3518c9e7f8
This change adds selinux policies to allow EVS HAL implementations to
use cardisplayproxyd, which implements a stable AIDL version of the
automotive display proxy service interface.
Bug: 170401743
Bug: 217271351
Test: Manually confirm that evs_app renders the camera preview through
cardisplayproxyd
Change-Id: Ia301b782c6c031fe8351bdcda5ce264da6b8aa4d
31 lines
1.2 KiB
Text
31 lines
1.2 KiB
Text
# evs_mock mock hardware driver service
|
|
type hal_evs_default, domain;
|
|
hal_server_domain(hal_evs_default, hal_evs)
|
|
|
|
# allow init to launch processes in this context
|
|
type hal_evs_default_exec, exec_type, vendor_file_type, file_type;
|
|
init_daemon_domain(hal_evs_default)
|
|
|
|
# allow to use a graphic buffer
|
|
hal_client_domain(hal_evs_default, hal_configstore)
|
|
hal_client_domain(hal_evs_default, hal_graphics_allocator)
|
|
hal_client_domain(hal_evs_default, hal_graphics_composer)
|
|
|
|
# allow to use automotive display service
|
|
binder_call(hal_evs_default, automotive_display_service_server)
|
|
allow hal_evs_default fwk_automotive_display_hwservice:hwservice_manager find;
|
|
allow hal_evs_default fwk_automotive_display_service:service_manager find;
|
|
|
|
# allow to use hidl token service to retrieve HGBP object
|
|
allow hal_evs_default hidl_token_hwservice:hwservice_manager find;
|
|
|
|
# allow to access data from surfaceflinger
|
|
allow hal_evs_default surfaceflinger:fd use;
|
|
|
|
# allow to access EGL
|
|
allow hal_evs_default gpu_device:chr_file rw_file_perms;
|
|
allow hal_evs_default gpu_device:dir search;
|
|
|
|
# allow to monitor uevents and access video devices
|
|
allow hal_evs_default device:dir r_dir_perms;
|
|
allow hal_evs_default video_device:chr_file rw_file_perms;
|