Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <kernel>
- use_profile 3
- file execute /init exec.realpath="/init" exec.argv[0]="/init"
- file execute @PER_EXEC_FILE
- use_group 0
- <kernel> //./app-user
- use_profile 3
- file execute @PER_EXEC_FILE task.euid=10000-4294967295 task.egid=10000-4294967295
- use_group 0
- <kernel> //./fclock-user
- use_profile 3
- file execute @PER_EXEC_FILE task.euid=4001 task.egid=4001
- file read /dev/felica_cfg
- file write /dev/felica_cen
- file write /dev/felica_cfg
- use_group 0
- <kernel> //./felica-user
- use_profile 3
- file execute @PER_EXEC_FILE task.euid=4000 task.egid=4000
- file read /dev/felica
- file read /system/app/MobileFeliCaClient.odex
- file write /dev/felica
- file write /dev/felica_pon
- use_group 0
- <kernel> //./felicaCTL-user
- use_profile 3
- file execute @PER_EXEC_FILE task.euid=4003 task.egid=4003
- file read /system/app/FeliCaControl.apk
- use_group 0
- <kernel> //./felicaDT-user
- use_profile 3
- file execute @PER_EXEC_FILE task.euid=4002 task.egid=4002
- file read /dev/udlfomf
- file read /system/app/felicaDT.apk
- file read /system/app/felicaDT.odex
- file write /dev/udlfomf
- use_group 0
- <kernel> //./iddb-user
- use_profile 3
- file execute @PER_EXEC_FILE task.euid=4500 task.egid=4500
- file read /system/lib/libNormalIDDB_jni.so
- file read /system/lib/libvanfc.so
- use_group 0
- <kernel> //./other-user
- use_profile 3
- file execute @PER_EXEC_FILE task.euid=1-999 task.egid=1-999
- file execute @PER_EXEC_FILE task.euid=1001-3999 task.egid=1001-3999
- file execute @PER_EXEC_FILE task.euid=4004-4299 task.egid=4004-4299
- file execute @PER_EXEC_FILE task.euid=4301-4499 task.egid=4301-4499
- file execute @PER_EXEC_FILE task.euid=4501-9999 task.egid=4501-9999
- use_group 0
- <kernel> //./system-user
- use_profile 3
- capability use_kernel_module
- file execute @PER_EXEC_FILE task.euid=1000 task.egid=1000
- file read /system/lib/libSafetyBox_jni.so
- file read /system/lib/libSecureIDDB_jni.so
- file read /system/lib/libvanfc.so
- file read /system/app/MobileFeliCaClient.odex
- file read /system/app/felicaDT.apk
- file read /system/app/felicaDT.odex
- file read /system/app/FeliCaControl.apk
- file write /dev/felica_rws
- use_group 0
- <kernel> //./taginv-user
- use_profile 3
- file execute @PER_EXEC_FILE task.euid=4300 task.egid=4300
- file read /system/lib/libSecureIDDB_jni.so
- file read /system/lib/libvanfc.so
- use_group 0
- <kernel> /init
- use_profile 3
- capability use_kernel_module
- file chgrp /mnt/.private2/ 0
- file chmod /system/ 0755
- file chown /mnt/.private2/ 0
- file execute /sbin/adbd exec.realpath="/sbin/adbd" exec.argv[0]="/sbin/adbd"
- file execute /system/bin/anpand exec.realpath="/system/bin/anpand" exec.argv[0]="/system/bin/anpand"
- file execute /system/bin/app_process exec.realpath="/system/bin/app_process" exec.argv[0]="/system/bin/app_process"
- file execute /system/bin/debuggerd exec.realpath="/system/bin/debuggerd" exec.argv[0]="/system/bin/debuggerd"
- file execute /system/bin/felicamdl exec.realpath="/system/bin/felicamdl" exec.argv[0]="/system/bin/felicamdl"
- file execute /system/bin/installd exec.realpath="/system/bin/installd" exec.argv[0]="/system/bin/installd"
- file execute /system/bin/rild exec.realpath="/system/bin/rild" exec.argv[0]="/system/bin/rild"
- file execute /system/bin/rmt_storage exec.realpath="/system/bin/rmt_storage" exec.argv[0]="/system/bin/rmt_storage"
- file execute /system/bin/sh exec.realpath="/system/bin/mksh" exec.argv[0]="/system/bin/sh"
- file execute /system/bin/vcrypt_setup.sh exec.realpath="/system/bin/vcrypt_setup.sh" exec.argv[0]="/system/bin/vcrypt_setup.sh"
- file execute /system/bin/vcryptd exec.realpath="/system/bin/vcryptd" exec.argv[0]="/system/bin/vcryptd"
- file execute /system/bin/vold exec.realpath="/system/bin/vold" exec.argv[0]="/system/bin/vold"
- file execute /system/bin/vssd exec.realpath="/system/bin/vssd" exec.argv[0]="/system/bin/vssd"
- file execute @PER_EXEC_FILE
- file mkdir /tmp/ 0755
- file mkdir /mnt/.private2/ 0777
- file mount /dev/block/mmcblk0p1 /firmware/ vfat 0x1
- file mount /dev/block/mmcblk0p12 /system/ ext4 0x0
- file mount /dev/block/mmcblk0p12 /system/ --remount 0x1
- file mount /dev/block/mmcblk0p13 /data/ ext4 0x6
- file mount /dev/block/mmcblk0p14 /persist/ ext4 0x6
- file mount /dev/block/mmcblk0p15 /cache/ ext4 0x6
- file mount /dev/block/mmcblk0p16 /tombstones/ ext4 0x6
- file mount /dev/block/mmcblk0p24 /block1/ ext4 0x6
- file mount /dev/block/mmcblk0p25 /log3/ ext4 0x6
- file mount /dev/block/mmcblk0p30 /log/ ext4 0x6
- file mount /dev/block/mmcblk0p31 /fotadelta/ ext4 0x6
- file mount devpts /dev/pts/ devpts 0x0
- file mount none /acct/ cgroup 0x0
- file mount none /dev/cpuctl/ cgroup 0x0
- file mount proc /proc/ proc 0x0
- file mount rootfs / --remount 0x1
- file mount sysfs /sys/ sysfs 0x0
- file mount tmpfs /data/ tmpfs 0x406
- file mount tmpfs /dev/ tmpfs 0x2
- file mount tmpfs /mnt/asec/ tmpfs 0x0
- file mount tmpfs /mnt/obb/ tmpfs 0x0
- file mount tmpfs /tmp/ tmpfs 0x0
- file unmount /data/
- file read /dev/block/mmcblk0p13
- file read /dev/block/mmcblk0p28
- file read /dev/block/mmcblk0p32
- file read /system/app/FeliCaControl.apk
- file symlink /.private2 symlink.target="/mnt/.private2"
- file symlink /d symlink.target="/sys/kernel/debug"
- file symlink /etc symlink.target="/system/etc"
- file symlink /private symlink.target="/mnt/private"
- file symlink /sdcard symlink.target="/mnt/sdcard"
- file symlink /vendor symlink.target="/system/vendor"
- file write /dev/block/mmcblk0p13
- file write /dev/block/mmcblk0p32
- use_group 0
- <kernel> /init /sbin/adbd
- use_profile 3
- file execute /system/bin/sh exec.realpath="/system/bin/mksh" exec.argv[0]="/system/bin/sh" task.euid=2000
- file execute @PER_EXEC_FILE task.euid=2000
- use_group 0
- <kernel> /init /sbin/adbd /system/bin/sh
- use_profile 3
- file execute /system/bin/app_process exec.realpath="/system/bin/app_process" exec.argv[0]="/system/bin/app_process" task.euid=2000
- file execute @PER_EXEC_FILE task.euid=2000
- use_group 0
- <kernel> /init /system/bin/anpand
- use_profile 3
- file execute @PER_EXEC_FILE
- file read /dev/block/mmcblk0p28
- file read /dev/block/mmcblk0p32
- file read /dev/mem
- file write /dev/block/mmcblk0p32
- file write /dev/mem
- use_group 0
- <kernel> /init /system/bin/installd
- use_profile 3
- file read /system/app/felicaDT.apk
- file read /system/app/FeliCaControl.apk
- file execute @PER_EXEC_FILE
- use_group 0
- <kernel> /init /system/bin/rild
- use_profile 3
- file execute @PER_EXEC_FILE
- use_group 0
- <kernel> /init /system/bin/rmt_storage
- use_profile 3
- file execute @PER_EXEC_FILE
- file read /dev/block/mmcblk0
- file read /dev/block/mmcblk0p10
- file read /dev/block/mmcblk0p11
- file read /dev/block/mmcblk0p19
- file read /dev/block/mmcblk0p20
- file read /dev/mem
- file write /dev/block/mmcblk0p10
- file write /dev/block/mmcblk0p11
- file write /dev/block/mmcblk0p19
- file write /dev/block/mmcblk0p20
- file write /dev/mem
- use_group 0
- <kernel> /init /system/bin/sh
- use_profile 3
- file execute @PER_EXEC_FILE
- file symlink /system/etc/firmware/\*
- use_group 0
- <kernel> /init /system/bin/vcrypt_setup.sh
- use_profile 3
- file execute /system/bin/mount_crypt exec.realpath="/system/bin/mount_crypt" exec.argv[0]="/system/bin/mount_crypt"
- file execute @PER_EXEC_FILE
- use_group 0
- <kernel> /init /system/bin/vcrypt_setup.sh /system/bin/mount_crypt
- use_profile 3
- file execute /system/bin/cryptsetup.backend exec.realpath="/system/bin/cryptsetup.backend" exec.argv[0]="cryptsetup.backend"
- file execute /system/bin/genpassphrase exec.realpath="/system/bin/genpassphrase" exec.argv[0]="genpassphrase"
- file execute @PER_EXEC_FILE
- file mount /dev/mapper/private2 /mnt/.private2/ ext4 0x0
- file read /system/lib/libvcrypt_be.so
- file unmount /mnt/.private2/
- use_group 0
- <kernel> /init /system/bin/vcrypt_setup.sh /system/bin/mount_crypt /system/bin/cryptsetup.backend
- use_profile 3
- file append /mnt/.private2/\*
- file append /mnt/.private2/\{\*\}/\*
- file chgrp /mnt/.private2/ @COMMON_ID
- file chgrp /mnt/.private2/\* @COMMON_ID
- file chgrp /mnt/.private2/\{\*\}/ @COMMON_ID
- file chgrp /mnt/.private2/\{\*\}/\* @COMMON_ID
- file chmod /mnt/.private2/ @COMMON_MODE
- file chmod /mnt/.private2/\* @COMMON_MODE
- file chmod /mnt/.private2/\{\*\}/ @COMMON_MODE
- file chmod /mnt/.private2/\{\*\}/\* @COMMON_MODE
- file chown /mnt/.private2/ @COMMON_ID
- file chown /mnt/.private2/\* @COMMON_ID
- file chown /mnt/.private2/\{\*\}/ @COMMON_ID
- file chown /mnt/.private2/\{\*\}/\* @COMMON_ID
- file create /mnt/.private2/\* @COMMON_MODE
- file create /mnt/.private2/\{\*\}/\* @COMMON_MODE
- file execute @PER_EXEC_FILE
- file link /mnt/.private2/\* /mnt/.private2/\*
- file link /mnt/.private2/\* /mnt/.private2/\{\*\}/\*
- file link /mnt/.private2/\{\*\}/\* /mnt/.private2/\*
- file link /mnt/.private2/\{\*\}/\* /mnt/.private2/\{\*\}/\*
- file link /mnt/.private2/\{\*\}/ /mnt/.private2/\{\*\}/
- file mkdir /mnt/.private2/ @COMMON_MODE
- file mkdir /mnt/.private2/\{\*\}/ @COMMON_MODE
- file read /dev/block/mmcblk0p23
- file read /mnt/.private2/
- file read /mnt/.private2/\*
- file read /mnt/.private2/\{\*\}/
- file read /mnt/.private2/\{\*\}/\*
- file read proc:/nk/vcrypt-be
- file rename /mnt/.private2/\* /mnt/.private2/\*
- file rename /mnt/.private2/\* /mnt/.private2/\{\*\}/\*
- file rename /mnt/.private2/\{\*\}/ /mnt/.private2/\{\*\}/
- file rename /mnt/.private2/\{\*\}/\* /mnt/.private2/\*
- file rename /mnt/.private2/\{\*\}/\* /mnt/.private2/\{\*\}/\*
- file rmdir /mnt/.private2/
- file rmdir /mnt/.private2/\{\*\}/
- file symlink /mnt/.private2/\*
- file symlink /mnt/.private2/\{\*\}/\*
- file truncate /mnt/.private2/\*
- file truncate /mnt/.private2/\{\*\}/\*
- file unlink /mnt/.private2/
- file unlink /mnt/.private2/\*
- file unlink /mnt/.private2/\{\*\}/
- file unlink /mnt/.private2/\{\*\}/\*
- file write /dev/block/mmcblk0p23
- file write /mnt/.private2/\*
- file write /mnt/.private2/\{\*\}/\*
- file write proc:/nk/vcrypt-be
- use_group 0
- <kernel> /init /system/bin/vcryptd
- use_profile 3
- file execute @PER_EXEC_FILE
- file mount /dev/mapper/private1 /mnt/private/ ext4 0x0
- file read /dev/block/mmcblk0p22
- file read /dev/block/mmcblk0p28
- file read /dev/block/mmcblk0p32
- file unmount /mnt/private/
- file write /dev/block/mmcblk0p22
- file write /dev/block/mmcblk0p32
- use_group 0
- <kernel> /init /system/bin/vold
- use_profile 3
- file execute @PER_EXEC_FILE
- file mount /dev/block/dm-\$ /mnt/asec/\*/ vfat 0x87
- file mount /dev/block/dm-\$ /mnt/asec/\*/ texfat 0x87
- file mount /dev/block/dm-\$ /mnt/asec/\*/ vfat 0x8E
- file mount /dev/block/dm-\$ /mnt/asec/\*/ texfat 0x8E
- file mount /dev/block/dm-\$ /data/ ext4 0x6
- file mount /dev/block/dm-\$ /data/tmp_mnt/ ext4 0x1
- file mount /dev/block/loop\$ /mnt/asec/\*/ --remount 0x87
- file mount /dev/block/loop\$ /mnt/obb/\*/ vfat 0x87
- file mount /dev/block/loop\$ /mnt/obb/\*/ texfat 0x87
- file mount /dev/block/vold/\*:\* /mnt/secure/staging/ vfat 0x8E
- file mount /dev/block/vold/\*:\* /mnt/secure/staging/ texfat 0x8E
- file mount /mnt/sdcard/ /mnt/secure/staging/ --move 0x0
- file mount /mnt/secure/staging/ /mnt/sdcard/ --move 0x0
- file mount /mnt/secure/staging/.android_secure/ /mnt/secure/asec/ --bind 0x0
- file mount tmpfs /data/ tmpfs 0x406
- file mount tmpfs /mnt/secure/staging/.android_secure/ tmpfs 0x1
- file unmount /data/
- file unmount /data/tmp_mnt/
- file unmount /mnt/asec/\*/
- file unmount /mnt/obb/\*/
- file unmount /mnt/sdcard/
- file unmount /mnt/secure/asec/
- file unmount /mnt/secure/staging/
- file unmount /mnt/secure/staging/.android_secure/
- file read /dev/block/mmcblk0p13
- file write /dev/block/mmcblk0p13
- use_group 0
- <kernel> /init /system/bin/vssd
- use_profile 3
- file append /mnt/.private2/\*
- file append /mnt/.private2/\{\*\}/\*
- file chgrp /mnt/.private2/ @COMMON_ID
- file chgrp /mnt/.private2/\* @COMMON_ID
- file chgrp /mnt/.private2/\{\*\}/ @COMMON_ID
- file chgrp /mnt/.private2/\{\*\}/\* @COMMON_ID
- file chmod /mnt/.private2/ @COMMON_MODE
- file chmod /mnt/.private2/\* @COMMON_MODE
- file chmod /mnt/.private2/\{\*\}/ @COMMON_MODE
- file chmod /mnt/.private2/\{\*\}/\* @COMMON_MODE
- file chown /mnt/.private2/ @COMMON_ID
- file chown /mnt/.private2/\* @COMMON_ID
- file chown /mnt/.private2/\{\*\}/ @COMMON_ID
- file chown /mnt/.private2/\{\*\}/\* @COMMON_ID
- file create /mnt/.private2/\* @COMMON_MODE
- file create /mnt/.private2/\{\*\}/\* @COMMON_MODE
- file execute /system/bin/cryptsetup.backend exec.realpath="/system/bin/cryptsetup.backend" exec.argv[0]="cryptsetup.backend"
- file execute /system/bin/genpassphrase exec.realpath="/system/bin/genpassphrase" exec.argv[0]="genpassphrase"
- file execute @PER_EXEC_FILE
- file link /mnt/.private2/\* /mnt/.private2/\*
- file link /mnt/.private2/\* /mnt/.private2/\{\*\}/\*
- file link /mnt/.private2/\{\*\}/\* /mnt/.private2/\*
- file link /mnt/.private2/\{\*\}/\* /mnt/.private2/\{\*\}/\*
- file link /mnt/.private2/\{\*\}/ /mnt/.private2/\{\*\}/
- file mkdir /mnt/.private2/ @COMMON_MODE
- file mkdir /mnt/.private2/\{\*\}/ @COMMON_MODE
- file read /mnt/.private2/
- file read /mnt/.private2/\*
- file read /mnt/.private2/\{\*\}/
- file read /mnt/.private2/\{\*\}/\*
- file read /system/lib/libnfcid.so
- file read /system/lib/libvcrypt_be.so
- file read /system/lib/libvssl.so
- file read proc:/nk/vcrypt-be
- file rename /mnt/.private2/\* /mnt/.private2/\*
- file rename /mnt/.private2/\* /mnt/.private2/\{\*\}/\*
- file rename /mnt/.private2/\{\*\}/ /mnt/.private2/\{\*\}/
- file rename /mnt/.private2/\{\*\}/\* /mnt/.private2/\*
- file rename /mnt/.private2/\{\*\}/\* /mnt/.private2/\{\*\}/\*
- file rmdir /mnt/.private2/
- file rmdir /mnt/.private2/\{\*\}/
- file symlink /mnt/.private2/\*
- file symlink /mnt/.private2/\{\*\}/\*
- file truncate /mnt/.private2/\*
- file truncate /mnt/.private2/\{\*\}/\*
- file unlink /mnt/.private2/
- file unlink /mnt/.private2/\*
- file unlink /mnt/.private2/\{\*\}/
- file unlink /mnt/.private2/\{\*\}/\*
- file write /mnt/.private2/\*
- file write /mnt/.private2/\{\*\}/\*
- file write proc:/nk/vcrypt-be
- use_group 0
- <kernel> /init /system/bin/vssd /system/bin/cryptsetup.backend
- use_profile 3
- file append /mnt/.private2/\*
- file append /mnt/.private2/\{\*\}/\*
- file chgrp /mnt/.private2/ @COMMON_ID
- file chgrp /mnt/.private2/\* @COMMON_ID
- file chgrp /mnt/.private2/\{\*\}/ @COMMON_ID
- file chgrp /mnt/.private2/\{\*\}/\* @COMMON_ID
- file chmod /mnt/.private2/ @COMMON_MODE
- file chmod /mnt/.private2/\* @COMMON_MODE
- file chmod /mnt/.private2/\{\*\}/ @COMMON_MODE
- file chmod /mnt/.private2/\{\*\}/\* @COMMON_MODE
- file chown /mnt/.private2/ @COMMON_ID
- file chown /mnt/.private2/\* @COMMON_ID
- file chown /mnt/.private2/\{\*\}/ @COMMON_ID
- file chown /mnt/.private2/\{\*\}/\* @COMMON_ID
- file create /mnt/.private2/\* @COMMON_MODE
- file create /mnt/.private2/\{\*\}/\* @COMMON_MODE
- file execute @PER_EXEC_FILE
- file link /mnt/.private2/\* /mnt/.private2/\*
- file link /mnt/.private2/\* /mnt/.private2/\{\*\}/\*
- file link /mnt/.private2/\{\*\}/\* /mnt/.private2/\*
- file link /mnt/.private2/\{\*\}/\* /mnt/.private2/\{\*\}/\*
- file link /mnt/.private2/\{\*\}/ /mnt/.private2/\{\*\}/
- file mkdir /mnt/.private2/ @COMMON_MODE
- file mkdir /mnt/.private2/\{\*\}/ @COMMON_MODE
- file read /dev/block/mmcblk0p23
- file read /mnt/.private2/
- file read /mnt/.private2/\*
- file read /mnt/.private2/\{\*\}/
- file read /mnt/.private2/\{\*\}/\*
- file read proc:/nk/vcrypt-be
- file rename /mnt/.private2/\* /mnt/.private2/\*
- file rename /mnt/.private2/\* /mnt/.private2/\{\*\}/\*
- file rename /mnt/.private2/\{\*\}/ /mnt/.private2/\{\*\}/
- file rename /mnt/.private2/\{\*\}/\* /mnt/.private2/\*
- file rename /mnt/.private2/\{\*\}/\* /mnt/.private2/\{\*\}/\*
- file rmdir /mnt/.private2/
- file rmdir /mnt/.private2/\{\*\}/
- file symlink /mnt/.private2/\*
- file symlink /mnt/.private2/\{\*\}/\*
- file truncate /mnt/.private2/\*
- file truncate /mnt/.private2/\{\*\}/\*
- file unlink /mnt/.private2/
- file unlink /mnt/.private2/\*
- file unlink /mnt/.private2/\{\*\}/
- file unlink /mnt/.private2/\{\*\}/\*
- file write /dev/block/mmcblk0p23
- file write /mnt/.private2/\*
- file write /mnt/.private2/\{\*\}/\*
- file write proc:/nk/vcrypt-be
- use_group 0
- <kernel> /system/bin/app_process
- use_profile 3
- file execute /system/bin/dexopt exec.realpath="/system/bin/dexopt" exec.argv[0]="/system/bin/dexopt"
- file execute @PER_EXEC_FILE
- use_group 1
- <kernel> /init /system/bin/debuggerd
- use_profile 3
- capability SYS_PTRACE
- file execute @PER_EXEC_FILE
- use_group 0
- <kernel> /init /system/bin/felicamdl
- use_profile 3
- file execute @PER_EXEC_FILE
- file read /dev/felica_interrupt
- use_group 0
- <kernel> /system/bin/app_process /system/bin/dexopt
- use_profile 3
- file execute @PER_EXEC_FILE
- use_group 0
- PROFILE_VERSION=20100903
- 0-COMMENT=-----Disabled Mode-----
- 0-PREFERENCE={ max_audit_log=1024 max_learning_entry=2048 enforcing_penalty=0 }
- 0-CONFIG={ mode=disabled grant_log=yes reject_log=yes }
- 1-COMMENT=-----Learning Mode-----
- 1-PREFERENCE={ max_audit_log=1024 max_learning_entry=2048 enforcing_penalty=0 }
- 1-CONFIG={ mode=disabled grant_log=yes reject_log=yes }
- 1-CONFIG::file::execute={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::open={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::symlink={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::link={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::rename={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::chroot={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::mount={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::unmount={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::pivot_root={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::create={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::unlink={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::chown={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::chgrp={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::chmod={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::mkdir={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::rmdir={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::file::truncate={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::capability::use_kernel_module={ mode=learning grant_log=no reject_log=yes }
- 1-CONFIG::capability::SYS_PTRACE={ mode=learning grant_log=no reject_log=yes }
- 2-COMMENT=-----Permissive Mode-----
- 2-PREFERENCE={ max_audit_log=1024 max_learning_entry=2048 enforcing_penalty=0 }
- 2-CONFIG={ mode=disabled grant_log=yes reject_log=yes }
- 2-CONFIG::file::execute={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::open={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::symlink={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::link={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::rename={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::chroot={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::mount={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::unmount={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::pivot_root={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::create={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::unlink={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::chown={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::chgrp={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::chmod={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::mkdir={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::rmdir={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::file::truncate={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::capability::use_kernel_module={ mode=permissive grant_log=no reject_log=yes }
- 2-CONFIG::capability::SYS_PTRACE={ mode=permissive grant_log=no reject_log=yes }
- 3-COMMENT=-----Enforcing Mode-----
- 3-PREFERENCE={ max_audit_log=1024 max_learning_entry=2048 enforcing_penalty=0 }
- 3-CONFIG={ mode=disabled grant_log=yes reject_log=yes }
- 3-CONFIG::file::execute={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::open={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::symlink={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::link={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::rename={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::chroot={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::mount={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::unmount={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::pivot_root={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::create={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::unlink={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::chown={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::chgrp={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::chmod={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::mkdir={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::rmdir={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::file::truncate={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::capability::use_kernel_module={ mode=enforcing grant_log=no reject_log=yes }
- 3-CONFIG::capability::SYS_PTRACE={ mode=enforcing grant_log=no reject_log=yes }
- keep_domain any from <kernel> //./app-user
- keep_domain any from <kernel> //./system-user
- keep_domain any from <kernel> //./other-user
- keep_domain any from <kernel> /init
- no_keep_domain /sbin/adbd from <kernel> /init
- keep_domain any from <kernel> /init /sbin/adbd
- no_keep_domain /system/bin/sh from <kernel> /init /sbin/adbd
- no_keep_domain /system/bin/anpand from <kernel> /init
- keep_domain any from <kernel> /init /system/bin/anpand
- no_keep_domain /system/bin/installd from <kernel> /init
- keep_domain any from <kernel> /init /system/bin/installd
- no_keep_domain /system/bin/app_process from <kernel> /init
- no_keep_domain /system/bin/debuggerd from <kernel> /init
- keep_domain any from <kernel> /init /system/bin/debuggerd
- no_keep_domain /system/bin/felicamdl from <kernel> /init
- no_keep_domain /system/bin/rild from <kernel> /init
- keep_domain any from <kernel> /init /system/bin/rild
- no_keep_domain /system/bin/rmt_storage from <kernel> /init
- keep_domain any from <kernel> /init /system/bin/rmt_storage
- no_keep_domain /system/bin/sh from <kernel> /init
- no_keep_domain /system/bin/vold from <kernel> /init
- no_keep_domain /system/bin/vssd from <kernel> /init
- keep_domain any from <kernel> /init /system/bin/vssd
- no_keep_domain /system/bin/cryptsetup.backend from <kernel> /init /system/bin/vssd
- keep_domain any from <kernel> /init /system/bin/vssd /system/bin/cryptsetup.backend
- no_keep_domain /system/bin/vcryptd from <kernel> /init
- keep_domain any from <kernel> /init /system/bin/vcryptd
- no_keep_domain /system/bin/vcrypt_setup.sh from <kernel> /init
- keep_domain any from <kernel> /init /system/bin/vcrypt_setup.sh
- no_keep_domain /system/bin/mount_crypt from <kernel> /init /system/bin/vcrypt_setup.sh
- keep_domain any from <kernel> /init /system/bin/vcrypt_setup.sh /system/bin/mount_crypt
- no_keep_domain /system/bin/cryptsetup.backend from <kernel> /init /system/bin/vcrypt_setup.sh /system/bin/mount_crypt
- keep_domain any from <kernel> /init /system/bin/vcrypt_setup.sh /system/bin/mount_crypt /system/bin/cryptsetup.backend
- keep_domain any from <kernel> /init /sbin/adbd /system/bin/sh
- no_keep_domain /system/bin/app_process from <kernel> /init /sbin/adbd /system/bin/sh
- keep_domain any from <kernel> /init /system/bin/sh
- keep_domain any from <kernel> /init /system/bin/vold
- initialize_domain /system/bin/app_process from any
- path_group PER_ANY_DIR /
- path_group PER_ANY_DIR /\{\*\}/
- path_group PER_ANY_DIR \*:/
- path_group PER_ANY_DIR \*:/\{\*\}/
- path_group PER_EXEC_FILE /\*
- path_group PER_EXEC_FILE /\{\*\}/\*\-cryptsetup.backend\-genpassphrase
- path_group PER_LINK_FILE /acct/\*
- path_group PER_LINK_FILE /acct/\{\*\}/\*
- path_group PER_LINK_FILE /block1/\*
- path_group PER_LINK_FILE /block1/\{\*\}/\*
- path_group PER_LINK_FILE /cache/\*
- path_group PER_LINK_FILE /cache/\{\*\}/\*
- path_group PER_LINK_FILE /data/\*
- path_group PER_LINK_FILE /data/\{\*\}/\*
- path_group PER_LINK_FILE /dev/\*\-felica\-felica_cen\-felica_cfg\-felica_interrupt\-felica_pon\-felica_rfs\-felica_rws\-kmem\-mem\-udlfomf
- path_group PER_LINK_FILE /dev/\{\*\}/\*\-mmcblk0\*
- path_group PER_LINK_FILE /log/\*
- path_group PER_LINK_FILE /log/\{\*\}/\*
- path_group PER_LINK_FILE /log3/\*
- path_group PER_LINK_FILE /log3/\{\*\}/\*
- path_group PER_LINK_FILE /fotadelta/\*
- path_group PER_LINK_FILE /fotadelta/\{\*\}/\*
- path_group PER_LINK_FILE /mnt/\*
- path_group PER_LINK_FILE /mnt/asec/\*
- path_group PER_LINK_FILE /mnt/asec/\{\*\}/\*
- path_group PER_LINK_FILE /mnt/obb/\*
- path_group PER_LINK_FILE /mnt/obb/\{\*\}/\*
- path_group PER_LINK_FILE /mnt/private/\*
- path_group PER_LINK_FILE /mnt/private/\{\*\}/\*
- path_group PER_LINK_FILE /mnt/sdcard/\*
- path_group PER_LINK_FILE /mnt/sdcard/\{\*\}/\*
- path_group PER_LINK_FILE /mnt/secure/\*
- path_group PER_LINK_FILE /mnt/secure/\{\*\}/\*
- path_group PER_LINK_FILE /persist/\*
- path_group PER_LINK_FILE /persist/\{\*\}/\*
- path_group PER_LINK_FILE /tmp/\*
- path_group PER_LINK_FILE /tmp/\{\*\}/\*
- path_group PER_LINK_FILE /tombstones/\*
- path_group PER_LINK_FILE /tombstones/\{\*\}/\*
- path_group PER_LINK_FILE debugfs:/\*
- path_group PER_LINK_FILE debugfs:/\{\*\}/\*
- path_group PER_LINK_FILE devpts:/\*
- path_group PER_LINK_FILE devpts:/\{\*\}/\*
- path_group PER_LINK_FILE proc:/\*
- path_group PER_LINK_FILE proc:/\{\*\}/\*\-vcrypt-be
- path_group PER_LINK_FILE sysfs:/\*
- path_group PER_LINK_FILE sysfs:/\{\*\}/\*
- path_group PER_LINK_DIR /acct/\{\*\}/
- path_group PER_LINK_DIR /block1/\{\*\}/
- path_group PER_LINK_DIR /cache/\{\*\}/
- path_group PER_LINK_DIR /data/\{\*\}/
- path_group PER_LINK_DIR /log/\{\*\}/
- path_group PER_LINK_DIR /log3/\{\*\}/
- path_group PER_LINK_DIR /fotadelta/\{\*\}/
- path_group PER_LINK_DIR /mnt/
- path_group PER_LINK_DIR /mnt/asec/
- path_group PER_LINK_DIR /mnt/asec/\{\*\}/
- path_group PER_LINK_DIR /mnt/obb/
- path_group PER_LINK_DIR /mnt/obb/\{\*\}/
- path_group PER_LINK_DIR /mnt/private/
- path_group PER_LINK_DIR /mnt/private/\{\*\}/
- path_group PER_LINK_DIR /mnt/sdcard/
- path_group PER_LINK_DIR /mnt/sdcard/\{\*\}/
- path_group PER_LINK_DIR /mnt/secure/
- path_group PER_LINK_DIR /mnt/secure/\{\*\}/
- path_group PER_LINK_DIR /persist/\{\*\}/
- path_group PER_LINK_DIR /tmp/\{\*\}/
- path_group PER_LINK_DIR /tombstones/\{\*\}/
- path_group PER_LINK_DIR \*:/
- path_group PER_LINK_DIR \*:/\{\*\}/
- path_group PER_SYMLINK_FILE /acct/\*
- path_group PER_SYMLINK_FILE /acct/\{\*\}/\*
- path_group PER_SYMLINK_FILE /block1/\*
- path_group PER_SYMLINK_FILE /block1/\{\*\}/\*
- path_group PER_SYMLINK_FILE /cache/\*
- path_group PER_SYMLINK_FILE /cache/\{\*\}/\*
- path_group PER_SYMLINK_FILE /data/\*
- path_group PER_SYMLINK_FILE /data/\{\*\}/\*
- path_group PER_SYMLINK_FILE /dev/\*
- path_group PER_SYMLINK_FILE /dev/\{\*\}/\*
- path_group PER_SYMLINK_FILE /log/\*
- path_group PER_SYMLINK_FILE /log/\{\*\}/\*
- path_group PER_SYMLINK_FILE /log3/\*
- path_group PER_SYMLINK_FILE /log3/\{\*\}/\*
- path_group PER_SYMLINK_FILE /fotadelta/\*
- path_group PER_SYMLINK_FILE /fotadelta/\{\*\}/\*
- path_group PER_SYMLINK_FILE /mnt/\*
- path_group PER_SYMLINK_FILE /mnt/asec/\*
- path_group PER_SYMLINK_FILE /mnt/asec/\{\*\}/\*
- path_group PER_SYMLINK_FILE /mnt/obb/\*
- path_group PER_SYMLINK_FILE /mnt/obb/\{\*\}/\*
- path_group PER_SYMLINK_FILE /mnt/private/\*
- path_group PER_SYMLINK_FILE /mnt/private/\{\*\}/\*
- path_group PER_SYMLINK_FILE /mnt/sdcard/\*
- path_group PER_SYMLINK_FILE /mnt/sdcard/\{\*\}/\*
- path_group PER_SYMLINK_FILE /mnt/secure/\*
- path_group PER_SYMLINK_FILE /mnt/secure/\{\*\}/\*
- path_group PER_SYMLINK_FILE /persist/\*
- path_group PER_SYMLINK_FILE /persist/\{\*\}/\*
- path_group PER_SYMLINK_FILE /tmp/\*
- path_group PER_SYMLINK_FILE /tmp/\{\*\}/\*
- path_group PER_SYMLINK_FILE /tombstones/\*
- path_group PER_SYMLINK_FILE /tombstones/\{\*\}/\*
- path_group PER_SYMLINK_FILE debugfs:/\*
- path_group PER_SYMLINK_FILE debugfs:/\{\*\}/\*
- path_group PER_SYMLINK_FILE devpts:/\*
- path_group PER_SYMLINK_FILE devpts:/\{\*\}/\*
- path_group PER_SYMLINK_FILE proc:/\*
- path_group PER_SYMLINK_FILE proc:/\{\*\}/\*
- path_group PER_SYMLINK_FILE sysfs:/\*
- path_group PER_SYMLINK_FILE sysfs:/\{\*\}/\*
- path_group PER_READ_FILE /\*
- path_group PER_READ_FILE /acct/\*
- path_group PER_READ_FILE /acct/\{\*\}/\*
- path_group PER_READ_FILE /block1/\*
- path_group PER_READ_FILE /block1/\{\*\}/\*
- path_group PER_READ_FILE /cache/\*
- path_group PER_READ_FILE /cache/\{\*\}/\*
- path_group PER_READ_FILE /config/\*
- path_group PER_READ_FILE /config/\{\*\}/\*
- path_group PER_READ_FILE /data/\*
- path_group PER_READ_FILE /data/\{\*\}/\*
- path_group PER_READ_FILE /dev/\*\-felica\-felica_cfg\-felica_interrupt\-felica_pon\-kmem\-mem\-udlfomf
- path_group PER_READ_FILE /dev/\{\*\}/\*\-mmcblk0\*
- path_group PER_READ_FILE /firmware/\*
- path_group PER_READ_FILE /firmware/\{\*\}/\*
- path_group PER_READ_FILE /log/\*
- path_group PER_READ_FILE /log/\{\*\}/\*
- path_group PER_READ_FILE /log3/\*
- path_group PER_READ_FILE /log3/\{\*\}/\*
- path_group PER_READ_FILE /fotadelta/\*
- path_group PER_READ_FILE /fotadelta/\{\*\}/\*
- path_group PER_READ_FILE /mnt/\*
- path_group PER_READ_FILE /mnt/asec/\*
- path_group PER_READ_FILE /mnt/asec/\{\*\}/\*
- path_group PER_READ_FILE /mnt/obb/\*
- path_group PER_READ_FILE /mnt/obb/\{\*\}/\*
- path_group PER_READ_FILE /mnt/private/\*
- path_group PER_READ_FILE /mnt/private/\{\*\}/\*
- path_group PER_READ_FILE /mnt/sdcard/\*
- path_group PER_READ_FILE /mnt/sdcard/\{\*\}/\*
- path_group PER_READ_FILE /mnt/secure/\*
- path_group PER_READ_FILE /mnt/secure/\{\*\}/\*
- path_group PER_READ_FILE /persist/\*
- path_group PER_READ_FILE /persist/\{\*\}/\*
- path_group PER_READ_FILE /res/\*
- path_group PER_READ_FILE /res/\{\*\}/\*
- path_group PER_READ_FILE /root/\*
- path_group PER_READ_FILE /root/\{\*\}/\*
- path_group PER_READ_FILE /sbin/\*\-ccs-init\-ccs-file
- path_group PER_READ_FILE /sbin/\{\*\}/\*
- path_group PER_READ_FILE /system/\*
- path_group PER_READ_FILE /system/\{\*\}/\*\-libSecureIDDB_jni.so\-libSafetyBox_jni.so\-libNormalIDDB_jni.so\-libvanfc.so\-libvssl.so\-libvcrypt_be.so\-libnfcid.so\-MobileFeliCaClient.odex\-data_app_fn.zip\-felicaDT.apk\-felicaDT.odex\-FeliCaControl.apk
- path_group PER_READ_FILE /tmp/\*
- path_group PER_READ_FILE /tmp/\{\*\}/\*
- path_group PER_READ_FILE /tombstones/\*
- path_group PER_READ_FILE /tombstones/\{\*\}/\*
- path_group PER_READ_FILE debugfs:/\*
- path_group PER_READ_FILE debugfs:/\{\*\}/\*
- path_group PER_READ_FILE devpts:/\*
- path_group PER_READ_FILE devpts:/\{\*\}/\*
- path_group PER_READ_FILE proc:/\*
- path_group PER_READ_FILE proc:/\{\*\}/\*\-vcrypt-be
- path_group PER_READ_FILE sysfs:/\*
- path_group PER_READ_FILE sysfs:/\{\*\}/\*
- path_group PER_RENAME_DIR /acct/\{\*\}/
- path_group PER_RENAME_DIR /block1/\{\*\}/
- path_group PER_RENAME_DIR /cache/\{\*\}/
- path_group PER_RENAME_DIR /data/\{\*\}/
- path_group PER_RENAME_DIR /log/\{\*\}/
- path_group PER_RENAME_DIR /log3/\{\*\}/
- path_group PER_RENAME_DIR /fotadelta/\{\*\}/
- path_group PER_RENAME_DIR /mnt/
- path_group PER_RENAME_DIR /mnt/asec/
- path_group PER_RENAME_DIR /mnt/asec/\{\*\}/
- path_group PER_RENAME_DIR /mnt/obb/
- path_group PER_RENAME_DIR /mnt/obb/\{\*\}/
- path_group PER_RENAME_DIR /mnt/private/
- path_group PER_RENAME_DIR /mnt/private/\{\*\}/
- path_group PER_RENAME_DIR /mnt/sdcard/
- path_group PER_RENAME_DIR /mnt/sdcard/\{\*\}/
- path_group PER_RENAME_DIR /mnt/secure/
- path_group PER_RENAME_DIR /mnt/secure/\{\*\}/
- path_group PER_RENAME_DIR /persist/\{\*\}/
- path_group PER_RENAME_DIR /tmp/\{\*\}/
- path_group PER_RENAME_DIR /tombstones/\{\*\}/
- path_group PER_RENAME_FILE /acct/\*
- path_group PER_RENAME_FILE /acct/\{\*\}/\*
- path_group PER_RENAME_FILE /block1/\*
- path_group PER_RENAME_FILE /block1/\{\*\}/\*
- path_group PER_RENAME_FILE /cache/\*
- path_group PER_RENAME_FILE /cache/\{\*\}/\*
- path_group PER_RENAME_FILE /data/\*
- path_group PER_RENAME_FILE /data/\{\*\}/\*
- path_group PER_RENAME_FILE /log/\*
- path_group PER_RENAME_FILE /log/\{\*\}/\*
- path_group PER_RENAME_FILE /log3/\*
- path_group PER_RENAME_FILE /log3/\{\*\}/\*
- path_group PER_RENAME_FILE /fotadelta/\*
- path_group PER_RENAME_FILE /fotadelta/\{\*\}/\*
- path_group PER_RENAME_FILE /mnt/\*
- path_group PER_RENAME_FILE /mnt/asec/\*
- path_group PER_RENAME_FILE /mnt/asec/\{\*\}/\*
- path_group PER_RENAME_FILE /mnt/obb/\*
- path_group PER_RENAME_FILE /mnt/obb/\{\*\}/\*
- path_group PER_RENAME_FILE /mnt/private/\*
- path_group PER_RENAME_FILE /mnt/private/\{\*\}/\*
- path_group PER_RENAME_FILE /mnt/sdcard/\*
- path_group PER_RENAME_FILE /mnt/sdcard/\{\*\}/\*
- path_group PER_RENAME_FILE /mnt/secure/\*
- path_group PER_RENAME_FILE /mnt/secure/\{\*\}/\*
- path_group PER_RENAME_FILE /persist/\*
- path_group PER_RENAME_FILE /persist/\{\*\}/\*
- path_group PER_RENAME_FILE /tmp/\*
- path_group PER_RENAME_FILE /tmp/\{\*\}/\*
- path_group PER_RENAME_FILE /tombstones/\*
- path_group PER_RENAME_FILE /tombstones/\{\*\}/\*
- path_group PER_WRITE_FILE /acct/\*
- path_group PER_WRITE_FILE /acct/\{\*\}/\*
- path_group PER_WRITE_FILE /block1/\*
- path_group PER_WRITE_FILE /block1/\{\*\}/\*
- path_group PER_WRITE_FILE /cache/\*
- path_group PER_WRITE_FILE /cache/\{\*\}/\*
- path_group PER_WRITE_FILE /data/\*
- path_group PER_WRITE_FILE /data/\{\*\}/\*
- path_group PER_WRITE_FILE /dev/\*\-felica\-felica_cen\-felica_cfg\-felica_interrupt\-felica_pon\-felica_rfs\-felica_rws\-kmem\-mem\-udlfomf
- path_group PER_WRITE_FILE /dev/\{\*\}/\*\-mmcblk0\*
- path_group PER_WRITE_FILE /log/\*
- path_group PER_WRITE_FILE /log/\{\*\}/\*
- path_group PER_WRITE_FILE /log3/\*
- path_group PER_WRITE_FILE /log3/\{\*\}/\*
- path_group PER_WRITE_FILE /fotadelta/\*
- path_group PER_WRITE_FILE /fotadelta/\{\*\}/\*
- path_group PER_WRITE_FILE /mnt/\*
- path_group PER_WRITE_FILE /mnt/asec/\*
- path_group PER_WRITE_FILE /mnt/asec/\{\*\}/\*
- path_group PER_WRITE_FILE /mnt/obb/\*
- path_group PER_WRITE_FILE /mnt/obb/\{\*\}/\*
- path_group PER_WRITE_FILE /mnt/private/\*
- path_group PER_WRITE_FILE /mnt/private/\{\*\}/\*
- path_group PER_WRITE_FILE /mnt/sdcard/\*
- path_group PER_WRITE_FILE /mnt/sdcard/\{\*\}/\*
- path_group PER_WRITE_FILE /mnt/secure/\*
- path_group PER_WRITE_FILE /mnt/secure/\{\*\}/\*
- path_group PER_WRITE_FILE /persist/\*
- path_group PER_WRITE_FILE /persist/\{\*\}/\*
- path_group PER_WRITE_FILE /tmp/\*
- path_group PER_WRITE_FILE /tmp/\{\*\}/\*
- path_group PER_WRITE_FILE /tombstones/\*
- path_group PER_WRITE_FILE /tombstones/\{\*\}/\*
- path_group PER_WRITE_FILE debugfs:/\*
- path_group PER_WRITE_FILE debugfs:/\{\*\}/\*
- path_group PER_WRITE_FILE devpts:/\*
- path_group PER_WRITE_FILE devpts:/\{\*\}/\*
- path_group PER_WRITE_FILE proc:/\*
- path_group PER_WRITE_FILE proc:/\{\*\}/\*\-vcrypt-be
- path_group PER_WRITE_FILE sysfs:/\*
- path_group PER_WRITE_FILE sysfs:/\{\*\}/\*
- path_group PER_COMMON_DIR \*:/
- path_group PER_COMMON_DIR \*:/\{\*\}/
- path_group PER_COMMON_DIR /
- path_group PER_COMMON_DIR /acct/
- path_group PER_COMMON_DIR /acct/\{\*\}/
- path_group PER_COMMON_DIR /block1/
- path_group PER_COMMON_DIR /block1/\{\*\}/
- path_group PER_COMMON_DIR /cache/
- path_group PER_COMMON_DIR /cache/\{\*\}/
- path_group PER_COMMON_DIR /config/
- path_group PER_COMMON_DIR /config/\{\*\}/
- path_group PER_COMMON_DIR /data/
- path_group PER_COMMON_DIR /data/\{\*\}/
- path_group PER_COMMON_DIR /dev/
- path_group PER_COMMON_DIR /dev/\{\*\}/
- path_group PER_COMMON_DIR /firmware/
- path_group PER_COMMON_DIR /firmware/\{\*\}/
- path_group PER_COMMON_DIR /log/
- path_group PER_COMMON_DIR /log/\{\*\}/
- path_group PER_COMMON_DIR /log3/
- path_group PER_COMMON_DIR /log3/\{\*\}/
- path_group PER_COMMON_DIR /fotadelta/
- path_group PER_COMMON_DIR /fotadelta/\{\*\}/
- path_group PER_COMMON_DIR /mnt/
- path_group PER_COMMON_DIR /mnt/asec/
- path_group PER_COMMON_DIR /mnt/asec/\{\*\}/
- path_group PER_COMMON_DIR /mnt/obb/
- path_group PER_COMMON_DIR /mnt/obb/\{\*\}/
- path_group PER_COMMON_DIR /mnt/private/
- path_group PER_COMMON_DIR /mnt/private/\{\*\}/
- path_group PER_COMMON_DIR /mnt/sdcard/
- path_group PER_COMMON_DIR /mnt/sdcard/\{\*\}/
- path_group PER_COMMON_DIR /mnt/secure/
- path_group PER_COMMON_DIR /mnt/secure/\{\*\}/
- path_group PER_COMMON_DIR /persist/
- path_group PER_COMMON_DIR /persist/\{\*\}/
- path_group PER_COMMON_DIR /res/
- path_group PER_COMMON_DIR /res/\{\*\}/
- path_group PER_COMMON_DIR /root/
- path_group PER_COMMON_DIR /root/\{\*\}/
- path_group PER_COMMON_DIR /sbin/
- path_group PER_COMMON_DIR /sbin/\{\*\}/
- path_group PER_COMMON_DIR /system/
- path_group PER_COMMON_DIR /system/\{\*\}/
- path_group PER_COMMON_DIR /tmp/
- path_group PER_COMMON_DIR /tmp/\{\*\}/
- path_group PER_COMMON_DIR /tombstones/
- path_group PER_COMMON_DIR /tombstones/\{\*\}/
- path_group PER_COMMON_FILE \*:/\*
- path_group PER_COMMON_FILE \*:/\{\*\}/\*
- path_group PER_COMMON_FILE /\*
- path_group PER_COMMON_FILE /acct/\*
- path_group PER_COMMON_FILE /acct/\{\*\}/\*
- path_group PER_COMMON_FILE /block1/\*
- path_group PER_COMMON_FILE /block1/\{\*\}/\*
- path_group PER_COMMON_FILE /cache/\*
- path_group PER_COMMON_FILE /cache/\{\*\}/\*
- path_group PER_COMMON_FILE /config/\*
- path_group PER_COMMON_FILE /config/\{\*\}/\*
- path_group PER_COMMON_FILE /data/\*
- path_group PER_COMMON_FILE /data/\{\*\}/\*
- path_group PER_COMMON_FILE /dev/\*
- path_group PER_COMMON_FILE /dev/\{\*\}/\*
- path_group PER_COMMON_FILE /firmware/\*
- path_group PER_COMMON_FILE /firmware/\{\*\}/\*
- path_group PER_COMMON_FILE /log/\*
- path_group PER_COMMON_FILE /log/\{\*\}/\*
- path_group PER_COMMON_FILE /log3/\*
- path_group PER_COMMON_FILE /log3/\{\*\}/\*
- path_group PER_COMMON_FILE /fotadelta/\*
- path_group PER_COMMON_FILE /fotadelta/\{\*\}/\*
- path_group PER_COMMON_FILE /mnt/\*
- path_group PER_COMMON_FILE /mnt/asec/\*
- path_group PER_COMMON_FILE /mnt/asec/\{\*\}/\*
- path_group PER_COMMON_FILE /mnt/obb/\*
- path_group PER_COMMON_FILE /mnt/obb/\{\*\}/\*
- path_group PER_COMMON_FILE /mnt/private/\*
- path_group PER_COMMON_FILE /mnt/private/\{\*\}/\*
- path_group PER_COMMON_FILE /mnt/sdcard/\*
- path_group PER_COMMON_FILE /mnt/sdcard/\{\*\}/\*
- path_group PER_COMMON_FILE /mnt/secure/\*
- path_group PER_COMMON_FILE /mnt/secure/\{\*\}/\*
- path_group PER_COMMON_FILE /persist/\*
- path_group PER_COMMON_FILE /persist/\{\*\}/\*
- path_group PER_COMMON_FILE /res/\*
- path_group PER_COMMON_FILE /res/\{\*\}/\*
- path_group PER_COMMON_FILE /root/\*
- path_group PER_COMMON_FILE /root/\{\*\}/\*
- path_group PER_COMMON_FILE /sbin/\*
- path_group PER_COMMON_FILE /sbin/\{\*\}/\*
- path_group PER_COMMON_FILE /system/\*
- path_group PER_COMMON_FILE /system/\{\*\}/\*
- path_group PER_COMMON_FILE /tmp/\*
- path_group PER_COMMON_FILE /tmp/\{\*\}/\*
- path_group PER_COMMON_FILE /tombstones/\*
- path_group PER_COMMON_FILE /tombstones/\{\*\}/\*
- number_group COMMON_MODE 0-07777
- number_group COMMON_ID 0-4294967295
- acl_group 0 file read @PER_READ_FILE
- acl_group 0 file read @PER_ANY_DIR
- acl_group 0 file rename @PER_RENAME_DIR @PER_RENAME_DIR
- acl_group 0 file rename @PER_RENAME_FILE @PER_RENAME_FILE
- acl_group 0 file write/append @PER_WRITE_FILE
- acl_group 0 file link @PER_LINK_FILE @PER_LINK_FILE
- acl_group 0 file link @PER_LINK_DIR @PER_LINK_DIR
- acl_group 0 file symlink @PER_SYMLINK_FILE
- acl_group 0 file create @PER_COMMON_FILE @COMMON_MODE
- acl_group 0 file unlink @PER_COMMON_DIR
- acl_group 0 file unlink @PER_COMMON_FILE
- acl_group 0 file chown @PER_COMMON_DIR @COMMON_ID
- acl_group 0 file chown @PER_COMMON_FILE @COMMON_ID
- acl_group 0 file chgrp @PER_COMMON_DIR @COMMON_ID
- acl_group 0 file chgrp @PER_COMMON_FILE @COMMON_ID
- acl_group 0 file chmod @PER_COMMON_DIR @COMMON_MODE
- acl_group 0 file chmod @PER_COMMON_FILE @COMMON_MODE
- acl_group 0 file mkdir @PER_COMMON_DIR @COMMON_MODE
- acl_group 0 file rmdir @PER_COMMON_DIR
- acl_group 0 file truncate @PER_COMMON_FILE
- acl_group 1 file read @PER_READ_FILE
- acl_group 1 file read @PER_ANY_DIR
- acl_group 1 file rename @PER_RENAME_DIR @PER_RENAME_DIR
- acl_group 1 file rename @PER_RENAME_FILE @PER_RENAME_FILE
- acl_group 1 file write/append @PER_WRITE_FILE
- acl_group 1 file link @PER_LINK_FILE @PER_LINK_FILE
- acl_group 1 file link @PER_LINK_DIR @PER_LINK_DIR
- acl_group 1 file symlink @PER_SYMLINK_FILE
- acl_group 1 file create @PER_COMMON_FILE @COMMON_MODE
- acl_group 1 file unlink @PER_COMMON_DIR
- acl_group 1 file unlink @PER_COMMON_FILE
- acl_group 1 file chown @PER_COMMON_DIR @COMMON_ID
- acl_group 1 file chown @PER_COMMON_FILE @COMMON_ID
- acl_group 1 file chgrp @PER_COMMON_DIR @COMMON_ID
- acl_group 1 file chgrp @PER_COMMON_FILE @COMMON_ID
- acl_group 1 file chmod @PER_COMMON_DIR @COMMON_MODE
- acl_group 1 file chmod @PER_COMMON_FILE @COMMON_MODE
- acl_group 1 file mkdir @PER_COMMON_DIR @COMMON_MODE
- acl_group 1 file rmdir @PER_COMMON_DIR
- acl_group 1 file truncate @PER_COMMON_FILE
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.gid=1-999
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.uid=1-999
- acl_group 1 task auto_domain_transition <kernel> //./system-user task.gid=1000
- acl_group 1 task auto_domain_transition <kernel> //./system-user task.uid=1000
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.gid=1001-3999
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.uid=1001-3999
- acl_group 1 task auto_domain_transition <kernel> //./felica-user task.gid=4000
- acl_group 1 task auto_domain_transition <kernel> //./felica-user task.uid=4000
- acl_group 1 task auto_domain_transition <kernel> //./fclock-user task.gid=4001
- acl_group 1 task auto_domain_transition <kernel> //./fclock-user task.uid=4001
- acl_group 1 task auto_domain_transition <kernel> //./felicaDT-user task.gid=4002
- acl_group 1 task auto_domain_transition <kernel> //./felicaDT-user task.uid=4002
- acl_group 1 task auto_domain_transition <kernel> //./felicaCTL-user task.gid=4003
- acl_group 1 task auto_domain_transition <kernel> //./felicaCTL-user task.uid=4003
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.gid=4004-4299
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.uid=4004-4299
- acl_group 1 task auto_domain_transition <kernel> //./taginv-user task.gid=4300
- acl_group 1 task auto_domain_transition <kernel> //./taginv-user task.uid=4300
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.gid=4301-4499
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.uid=4301-4499
- acl_group 1 task auto_domain_transition <kernel> //./iddb-user task.gid=4500
- acl_group 1 task auto_domain_transition <kernel> //./iddb-user task.uid=4500
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.gid=4501-9999
- acl_group 1 task auto_domain_transition <kernel> //./other-user task.uid=4501-9999
- acl_group 1 task auto_domain_transition <kernel> //./app-user task.gid=10000-4294967295
- acl_group 1 task auto_domain_transition <kernel> //./app-user task.uid=10000-4294967295
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement