1# Copyright (c) 2024 Huawei Device Co., Ltd. 2# Licensed under the Apache License, Version 2.0 (the "License"); 3# you may not use this file except in compliance with the License. 4# You may obtain a copy of the License at 5# 6# http://www.apache.org/licenses/LICENSE-2.0 7# 8# Unless required by applicable law or agreed to in writing, software 9# distributed under the License is distributed on an "AS IS" BASIS, 10# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 11# See the License for the specific language governing permissions and 12# limitations under the License. 13 14neverallow { normal_hap debug_hap } parameter_attr:parameter_service { set }; 15neverallow { normal_hap debug_hap } paramservice_socket:sock_file { write }; 16 17typeattribute accessibility devinfo_type_allow_attr; 18typeattribute bgtaskmgr_service devinfo_type_allow_attr; 19typeattribute distributeddata devinfo_type_allow_attr; 20typeattribute foundation devinfo_type_allow_attr; 21typeattribute hidumper_service devinfo_type_allow_attr; 22typeattribute hiview devinfo_type_allow_attr; 23typeattribute inputmethod_service devinfo_type_allow_attr; 24typeattribute locationhub devinfo_type_allow_attr; 25typeattribute msdp_sa devinfo_type_allow_attr; 26typeattribute netmanager devinfo_type_allow_attr; 27typeattribute render_service devinfo_type_allow_attr; 28typeattribute softbus_server devinfo_type_allow_attr; 29typeattribute wallpaper_service devinfo_type_allow_attr; 30typeattribute param_watcher devinfo_type_allow_attr; 31typeattribute multimodalinput devinfo_type_allow_attr; 32typeattribute bluetooth_service devinfo_type_allow_attr; 33typeattribute resource_schedule_service devinfo_type_allow_attr; 34typeattribute telephony_sa devinfo_type_allow_attr; 35 36neverallow {sadomain -devinfo_type_allow_attr} devinfo_type_param:file {open read map}; 37allow {domain -sadomain } devinfo_type_param:file {open read map}; 38allow devinfo_type_allow_attr devinfo_type_param:file {open read map}; 39 40type devinfo_type_param, parameter_attr; 41 42neverallow {domain developer_only(`-hdcd') -usb_host updater_only(`-updater') -sys_param_set_allow_attr} sys_param:parameter_service { set }; 43