whitechapel_pro/init-display-sh.te - device/google/gs201-sepolicy - Git at Google

 type init-display-sh, domain;
 type init-display-sh_exec, vendor_file_type, exec_type, file_type;
 init_daemon_domain(init-display-sh)

 allow init-display-sh self:capability sys_module;
 allow init-display-sh vendor_kernel_modules:system module_load;
 allow init-display-sh vendor_toolbox_exec:file execute_no_trans;

 dontaudit init-display-sh proc_cmdline:file r_file_perms;

 # Allow modprobe to log to kmsg.
 allow init-display-sh kmsg_device:chr_file w_file_perms;
	type init-display-sh, domain;
	type init-display-sh_exec, vendor_file_type, exec_type, file_type;
	init_daemon_domain(init-display-sh)

	allow init-display-sh self:capability sys_module;
	allow init-display-sh vendor_kernel_modules:system module_load;
	allow init-display-sh vendor_toolbox_exec:file execute_no_trans;

	dontaudit init-display-sh proc_cmdline:file r_file_perms;

	# Allow modprobe to log to kmsg.
	allow init-display-sh kmsg_device:chr_file w_file_perms;