Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge "display: add sepolicy for hal_graphics_composer" into sc-dev am: 96d0c28dc4

Browse source 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/13880429

Change-Id: I0f7c6b3d3c172fd4e2038f9bef7d6b7a0fa9436b
This commit is contained in:
TreeHugger Robot 2021-03-16 12:38:49 +00:00 committed by Automerger Merge Worker
commit 411cd08e91
3 changed files with 5 additions and 23 deletions
Download patch file Download diff file Expand all files Collapse all files

4
display/gs101/hal_graphics_composer_default.te
View file

@ -32,3 +32,7 @@ add_service(hal_graphics_composer_default, vendor_displaycolor_service)
add_service(hal_graphics_composer_default, hal_pixel_display_service) add_service(hal_graphics_composer_default, hal_pixel_display_service)
binder_use(hal_graphics_composer_default) binder_use(hal_graphics_composer_default)
get_prop(hal_graphics_composer_default, boot_status_prop);
# allow HWC to access vendor log file
allow hal_graphics_composer_default vendor_log_file:file create_file_perms;

23
tracking_denials/hal_graphics_composer_default.te
View file

@ -1,23 +0,0 @@
# b/181712799
dontaudit hal_graphics_composer_default hal_power_default:binder { call };
dontaudit hal_graphics_composer_default boot_status_prop:file { read };
dontaudit hal_graphics_composer_default boot_status_prop:file { open };
dontaudit hal_graphics_composer_default boot_status_prop:file { getattr };
dontaudit hal_graphics_composer_default boot_status_prop:file { map };
dontaudit hal_graphics_composer_default hal_power_default:binder { call };
dontaudit hal_graphics_composer_default boot_status_prop:file { map };
dontaudit hal_graphics_composer_default vendor_log_file:file { create };
dontaudit hal_graphics_composer_default vendor_log_file:file { append open };
dontaudit hal_graphics_composer_default vendor_log_file:file { getattr };
dontaudit hal_graphics_composer_default vendor_log_file:file { getattr };
dontaudit hal_graphics_composer_default vendor_log_file:file { append open };
dontaudit hal_graphics_composer_default vendor_log_file:file { create };
dontaudit hal_graphics_composer_default hal_power_service:service_manager { find };
dontaudit hal_graphics_composer_default boot_status_prop:file { read };
dontaudit hal_graphics_composer_default boot_status_prop:file { open };
dontaudit hal_graphics_composer_default boot_status_prop:file { getattr };
# b/181915065
dontaudit hal_graphics_composer_default hal_dumpstate_default:fd { use };
dontaudit hal_graphics_composer_default hal_dumpstate_default:fifo_file { write };
dontaudit hal_graphics_composer_default hal_dumpstate_default:fd { use };
dontaudit hal_graphics_composer_default hal_dumpstate_default:fifo_file { write };

1
whitechapel/vendor/google/hal_graphics_composer_default.te vendored
View file

@ -3,3 +3,4 @@ allow hal_graphics_composer_default sysfs_display:file rw_file_perms;
# allow HWC to access power hal # allow HWC to access power hal
binder_call(hal_graphics_composer_default, hal_power_default); binder_call(hal_graphics_composer_default, hal_power_default);
hal_client_domain(hal_graphics_composer_default, hal_power);