62cf1a413a
[Detail] There is a workaround for bring-up, now it needs to be modified. [Solution] 1.Split workaround to sepcial *.te 2.Modify ged sepolicy 3.Modify mistake 4.Add sepolicy MTK-Commit-Id: 5a2b7e3fdc826a7ca6bc70a3810f14c1661e7d79 Change-Id: I0894de45e014a5eae754e35b57fbc9b21bc4bf90 CR-Id: ALPS04639771 Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
35 lines
925 B
Plaintext
35 lines
925 B
Plaintext
# ==============================================
|
|
# MTK Policy Rule
|
|
# ============
|
|
|
|
# Date : WK14.37
|
|
# Operation : Migration
|
|
# Purpose : for opetator
|
|
allow bootanim bootani_prop:property_service set;
|
|
|
|
# Date : WK14.46
|
|
# Operation : Migration
|
|
# Purpose : For MTK Emulator HW GPU
|
|
allow bootanim qemu_pipe_device:chr_file rw_file_perms;
|
|
|
|
# Date : WK16.33
|
|
# Purpose: Allow to access ged for gralloc_extra functions
|
|
allow bootanim proc_ged:file rw_file_perms;
|
|
|
|
# Date : WK17.43
|
|
# Operation : Migration
|
|
# Purpose : For MTK perfmgr
|
|
allow bootanim proc_perfmgr:dir r_dir_perms;
|
|
allow bootanim proc_perfmgr:file r_file_perms;
|
|
|
|
# Date : WK19.11
|
|
# Operation : Migration
|
|
# Purpose : Allow to access ged for ioctl related functions
|
|
allowxperm bootanim proc_ged:file ioctl { proc_ged_ioctls };
|
|
allowxperm bootanim proc_perfmgr:file ioctl {
|
|
PERFMGR_FPSGO_QUEUE
|
|
PERFMGR_FPSGO_DEQUEUE
|
|
PERFMGR_FPSGO_QUEUE_CONNECT
|
|
PERFMGR_FPSGO_BQID
|
|
};
|