5009efa776
from: 71e609c24c97fc8d44843af30527cbeb90d5dcdf Bug: 167996145 Change-Id: Ie00e7e0983a3ca695bbd5140c929d07a80144301
22 lines
861 B
Text
22 lines
861 B
Text
#
|
|
# USF sensor HAL SELinux type enforcements.
|
|
#
|
|
|
|
# Allow reading of sensor registry persist files.
|
|
allow hal_sensors_default persist_file:dir search;
|
|
allow hal_sensors_default mnt_vendor_file:dir search;
|
|
r_dir_file(hal_sensors_default, persist_sensor_reg_file)
|
|
|
|
# Allow creation and writing of sensor registry data files.
|
|
allow hal_sensors_default sensor_reg_data_file:dir rw_dir_perms;
|
|
allow hal_sensors_default sensor_reg_data_file:file create_file_perms;
|
|
|
|
# Allow access to the AoC communication driver.
|
|
allow hal_sensors_default aoc_device:chr_file rw_file_perms;
|
|
|
|
# Allow access to the AoC clock and kernel boot time sys FS node. This is needed
|
|
# to synchronize the AP and AoC clock timestamps.
|
|
allow hal_sensors_default sysfs_aoc_boottime:file rw_file_perms;
|
|
|
|
# Allow create thread to watch AOC's device.
|
|
allow hal_sensors_default device:dir r_dir_perms;
|