61d7044c46
[Detail] New sepolicy path declared and also support legacy android. MTK-Commit-Id: 8982268bbef8f852c153428f1a5f83849953c7c2 Change-Id: Ic10f297a312ff2e89e44a0aa323ffa11bc78ff6e CR-Id: ALPS04767749 Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
51 lines
1.4 KiB
Plaintext
51 lines
1.4 KiB
Plaintext
# ==============================================
|
|
# MTK Policy Rule
|
|
# ============
|
|
|
|
# Date : WK14.37
|
|
# Operation : Migration
|
|
# Purpose : for opetator
|
|
allow mtkbootanimation bootani_prop:property_service set;
|
|
|
|
# Date : WK14.46
|
|
# Operation : Migration
|
|
# Purpose : For MTK Emulator HW GPU
|
|
allow mtkbootanimation qemu_pipe_device:chr_file rw_file_perms;
|
|
|
|
# Date : WK16.33
|
|
# Purpose: Allow to access ged for gralloc_extra functions
|
|
allow mtkbootanimation proc_ged:file rw_file_perms;
|
|
|
|
# ==============================================
|
|
# Type Declaration for secmem
|
|
# ==============================================
|
|
type proc_secmem, fs_type, proc_type;
|
|
# genfscon proc /secmem0 u:object_r:proc_secmem:s0;
|
|
|
|
# Date : WK14.31
|
|
# Operation : Migration
|
|
# Purpose : access to sec mem proc interface.
|
|
allow mtkbootanimation proc_secmem:file { read open};
|
|
|
|
# Date : WK14.36
|
|
# Operation : Migration
|
|
# Purpose : for ui
|
|
# allow mtkbootanimation guiext-server:binder call;
|
|
# allow mtkbootanimation guiext-server:binder transfer;
|
|
|
|
# Date : WK16.29
|
|
# Operation : Migration
|
|
# Purpose : for gpu access
|
|
allow mtkbootanimation dri_device:chr_file { read write open ioctl };
|
|
|
|
# Date : WK17.29
|
|
# Operation : Migration
|
|
# Purpose : for device bring up
|
|
# allow mtkbootanimation guiext-server_service:service_manager find;
|
|
|
|
# Date : WK17.48
|
|
# Operation : Migration
|
|
# Purpose : FPSGO integration
|
|
allow mtkbootanimation proc_perfmgr:dir {search read};
|
|
allow mtkbootanimation proc_perfmgr:file {open read ioctl};
|