50ab0b1ace
Add a macro to make this easier for other processes as well. Change-Id: I489d0ce042fe5ef88dc767a6fbdb9b795be91601 (cherry picked from commit c2b9c1561e4bd7ac86d78b44ca7927994e781da0)
41 lines
1.2 KiB
Text
41 lines
1.2 KiB
Text
# nfc subsystem
|
|
type nfc, domain, domain_deprecated;
|
|
app_domain(nfc)
|
|
net_domain(nfc)
|
|
binder_service(nfc)
|
|
|
|
# hwbinder access
|
|
hwbinder_use(nfc)
|
|
|
|
# Set NFC properties
|
|
set_prop(nfc, nfc_prop)
|
|
|
|
# NFC device access.
|
|
allow nfc nfc_device:chr_file rw_file_perms;
|
|
|
|
# Data file accesses.
|
|
allow nfc nfc_data_file:dir create_dir_perms;
|
|
allow nfc nfc_data_file:notdevfile_class_set create_file_perms;
|
|
|
|
allow nfc sysfs_nfc_power_writable:file rw_file_perms;
|
|
allow nfc sysfs:file write;
|
|
|
|
# TODO: added to match above sysfs rule. Remove me?
|
|
allow nfc sysfs_usb:file write;
|
|
|
|
# SoundPool loading and playback
|
|
allow nfc mediaserver_service:service_manager find;
|
|
allow nfc audioserver_service:service_manager find;
|
|
allow nfc mediaextractor_service:service_manager find;
|
|
allow nfc mediacodec_service:service_manager find;
|
|
|
|
allow nfc nfc_service:service_manager { add find };
|
|
allow nfc radio_service:service_manager find;
|
|
allow nfc surfaceflinger_service:service_manager find;
|
|
allow nfc app_api_service:service_manager find;
|
|
allow nfc system_api_service:service_manager find;
|
|
|
|
# already open bugreport file descriptors may be shared with
|
|
# the nfc process, from a file in
|
|
# /data/data/com.android.shell/files/bugreports/bugreport-*.
|
|
allow nfc shell_data_file:file read;
|