1fc0755033
Allow the services to do binder calls to system_server in order to check for app permissions. Bug: 37542947 Test: Compiled and ran on device ensuring no permission errors Change-Id: If91895607eb118f689cf2e11c63945e9f83bf2a0
16 lines
595 B
Text
16 lines
595 B
Text
type virtual_touchpad, domain;
|
|
type virtual_touchpad_exec, exec_type, file_type;
|
|
|
|
binder_use(virtual_touchpad)
|
|
binder_service(virtual_touchpad)
|
|
add_service(virtual_touchpad, virtual_touchpad_service)
|
|
|
|
# Needed to check app permissions.
|
|
binder_call(virtual_touchpad, system_server)
|
|
|
|
# Requires access to /dev/uinput to create and feed the virtual device.
|
|
allow virtual_touchpad uhid_device:chr_file { w_file_perms ioctl };
|
|
|
|
# Requires access to the permission service to validate that clients have the
|
|
# appropriate VR permissions.
|
|
allow virtual_touchpad permission_service:service_manager find;
|