device/rockchip/common/sepolicy/vendor/init-insmod-sh.te

type init-insmod-sh, domain;
type init-insmod-sh_exec, exec_type, vendor_file_type, file_type;

init_daemon_domain(init-insmod-sh)

allow init-insmod-sh vendor_shell_exec:file rx_file_perms;
allow init-insmod-sh vendor_toolbox_exec:file rx_file_perms;

# Set the sys.touch.modules.ready property

# Allow insmod
allow init-insmod-sh self:capability sys_module;
allow init-insmod-sh system_file:system module_load;
allow init-insmod-sh vendor_file:system module_load;
allow init-insmod-sh tmpfs:chr_file { read write open ioctl };

set_prop(init-insmod-sh, vendor_system_public_prop)
android 13 from xiaosuan 2025-08-25 08:28:21 +08:00			`type init-insmod-sh, domain;`
			`type init-insmod-sh_exec, exec_type, vendor_file_type, file_type;`

			`init_daemon_domain(init-insmod-sh)`

			`allow init-insmod-sh vendor_shell_exec:file rx_file_perms;`
			`allow init-insmod-sh vendor_toolbox_exec:file rx_file_perms;`

			`# Set the sys.touch.modules.ready property`

			`# Allow insmod`
			`allow init-insmod-sh self:capability sys_module;`
			`allow init-insmod-sh system_file:system module_load;`
			`allow init-insmod-sh vendor_file:system module_load;`
			`allow init-insmod-sh tmpfs:chr_file { read write open ioctl };`

			`set_prop(init-insmod-sh, vendor_system_public_prop)`