dc6c9adc15
Change selinux permission for MDP user on /dev/mdp_sync MTK-Commit-Id: a9c03563cf5e96815399788228dc62d18d88026e CR-Id: ALPS04672388 Change-Id: I3622da7b8ba4151f9cf79e9d4d9c8f73109ef684 Feature: [Module]MDP Driver
38 lines
1.3 KiB
Plaintext
Executable File
38 lines
1.3 KiB
Plaintext
Executable File
# ==============================================
|
|
# Policy File of /vendor/bin/hw/vendor.mediatek.hardware.mms@1.0-service Executable File
|
|
|
|
# ==============================================
|
|
# Type Declaration
|
|
# ==============================================
|
|
|
|
type mtk_hal_mms, domain;
|
|
type mtk_hal_mms_exec, exec_type, file_type, vendor_file_type;
|
|
|
|
# ==============================================
|
|
# MTK Policy Rule
|
|
# ==============================================
|
|
|
|
# Setup for domain transition
|
|
init_daemon_domain(mtk_hal_mms)
|
|
|
|
# Allow to use HWBinder IPC
|
|
hwbinder_use(mtk_hal_mms);
|
|
|
|
# Allow a set of permissions required for a domain to be a server which provides a HAL implementation over HWBinder.
|
|
hal_server_domain(mtk_hal_mms, hal_mms)
|
|
|
|
# add/find permission rule to hwservicemanager
|
|
add_hwservice(hal_mms_server, mtk_hal_mms_hwservice)
|
|
|
|
# Purpose : Allow to use kernel driver
|
|
allow mtk_hal_mms graphics_device:chr_file { read write open ioctl };
|
|
allow mtk_hal_mms ion_device:chr_file { read open ioctl };
|
|
allow mtk_hal_mms mtk_cmdq_device:chr_file { read open ioctl };
|
|
allow mtk_hal_mms mtk_mdp_device:chr_file rw_file_perms;
|
|
allow mtk_hal_mms mtk_hal_pq_hwservice:hwservice_manager find;
|
|
allow mtk_hal_mms proc:file r_file_perms;
|
|
|
|
# Purpose : Allow to use allocator for JPEG
|
|
hal_client_domain(mtk_hal_mms, hal_allocator)
|
|
allow mtk_hal_mms mtk_hal_pq:binder call;
|