sepolicy: Update the DMA-BUF heap labels
Change the name of the DMA-BUF heap labels. Change-Id: Ia1f2894f06e99d31dca7554b55a8503bdefe1a92
This commit is contained in:
Chris Goldsworthy
parent
ea3cec8586
commit
284f644eb9
4 changed files with 21 additions and 21 deletions
2
generic/vendor/common/app.te
vendored
2
generic/vendor/common/app.te
vendored
|
|
@ -35,6 +35,6 @@ get_prop(appdomain, vendor_adsprpc_prop)
|
|||
allow appdomain vendor_npu_device:chr_file r_file_perms;
|
||||
|
||||
# Allow all apps to access /dev/dma_heap/qcom,system
|
||||
allow { appdomain -isolated_app } qcom_dmabuf_system_heap_device:chr_file r_file_perms;
|
||||
allow { appdomain -isolated_app } vendor_dmabuf_system_heap_device:chr_file r_file_perms;
|
||||
|
||||
dontaudit appdomain vendor_hal_qspmhal_hwservice:hwservice_manager find;
|
||||
|
|
|
|||
18
generic/vendor/common/device.te
vendored
18
generic/vendor/common/device.te
vendored
|
|
@ -45,15 +45,15 @@ type vendor_modem_efs_partition_device, dev_type;
|
|||
type vendor_mdtp_device, dev_type;
|
||||
type vendor_persist_block_device, dev_type;
|
||||
|
||||
type qcom_dmabuf_system_heap_device, dev_type, mlstrustedobject;
|
||||
type qcom_dmabuf_adsp_heap_device, dev_type;
|
||||
type qcom_dmabuf_secure_spss_heap_device, dev_type;
|
||||
type qcom_dmabuf_user_contig_heap_device, dev_type;
|
||||
type qcom_dmabuf_secure_qseecom_heap_device, dev_type;
|
||||
type qcom_dmabuf_secure_qseecom_ta_heap_device, dev_type;
|
||||
type qcom_dmabuf_secure_display_heap_device, dev_type;
|
||||
type qcom_dmabuf_display_heap_device, dev_type;
|
||||
type qcom_dmabuf_audio_ml_heap_device, dev_type;
|
||||
type vendor_dmabuf_system_heap_device, dev_type, mlstrustedobject;
|
||||
type vendor_dmabuf_adsp_heap_device, dev_type;
|
||||
type vendor_dmabuf_secure_spss_heap_device, dev_type;
|
||||
type vendor_dmabuf_user_contig_heap_device, dev_type;
|
||||
type vendor_dmabuf_secure_qseecom_heap_device, dev_type;
|
||||
type vendor_dmabuf_secure_qseecom_ta_heap_device, dev_type;
|
||||
type vendor_dmabuf_secure_display_heap_device, dev_type;
|
||||
type vendor_dmabuf_display_heap_device, dev_type;
|
||||
type vendor_dmabuf_audio_ml_heap_device, dev_type;
|
||||
|
||||
type vendor_vm_data_block_device, dev_type;
|
||||
type vendor_qsee_ipc_irq_spss_device, dev_type;
|
||||
|
|
|
|||
18
generic/vendor/common/file_contexts
vendored
18
generic/vendor/common/file_contexts
vendored
|
|
@ -112,16 +112,16 @@
|
|||
# Block device for ZRAM
|
||||
/dev/block/zram0 u:object_r:swap_block_device:s0
|
||||
|
||||
/dev/dma_heap/qcom,system u:object_r:qcom_dmabuf_system_heap_device:s0
|
||||
/dev/dma_heap/qcom,system u:object_r:vendor_dmabuf_system_heap_device:s0
|
||||
|
||||
/dev/dma_heap/qcom,adsp u:object_r:qcom_dmabuf_adsp_heap_device:s0
|
||||
/dev/dma_heap/qcom,secure-spss u:object_r:qcom_dmabuf_secure_spss_heap_device:s0
|
||||
/dev/dma_heap/qcom,user-contig u:object_r:qcom_dmabuf_user_contig_heap_device:s0
|
||||
/dev/dma_heap/qcom,secure-qseecom u:object_r:qcom_dmabuf_secure_qseecom_heap_device:s0
|
||||
/dev/dma_heap/qcom,secure-qseecom-ta u:object_r:qcom_dmabuf_secure_qseecom_ta_heap_device:s0
|
||||
/dev/dma_heap/qcom,secure-display u:object_r:qcom_dmabuf_secure_display_heap_device:s0
|
||||
/dev/dma_heap/qcom,display u:object_r:qcom_dmabuf_display_heap_device:s0
|
||||
/dev/dma_heap/qcom,audio-ml u:object_r:qcom_dmabuf_audio_ml_heap_device:s0
|
||||
/dev/dma_heap/qcom,adsp u:object_r:vendor_dmabuf_adsp_heap_device:s0
|
||||
/dev/dma_heap/qcom,secure-spss u:object_r:vendor_dmabuf_secure_spss_heap_device:s0
|
||||
/dev/dma_heap/qcom,user-contig u:object_r:vendor_dmabuf_user_contig_heap_device:s0
|
||||
/dev/dma_heap/qcom,secure-qseecom u:object_r:vendor_dmabuf_secure_qseecom_heap_device:s0
|
||||
/dev/dma_heap/qcom,secure-qseecom-ta u:object_r:vendor_dmabuf_secure_qseecom_ta_heap_device:s0
|
||||
/dev/dma_heap/qcom,secure-display u:object_r:vendor_dmabuf_secure_display_heap_device:s0
|
||||
/dev/dma_heap/qcom,display u:object_r:vendor_dmabuf_display_heap_device:s0
|
||||
/dev/dma_heap/qcom,audio-ml u:object_r:vendor_dmabuf_audio_ml_heap_device:s0
|
||||
|
||||
# files in /vendor
|
||||
/vendor/firmware(/.*)? u:object_r:vendor_firmware_file:s0
|
||||
|
|
|
|||
4
generic/vendor/common/system_server.te
vendored
4
generic/vendor/common/system_server.te
vendored
|
|
@ -32,7 +32,7 @@ binder_call(system_server, hal_camera_default)
|
|||
binder_call(system_server, hal_graphics_composer)
|
||||
|
||||
# Access to /dev/dma_heap/qcom,system
|
||||
allow system_server qcom_dmabuf_system_heap_device:chr_file r_file_perms;
|
||||
allow system_server vendor_dmabuf_system_heap_device:chr_file r_file_perms;
|
||||
|
||||
# vendor_location
|
||||
binder_call(system_server, vendor_location);
|
||||
|
|
@ -54,4 +54,4 @@ get_prop(system_server, vendor_display_prop)
|
|||
# allow system_server to read/acess peripheral manager.
|
||||
get_prop(system_server, vendor_per_mgr_state_prop);
|
||||
|
||||
hal_client_domain(system_server, vendor_hal_dataconnection_qti)
|
||||
hal_client_domain(system_server, vendor_hal_dataconnection_qti)
|
||||
|
|
|
|||
Loading…
Reference in a new issue