blob: a3f5a1e4393045aa7525bb4a1c776844b8f69e07 [file] [log] [blame]
Nick Kralevich26c6d722016-11-11 02:43:08 -08001type audio_prop, property_type, core_property_type;
Nick Kralevichbb9a3882016-12-13 19:50:36 -08002type boottime_prop, property_type;
Alex Klyubin6e4508e2016-12-27 18:05:46 -08003type bluetooth_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -08004type config_prop, property_type, core_property_type;
5type cppreopt_prop, property_type, core_property_type;
Nick Kralevichf01453a2015-12-09 08:47:02 -08006type ctl_bootanim_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -08007type ctl_bugreport_prop, property_type;
8type ctl_console_prop, property_type;
Nick Kralevichf01453a2015-12-09 08:47:02 -08009type ctl_default_prop, property_type;
Nick Kralevichf01453a2015-12-09 08:47:02 -080010type ctl_dumpstate_prop, property_type;
11type ctl_fuse_prop, property_type;
12type ctl_mdnsd_prop, property_type;
13type ctl_rildaemon_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -080014type dalvik_prop, property_type, core_property_type;
15type debuggerd_prop, property_type, core_property_type;
16type debug_prop, property_type, core_property_type;
17type default_prop, property_type, core_property_type;
18type device_logging_prop, property_type;
19type dhcp_prop, property_type, core_property_type;
20type dumpstate_options_prop, property_type;
21type dumpstate_prop, property_type, core_property_type;
22type ffs_prop, property_type, core_property_type;
23type fingerprint_prop, property_type, core_property_type;
Alex Klyubin062236a2016-12-27 14:05:46 -080024type firstboot_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -080025type hwservicemanager_prop, property_type;
Nick Kralevich5a570a42015-12-08 14:45:50 -080026type logd_prop, property_type, core_property_type;
Mark Salyzyn68d67a02016-06-06 12:18:46 -070027type logpersistd_logging_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -080028type log_prop, property_type, log_property_type;
29type log_tag_prop, property_type, log_property_type;
Mark Salyzynd1435602016-02-04 10:55:43 -080030type mmc_prop, property_type;
Nick Kralevich4e404292017-02-09 16:08:11 -080031type net_dns_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -080032type net_radio_prop, property_type, core_property_type;
Nick Kralevich5a570a42015-12-08 14:45:50 -080033type nfc_prop, property_type, core_property_type;
Jason Monk0e1cbf52016-11-09 15:19:05 -050034type overlay_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -080035type pan_result_prop, property_type, core_property_type;
36type persist_debug_prop, property_type, core_property_type;
Keun-young Parkf67c3462017-02-28 19:21:31 -080037type persistent_properties_ready_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -080038type powerctl_prop, property_type, core_property_type;
39type radio_prop, property_type, core_property_type;
40type restorecon_prop, property_type, core_property_type;
41type safemode_prop, property_type;
Alex Klyubin20151072016-12-20 15:31:37 -080042type serialno_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -080043type shell_prop, property_type, core_property_type;
44type system_prop, property_type, core_property_type;
45type system_radio_prop, property_type, core_property_type;
Steven Morelandcd597cd2017-01-13 11:37:38 -080046type hal_binderization_prop, property_type;
Nick Kralevich26c6d722016-11-11 02:43:08 -080047type vold_prop, property_type, core_property_type;
48type wifi_log_prop, property_type, log_property_type;
49type wifi_prop, property_type;
Tom Cherry949d7cb2015-12-01 16:58:27 -080050
51allow property_type tmpfs:filesystem associate;
Nick Kralevichd310df22016-12-13 15:59:33 -080052
53###
54### Neverallow rules
55###
56
57# core_property_type should not be used for new properties or
58# device specific properties. Properties with this attribute
59# are readable to everyone, which is overly broad and should
60# be avoided.
61# New properties should have appropriate read / write access
62# control rules written.
63
64neverallow * {
65 core_property_type
66 -audio_prop
Nick Kralevichd310df22016-12-13 15:59:33 -080067 -config_prop
68 -cppreopt_prop
69 -dalvik_prop
70 -debuggerd_prop
71 -debug_prop
72 -default_prop
73 -dhcp_prop
74 -dumpstate_prop
75 -ffs_prop
76 -fingerprint_prop
77 -logd_prop
78 -net_radio_prop
79 -nfc_prop
80 -pan_result_prop
81 -persist_debug_prop
82 -powerctl_prop
83 -radio_prop
84 -restorecon_prop
85 -shell_prop
86 -system_prop
87 -system_radio_prop
88 -vold_prop
89}:file no_rw_file_perms;