review graphics related sepolicy
Bug: 196916111 Test: boot to home Change-Id: I43a875fb69e4237009b0515d8db6ebac8e2982b5
This commit is contained in:
Adam Shih
parent
01d2b96516
commit
d57c9cd1fc
5 changed files with 3 additions and 25 deletions
|
|
@ -6,12 +6,7 @@
|
|||
/(vendor|system/vendor)/bin/hw/vendor\.samsung_slsi\.hardware\.power@1\.0-service u:object_r:hal_power_default_exec:s0
|
||||
/(vendor|system/vendor)/bin/hw/vendor\.samsung_slsi\.hardware\.configstore@1\.0-service u:object_r:hal_configstore_default_exec:s0
|
||||
/(vendor|system/vendor)/bin/hw/android\.hardware\.usb@1\.3-service\.gs201 u:object_r:hal_usb_impl_exec:s0
|
||||
/(vendor|system/vendor)/lib(64)?/libion_exynos\.so u:object_r:same_process_hal_file:s0
|
||||
|
||||
/(vendor|system/vendor)/lib(64)?/libOpenCL\.so u:object_r:same_process_hal_file:s0
|
||||
/(vendor|system/vendor)/lib(64)?/libOpenCL-pixel\.so u:object_r:same_process_hal_file:s0
|
||||
/(vendor|system/vendor)/lib(64)?/libdmabufheap\.so u:object_r:same_process_hal_file:s0
|
||||
/(vendor|system/vendor)/lib(64)?/libgpudataproducer\.so u:object_r:same_process_hal_file:s0
|
||||
|
||||
/vendor/bin/usf_stats u:object_r:vendor_usf_stats:s0
|
||||
/vendor/bin/usf_reg_edit u:object_r:vendor_usf_reg_edit:s0
|
||||
|
|
@ -30,9 +25,6 @@
|
|||
# Exynos Devices
|
||||
#
|
||||
/dev/bbd_pwrstat u:object_r:power_stats_device:s0
|
||||
/dev/dri/card0 u:object_r:graphics_device:s0
|
||||
/dev/fimg2d u:object_r:graphics_device:s0
|
||||
/dev/g2d u:object_r:graphics_device:s0
|
||||
/dev/tsmux u:object_r:video_device:s0
|
||||
/dev/repeater u:object_r:video_device:s0
|
||||
/dev/logbuffer_usbpd u:object_r:logbuffer_device:s0
|
||||
|
|
@ -65,8 +57,6 @@
|
|||
/vendor/bin/rlsservice u:object_r:rlsservice_exec:s0
|
||||
/mnt/vendor/persist/camera(/.*)? u:object_r:persist_camera_file:s0
|
||||
/data/vendor/camera(/.*)? u:object_r:vendor_camera_data_file:s0
|
||||
/vendor/lib(64)?/lib_aion_buffer\.so u:object_r:same_process_hal_file:s0
|
||||
/vendor/lib(64)?/libGralloc4Wrapper\.so u:object_r:same_process_hal_file:s0
|
||||
|
||||
/dev/stmvl53l1_ranging u:object_r:rls_device:s0
|
||||
|
||||
|
|
@ -194,11 +184,6 @@
|
|||
/vendor_dlkm/lib/modules/.*\.ko u:object_r:vendor_kernel_modules:s0
|
||||
|
||||
# Display
|
||||
/vendor/lib(64)?/libion_google\.so u:object_r:same_process_hal_file:s0
|
||||
/vendor/lib(64)?/libdrm\.so u:object_r:same_process_hal_file:s0
|
||||
/vendor/lib(64)?/hw/gralloc\.gs201\.so u:object_r:same_process_hal_file:s0
|
||||
/vendor/lib(64)?/hw/vulkan\.gs201\.so u:object_r:same_process_hal_file:s0
|
||||
/vendor/lib(64)?/arm\.graphics-V1-ndk\.so u:object_r:same_process_hal_file:s0
|
||||
/mnt/vendor/persist/display(/.*)? u:object_r:persist_display_file:s0
|
||||
|
||||
# Touch
|
||||
|
|
|
|||
|
|
@ -1,4 +0,0 @@
|
|||
allow hal_graphics_allocator_default sensor_direct_heap_device:chr_file r_file_perms;
|
||||
allow hal_graphics_allocator_default faceauth_heap_device:chr_file r_file_perms;
|
||||
allow hal_graphics_allocator_default vframe_heap_device:chr_file r_file_perms;
|
||||
allow hal_graphics_allocator_default vscaler_heap_device:chr_file r_file_perms;
|
||||
|
|
@ -1,6 +0,0 @@
|
|||
allow hal_graphics_composer_default sysfs_display:dir search;
|
||||
allow hal_graphics_composer_default sysfs_display:file rw_file_perms;
|
||||
|
||||
# allow HWC to access power hal
|
||||
binder_call(hal_graphics_composer_default, hal_power_default);
|
||||
hal_client_domain(hal_graphics_composer_default, hal_power);
|
||||
|
|
@ -20,6 +20,9 @@
|
|||
/vendor/firmware(/.*)? u:object_r:vendor_fw_file:s0
|
||||
|
||||
# Devices
|
||||
/dev/dri/card0 u:object_r:graphics_device:s0
|
||||
/dev/fimg2d u:object_r:graphics_device:s0
|
||||
/dev/g2d u:object_r:graphics_device:s0
|
||||
/dev/trusty-ipc-dev0 u:object_r:tee_device:s0
|
||||
/dev/sg1 u:object_r:sg_device:s0
|
||||
/dev/st54spi u:object_r:secure_element_device:s0
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue