336d0fed4e
I took current AOSP policy as base, then removed sepolicy so that the set of type and attributes was a subset of types and attributes in Q sepolicy, with exception of those that have not yet been cleand up in current AOSP: mediaswcodec_server netd_socket mediaextractor_update_service thermalserviced thermalserviced_exec Bug: 133196056 Test: n/a Change-Id: I863429d61d3fad0272c1d3f1e429cd997513a74a Merged-In: I3e091652fa8d1757b1f71f7559186d5b32f000d5
34 lines
1.1 KiB
Text
34 lines
1.1 KiB
Text
# nfc subsystem
|
|
typeattribute nfc coredomain;
|
|
app_domain(nfc)
|
|
net_domain(nfc)
|
|
|
|
binder_service(nfc)
|
|
add_service(nfc, nfc_service)
|
|
|
|
hal_client_domain(nfc, hal_nfc)
|
|
|
|
# Data file accesses.
|
|
allow nfc nfc_data_file:dir create_dir_perms;
|
|
allow nfc nfc_data_file:notdevfile_class_set create_file_perms;
|
|
|
|
# SoundPool loading and playback
|
|
allow nfc audioserver_service:service_manager find;
|
|
allow nfc drmserver_service:service_manager find;
|
|
allow nfc mediacodec_service:service_manager find;
|
|
allow nfc mediametrics_service:service_manager find;
|
|
allow nfc mediaextractor_service:service_manager find;
|
|
allow nfc mediaserver_service:service_manager find;
|
|
|
|
allow nfc radio_service:service_manager find;
|
|
allow nfc app_api_service:service_manager find;
|
|
allow nfc system_api_service:service_manager find;
|
|
allow nfc vr_manager_service:service_manager find;
|
|
allow nfc secure_element_service:service_manager find;
|
|
|
|
set_prop(nfc, nfc_prop);
|
|
|
|
# already open bugreport file descriptors may be shared with
|
|
# the nfc process, from a file in
|
|
# /data/data/com.android.shell/files/bugreports/bugreport-*.
|
|
allow nfc shell_data_file:file read;
|