| c177 | |
| c178 | |
| c179 | |
| c180 | |
| c181 | |
| c182 | |
| c183 | |
| c184 | |
| c185 | |
| c186 | |
| c187 | |
| c188 | |
| c189 | |
| c190 | |
| c191 | |
| c192 | |
| c193 | |
| c194 | |
| c195 | |
| c196 | |
| c197 | |
| c198 | |
| c199 | |
| c200 | |
| c201 | |
| c202 | |
| c203 | |
| c204 | |
| c205 | |
| c206 | |
| c207 | |
| c208 | |
| c209 | |
| c210 | |
| c211 | |
| c212 | |
| c213 | |
| c214 | |
| c215 | |
| c216 | |
| c217 | |
| c218 | |
| c219 | |
| c220 | |
| c221 | |
| c222 | |
| c223 | |
| c224 | |
| c225 | |
| c226 | |
| c227 | |
| c228 | |
| c229 | |
| c230 | |
| c231 | |
| c232 | |
| c233 | |
| c234 | |
| c235 | |
| c236 | |
| c237 | |
| c238 | |
| c239 | |
| c240 | |
| c241 | |
| c242 | |
| c243 | |
| c244 | |
| c245 | |
| c246 | |
| c247 | |
| c248 | |
| c249 | |
| c250 | |
| c251 | |
| c252 | |
| c253 | |
| c254 | |
| c255 | |
| c256 | |
| c257 | |
| c258 | |
| c259 | |
| c260 | |
| c261 | |
| c262 | |
| c263 | |
| c264 | |
| c265 | |
| c266 | |
| c267 | |
| c268 | |
| c269 | |
| c270 | |
| c271 | |
| c272 | |
| c273 | |
| c274 | |
| c275 | |
| c276 | |
| c277 | |
| c278 | |
| c279 | |
| c280 | |
| c281 | |
| c282 | |
| c283 | |
| c284 | |
| c285 | |
| c286 | |
| c287 | |
| c288 | |
| c289 | |
| c290 | |
| c291 | |
| c292 | |
| c293 | |
| c294 | |
| c295 | |
| c296 | |
| c297 | |
| c298 | |
| c299 | |
| c300 | |
| c301 | |
| c302 | |
| c303 | |
| c304 | |
| c305 | |
| c306 | |
| c307 | |
| c308 | |
| c309 | |
| c310 | |
| c311 | |
| c312 | |
| c313 | |
| c314 | |
| c315 | |
| c316 | |
| c317 | |
| c318 | |
| c319 | |
| c320 | |
| c321 | |
| c322 | |
| c323 | |
| c324 | |
| c325 | |
| c326 | |
| c327 | |
| c328 | |
| c329 | |
| c330 | |
| c331 | |
| c332 | |
| c333 | |
| c334 | |
| c335 | |
| c336 | |
| c337 | |
| c338 | |
| c339 | |
| c340 | |
| c341 | |
| c342 | |
| c343 | |
| c344 | |
| c345 | |
| c346 | |
| c347 | |
| c348 | |
| c349 | |
| c350 | |
| c351 | |
| c352 | |
| c353 | |
| c354 | |
| c355 | |
| c356 | |
| c357 | |
| c358 | |
| c359 | |
| c360 | |
| c361 | |
| c362 | |
| c363 | |
| c364 | |
| c365 | |
| c366 | |
| c367 | |
| c368 | |
| c369 | |
| c370 | |
| c371 | |
| c372 | |
| c373 | |
| c374 | |
| c375 | |
| c376 | |
| c377 | |
| c378 | |
| c379 | |
| c380 | |
| c381 | |
| c382 | |
| c383 | |
| c384 | |
| c385 | |
| c386 | |
| c387 | |
| c388 | |
| c389 | |
| c390 | |
| c391 | |
| c392 | |
| c393 | |
| c394 | |
| c395 | |
| c396 | |
| c397 | |
| c398 | |
| c399 | |
| c400 | |
| c401 | |
| c402 | |
| c403 | |
| c404 | |
| c405 | |
| c406 | |
| c407 | |
| c408 | |
| c409 | |
| c410 | |
| c411 | |
| c412 | |
| c413 | |
| c414 | |
| c415 | |
| c416 | |
| c417 | |
| c418 | |
| c419 | |
| c420 | |
| c421 | |
| c422 | |
| c423 | |
| c424 | |
| c425 | |
| c426 | |
| c427 | |
| c428 | |
| c429 | |
| c430 | |
| c431 | |
| c432 | |
| c433 | |
| c434 | |
| c435 | |
| c436 | |
| c437 | |
| c438 | |
| c439 | |
| c440 | |
| c441 | |
| c442 | |
| c443 | |
| c444 | |
| c445 | |
| c446 | |
| c447 | |
| c448 | |
| c449 | |
| c450 | |
| c451 | |
| c452 | |
| c453 | |
| c454 | |
| c455 | |
| c456 | |
| c457 | |
| c458 | |
| c459 | |
| c460 | |
| c461 | |
| c462 | |
| c463 | |
| c464 | |
| c465 | |
| c466 | |
| c467 | |
| c468 | |
| c469 | |
| c470 | |
| c471 | |
| c472 | |
| c473 | |
| c474 | |
| c475 | |
| c476 | |
| c477 | |
| c478 | |
| c479 | |
| c480 | |
| c481 | |
| c482 | |
| c483 | |
| c484 | |
| c485 | |
| c486 | |
| c487 | |
| c488 | |
| c489 | |
| c490 | |
| c491 | |
| c492 | |
| c493 | |
| c494 | |
| c495 | |
| c496 | |
| c497 | |
| c498 | |
| c499 | |
| c500 | |
| c501 | |
| c502 | |
| c503 | |
| c504 | |
| c505 | |
| c506 | |
| c507 | |
| c508 | |
| c509 | |
| c510 | |
| c511 | |
| c512 | |
| c513 | |
| c514 | |
| c515 | |
| c516 | |
| c517 | |
| c518 | |
| c519 | |
| c520 | |
| c521 | |
| c522 | |
| c523 | |
| c524 | |
| c525 | |
| c526 | |
| c527 | |
| c528 | |
| c529 | |
| c530 | |
| c531 | |
| c532 | |
| c533 | |
| c534 | |
| c535 | |
| c536 | |
| c537 | |
| c538 | |
| c539 | |
| c540 | |
| c541 | |
| c542 | |
| c543 | |
| c544 | |
| c545 | |
| c546 | |
| c547 | |
| c548 | |
| c549 | |
| c550 | |
| c551 | |
| c552 | |
| c553 | |
| c554 | |
| c555 | |
| c556 | |
| c557 | |
| c558 | |
| c559 | |
| c560 | |
| c561 | |
| c562 | |
| c563 | |
| c564 | |
| c565 | |
| c566 | |
| c567 | |
| c568 | |
| c569 | |
| c570 | |
| c571 | |
| c572 | |
| c573 | |
| c574 | |
| c575 | |
| c576 | |
| c577 | |
| c578 | |
| c579 | |
| c580 | |
| c581 | |
| c582 | |
| c583 | |
| c584 | |
| c585 | |
| c586 | |
| c587 | |
| c588 | |
| c589 | |
| c590 | |
| c591 | |
| c592 | |
| c593 | |
| c594 | |
| c595 | |
| c596 | |
| c597 | |
| c598 | |
| c599 | |
| c600 | |
| c601 | |
| c602 | |
| c603 | |
| c604 | |
| c605 | |
| c606 | |
| c607 | |
| c608 | |
| c609 | |
| c610 | |
| c611 | |
| c612 | |
| c613 | |
| c614 | |
| c615 | |
| c616 | |
| c617 | |
| c618 | |
| c619 | |
| c620 | |
| c621 | |
| c622 | |
| c623 | |
| c624 | |
| c625 | |
| c626 | |
| c627 | |
| c628 | |
| c629 | |
| c630 | |
| c631 | |
| c632 | |
| c633 | |
| c634 | |
| c635 | |
| c636 | |
| c637 | |
| c638 | |
| c639 | |
| c640 | |
| c641 | |
| c642 | |
| c643 | |
| c644 | |
| c645 | |
| c646 | |
| c647 | |
| c648 | |
| c649 | |
| c650 | |
| c651 | |
| c652 | |
| c653 | |
| c654 | |
| c655 | |
| c656 | |
| c657 | |
| c658 | |
| c659 | |
| c660 | |
| c661 | |
| c662 | |
| c663 | |
| c664 | |
| c665 | |
| c666 | |
| c667 | |
| c668 | |
| c669 | |
| c670 | |
| c671 | |
| c672 | |
| c673 | |
| c674 | |
| c675 | |
| c676 | |
| c677 | |
| c678 | |
| c679 | |
| c680 | |
| c681 | |
| c682 | |
| c683 | |
| c684 | |
| c685 | |
| c686 | |
| c687 | |
| c688 | |
| c689 | |
| c690 | |
| c691 | |
| c692 | |
| c693 | |
| c694 | |
| c695 | |
| c696 | |
| c697 | |
| c698 | |
| c699 | |
| c700 | |
| c701 | |
| c702 | |
| c703 | |
| c704 | |
| c705 | |
| c706 | |
| c707 | |
| c708 | |
| c709 | |
| c710 | |
| c711 | |
| c712 | |
| c713 | |
| c714 | |
| c715 | |
| c716 | |
| c717 | |
| c718 | |
| c719 | |
| c720 | |
| c721 | |
| c722 | |
| c723 | |
| c724 | |
| c725 | |
| c726 | |
| c727 | |
| c728 | |
| c729 | |
| c730 | |
| c731 | |
| c732 | |
| c733 | |
| c734 | |
| c735 | |
| c736 | |
| c737 | |
| c738 | |
| c739 | |
| c740 | |
| c741 | |
| c742 | |
| c743 | |
| c744 | |
| c745 | |
| c746 | |
| c747 | |
| c748 | |
| c749 | |
| c750 | |
| c751 | |
| c752 | |
| c753 | |
| c754 | |
| c755 | |
| c756 | |
| c757 | |
| c758 | |
| c759 | |
| c760 | |
| c761 | |
| c762 | |
| c763 | |
| c764 | |
| c765 | |
| c766 | |
| c767 | |
| c768 | |
| c769 | |
| c770 | |
| c771 | |
| c772 | |
| c773 | |
| c774 | |
| c775 | |
| c776 | |
| c777 | |
| c778 | |
| c779 | |
| c780 | |
| c781 | |
| c782 | |
| c783 | |
| c784 | |
| c785 | |
| c786 | |
| c787 | |
| c788 | |
| c789 | |
| c790 | |
| c791 | |
| c792 | |
| c793 | |
| c794 | |
| c795 | |
| c796 | |
| c797 | |
| c798 | |
| c799 | |
| c800 | |
| c801 | |
| c802 | |
| c803 | |
| c804 | |
| c805 | |
| c806 | |
| c807 | |
| c808 | |
| c809 | |
| c810 | |
| c811 | |
| c812 | |
| c813 | |
| c814 | |
| c815 | |
| c816 | |
| c817 | |
| c818 | |
| c819 | |
| c820 | |
| c821 | |
| c822 | |
| c823 | |
| c824 | |
| c825 | |
| c826 | |
| c827 | |
| c828 | |
| c829 | |
| c830 | |
| c831 | |
| c832 | |
| c833 | |
| c834 | |
| c835 | |
| c836 | |
| c837 | |
| c838 | |
| c839 | |
| c840 | |
| c841 | |
| c842 | |
| c843 | |
| c844 | |
| c845 | |
| c846 | |
| c847 | |
| c848 | |
| c849 | |
| c850 | |
| c851 | |
| c852 | |
| c853 | |
| c854 | |
| c855 | |
| c856 | |
| c857 | |
| c858 | |
| c859 | |
| c860 | |
| c861 | |
| c862 | |
| c863 | |
| c864 | |
| c865 | |
| c866 | |
| c867 | |
| c868 | |
| c869 | |
| c870 | |
| c871 | |
| c872 | |
| c873 | |
| c874 | |
| c875 | |
| c876 | |
| c877 | |
| c878 | |
| c879 | |
| c880 | |
| c881 | |
| c882 | |
| c883 | |
| c884 | |
| c885 | |
| c886 | |
| c887 | |
| c888 | |
| c889 | |
| c890 | |
| c891 | |
| c892 | |
| c893 | |
| c894 | |
| c895 | |
| c896 | |
| c897 | |
| c898 | |
| c899 | |
| c900 | |
| c901 | |
| c902 | |
| c903 | |
| c904 | |
| c905 | |
| c906 | |
| c907 | |
| c908 | |
| c909 | |
| c910 | |
| c911 | |
| c912 | |
| c913 | |
| c914 | |
| c915 | |
| c916 | |
| c917 | |
| c918 | |
| c919 | |
| c920 | |
| c921 | |
| c922 | |
| c923 | |
| c924 | |
| c925 | |
| c926 | |
| c927 | |
| c928 | |
| c929 | |
| c930 | |
| c931 | |
| c932 | |
| c933 | |
| c934 | |
| c935 | |
| c936 | |
| c937 | |
| c938 | |
| c939 | |
| c940 | |
| c941 | |
| c942 | |
| c943 | |
| c944 | |
| c945 | |
| c946 | |
| c947 | |
| c948 | |
| c949 | |
| c950 | |
| c951 | |
| c952 | |
| c953 | |
| c954 | |
| c955 | |
| c956 | |
| c957 | |
| c958 | |
| c959 | |
| c960 | |
| c961 | |
| c962 | |
| c963 | |
| c964 | |
| c965 | |
| c966 | |
| c967 | |
| c968 | |
| c969 | |
| c970 | |
| c971 | |
| c972 | |
| c973 | |
| c974 | |
| c975 | |
| c976 | |
| c977 | |
| c978 | |
| c979 | |
| c980 | |
| c981 | |
| c982 | |
| c983 | |
| c984 | |
| c985 | |
| c986 | |
| c987 | |
| c988 | |
| c989 | |
| c990 | |
| c991 | |
| c992 | |
| c993 | |
| c994 | |
| c995 | |
| c996 | |
| c997 | |
| c998 | |
| c999 | |
| c1000 | |
| c1001 | |
| c1002 | |
| c1003 | |
| c1004 | |
| c1005 | |
| c1006 | |
| c1007 | |
| c1008 | |
| c1009 | |
| c1010 | |
| c1011 | |
| c1012 | |
| c1013 | |
| c1014 | |
| c1015 | |
| c1016 | |
| c1017 | |
| c1018 | |
| c1019 | |
| c1020 | |
| c1021 | |
| c1022 | |
| c1023 | |
| Fs_use: 14 | |
| fs_use_trans mqueue u:object_r:mqueue:s0 | |
| fs_use_trans shm u:object_r:shm:s0 | |
| fs_use_trans devtmpfs u:object_r:device:s0 | |
| fs_use_trans tmpfs u:object_r:tmpfs:s0 | |
| fs_use_trans devpts u:object_r:devpts:s0 | |
| fs_use_task sockfs u:object_r:sockfs:s0 | |
| fs_use_task pipefs u:object_r:pipefs:s0 | |
| fs_use_xattr btrfs u:object_r:labeledfs:s0 | |
| fs_use_xattr xfs u:object_r:labeledfs:s0 | |
| fs_use_xattr ext4 u:object_r:labeledfs:s0 | |
| fs_use_xattr ext3 u:object_r:labeledfs:s0 | |
| fs_use_xattr ext2 u:object_r:labeledfs:s0 | |
| fs_use_xattr jffs2 u:object_r:labeledfs:s0 | |
| fs_use_xattr yaffs2 u:object_r:labeledfs:s0 | |
| Genfscon: 16 | |
| genfscon cgroup / u:object_r:cgroup:s0 | |
| genfscon debugfs / u:object_r:debugfs:s0 | |
| genfscon ecryptfs / u:object_r:sdcard_external:s0 | |
| genfscon exfat / u:object_r:sdcard_external:s0 | |
| genfscon fuse / u:object_r:sdcard_internal:s0 | |
| genfscon inotifyfs / u:object_r:inotify:s0 | |
| genfscon proc /net/xt_qtaguid/ctrl u:object_r:qtaguid_proc:s0 | |
| genfscon proc /sysrq-trigger u:object_r:sysrq_proc:s0 | |
| genfscon proc / u:object_r:proc:s0 | |
| genfscon rootfs / u:object_r:rootfs:s0 | |
| genfscon sdcardfs / u:object_r:sdcard_internal:s0 | |
| genfscon securityfs / u:object_r:securityfs:s0 | |
| genfscon selinuxfs / u:object_r:selinuxfs:s0 | |
| genfscon sysfs / u:object_r:sysfs:s0 | |
| genfscon vfat /firmware/ u:object_r:firmware:s0 | |
| genfscon vfat / u:object_r:sdcard_external:s0 | |
| Netifcon: 0 | |
| Nodecon: 0 | |
| Portcon: 0 | |
| Initial SID: 27 | |
| devnull | |
| scmp_packet | |
| policy | |
| kmod | |
| sysctl_dev | |
| sysctl_vm | |
| sysctl_net_unix | |
| sysctl_net | |
| sysctl_kernel | |
| sysctl_fs | |
| sysctl | |
| sysctl_modprobe | |
| tcp_socket | |
| icmp_socket | |
| igmp_packet | |
| node | |
| netmsg | |
| netif | |
| port | |
| any_socket | |
| init | |
| file_labels | |
| file | |
| fs | |
| unlabeled | |
| security | |
| kernel | |
| Permissive Types: 0 | |
| Policy Capabilities: 2 | |
| network_peer_controls | |
| open_perms | |
| Constraints: 63 | |
| mlsconstrain { netlink_audit_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { tcp_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { msgq } { write unix_write } | |
| ( l1 l2 domby t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { msgq } { getattr read associate unix_read } | |
| ( l1 l2 dom t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { msgq } { create destroy } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { dir } { write setattr rename add_name remove_name reparent rmdir } | |
| ( t2 app_data_file == l1 l2 domby || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { dir } { read getattr search } | |
| ( t2 app_data_file == l1 l2 dom || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { dir } { setattr rename add_name remove_name reparent search rmdir open } | |
| ( t2 app_data_file != l1 l2 == || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { dir } { create relabelfrom relabelto } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { blk_file } { write setattr append unlink link rename } | |
| ( t2 app_data_file == l1 l2 domby || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { blk_file } { read getattr execute } | |
| ( t2 app_data_file == l1 l2 dom || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { blk_file } { create relabelfrom relabelto } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { chr_file } { write setattr append unlink link rename } | |
| ( t2 app_data_file == l1 l2 domby || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { chr_file } { read getattr execute } | |
| ( t2 app_data_file == l1 l2 dom || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { chr_file } { create relabelfrom relabelto } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { ipc } { write unix_write } | |
| ( l1 l2 domby t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { ipc } { getattr read associate unix_read } | |
| ( l1 l2 dom t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { ipc } { create destroy } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { lnk_file } { write setattr append unlink link rename } | |
| ( t2 app_data_file == l1 l2 domby || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { lnk_file } { read getattr execute } | |
| ( t2 app_data_file == l1 l2 dom || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { lnk_file } { setattr unlink link rename open } | |
| ( t2 app_data_file != l1 l2 == || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { lnk_file } { create relabelfrom relabelto } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { process } { sigkill sigstop signal ptrace setsched setpgid setcap share setrlimit } | |
| ( l1 l2 domby t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { process } { ptrace getsched getsession getpgid getcap share getattr } | |
| ( l1 l2 dom t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { process } { transition dyntransition } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { fifo_file } { write setattr append unlink link rename } | |
| ( l1 l2 domby t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || t2 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { fifo_file } { read getattr } | |
| ( l1 l2 dom t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || t2 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { fifo_file } { create relabelfrom relabelto } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { file } { write setattr append unlink link rename } | |
| ( t2 app_data_file == l1 l2 domby || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { file } { read getattr execute } | |
| ( t2 app_data_file == l1 l2 dom || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { file } { setattr unlink link rename open } | |
| ( t2 app_data_file != l1 l2 == || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { file } { create relabelfrom relabelto } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { netlink_nflog_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { netlink_tcpdiag_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { unix_stream_socket } { connectto } | |
| ( l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { unix_stream_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { netlink_route_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { shm } { write unix_write } | |
| ( l1 l2 domby t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { shm } { getattr read associate unix_read } | |
| ( l1 l2 dom t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { shm } { create destroy } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { netlink_selinux_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { netlink_ip6fw_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { netlink_firewall_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { sock_file } { write setattr append unlink link rename } | |
| ( t2 app_data_file == l1 l2 domby || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { sock_file } { read getattr execute } | |
| ( t2 app_data_file == l1 l2 dom || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { system_library_file cgroup backup_data_file anr_data_file platform_app_data_file securityfs kgsl_device sdcard_external sdcard_internal tun_device null_device ptmx_device usbaccessory_device wallpaper_file qtaguid_proc sysfs_lcd_writable app_library_file app_efs_file powervr_device debugfs sysfs inotify system_data_file alarm_device sysfs_bluetooth_writable devpts media_data_file nv_device system_file apk_tmp_file dumplog_data_file sysfs_nfc_power_writable genlock binder_device container_app_data_backend ion_device cache_backup_file sysfs_music_power_writable sysfs_writable sysfs_exynos_writable obb_apk_file dnsproxyd_socket ashmem_device system_fifo cache_file mtp_device log_device } == || ); | |
| mlsconstrain { sock_file } { setattr unlink link rename open } | |
| ( t2 app_data_file != l1 l2 == || t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { sock_file } { create relabelfrom relabelto } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
| mlsconstrain { unix_dgram_socket } { sendto } | |
| ( l1 l2 domby t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || t2 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { unix_dgram_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { netlink_kobject_uevent_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { netlink_xfrm_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { netlink_dnrt_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { key_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { packet_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { tun_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { udp_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { appletalk_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { rawip_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { netlink_socket } { create relabelfrom relabelto } | |
| ( h1 h2 == l1 l2 == && t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { sem } { write unix_write } | |
| ( l1 l2 domby t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { sem } { getattr read associate unix_read } | |
| ( l1 l2 dom t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || ); | |
| mlsconstrain { sem } { create destroy } | |
| ( l2 h2 == l1 l2 == t1 { platform_app media_app netd zygote debuggerd bugreport kernel system drmserver adbd dumpstate release_app runas mmb_apk syscope_app installd dumpsys init oneseg_apk radio samsung_app mediaserver shared_app browser_app system_app su init_shell surfaceflinger racoon vold shell isolated_app } == || && ); | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment