112b2a020d
add sepolicy for mms while using m4u MTK-Commit-Id: 431f4e539496a36b144601d8fe9cbfc31ac0aa3f Change-Id: I7aec7ccdcf48522e6a3cada1a164356a06b0dbbd CR-Id: ALPS04257872 Feature: [Module]MDP Driver
32 lines
1.2 KiB
Plaintext
Executable File
32 lines
1.2 KiB
Plaintext
Executable File
# ==============================================
|
|
# Policy File of /vendor/bin/hw/vendor.mediatek.hardware.mms@1.0-service Executable File
|
|
|
|
# ==============================================
|
|
# Type Declaration
|
|
# ==============================================
|
|
|
|
type mtk_hal_mms, domain;
|
|
type mtk_hal_mms_exec, exec_type, file_type, vendor_file_type;
|
|
|
|
# ==============================================
|
|
# MTK Policy Rule
|
|
# ==============================================
|
|
|
|
# Setup for domain transition
|
|
init_daemon_domain(mtk_hal_mms)
|
|
|
|
# Allow to use HWBinder IPC
|
|
hwbinder_use(mtk_hal_mms);
|
|
|
|
# Allow a set of permissions required for a domain to be a server which provides a HAL implementation over HWBinder.
|
|
hal_server_domain(mtk_hal_mms, hal_mms)
|
|
|
|
# add/find permission rule to hwservicemanager
|
|
add_hwservice(hal_mms_server, mtk_hal_mms_hwservice)
|
|
|
|
# Purpose : Allow to use kernel driver
|
|
allow mtk_hal_mms graphics_device:chr_file { read write open ioctl };
|
|
allow mtk_hal_mms ion_device:chr_file { read open ioctl };
|
|
allow mtk_hal_mms mtk_cmdq_device:chr_file { read open ioctl };
|
|
allow mtk_hal_mms mtk_hal_pq_hwservice:hwservice_manager find;
|
|
allow mtk_hal_mms proc:file r_file_perms; |