aosp12/device/mediatek/wembley-sepolicy/non_plat/hal_graphics_composer_defau...

68 lines
2.6 KiB
Plaintext

vndbinder_use(hal_graphics_composer_default)
allow hal_graphics_composer_default debugfs_ged:dir search;
# Date : WK17.09
# Operation : Add sepolicy
# Purpose : Add polivy for hwc HIDL
allow hal_graphics_composer_default proc_ged:file r_file_perms;
allow hal_graphics_composer_default self:netlink_kobject_uevent_socket { read bind create setopt };
# Date : WK17.21
# Purpose: GPU driver required
allow hal_graphics_composer_default sw_sync_device:chr_file rw_file_perms;
allow hal_graphics_composer_default hal_graphics_mapper_hwservice:hwservice_manager find;
# Date : W17.24
# Purpose: GPU driver required
allow hal_graphics_composer_default gpu_device:dir search;
allow hal_graphics_composer_default debugfs_ion:dir search;
allow hal_graphics_composer_default debugfs_tracing:file write;
allow hal_graphics_composer_default debugfs_tracing:file open;
# Date : WK17.30
# Operation : O Migration
# Purpose: Allow to access cmdq driver
allow hal_graphics_composer_default mtk_cmdq_device:chr_file r_file_perms;
# Date : W17.30
# Add for control PowerHAL
hal_client_domain(hal_graphics_composer_default, hal_power)
# Date : WK17.32
# Operation : O Migration
# Purpose: Allow to access property
set_prop(hal_graphics_composer_default, vendor_mtk_graphics_hwc_pid_prop)
set_prop(hal_graphics_composer_default, vendor_mtk_graphics_hwc_latch_unsignaled_prop)
set_prop(hal_graphics_composer_default, vendor_mtk_graphics_hwc_hdr_prop)
set_prop(hal_graphics_composer_default, vendor_mtk_graphics_hwc_validate_separate_prop)
# Date : WK18.03
# Purpose: Allow to access property dev/mdp_sync
allow hal_graphics_composer_default mtk_mdp_sync:chr_file r_file_perms;
allow hal_graphics_composer_default mtk_mdp_device:chr_file r_file_perms;
allow hal_graphics_composer_default mdp_device:chr_file rw_file_perms;
allow hal_graphics_composer_default tee_device:chr_file rw_file_perms;
allowxperm hal_graphics_composer_default proc_ged:file ioctl { proc_ged_ioctls };
# Date: 2018/11/08
# Operation : JPEG
# Purpose : JPEG need to use PQ via MMS HIDL
allow hal_graphics_composer_default sysfs_boot_mode:file r_file_perms;
# Date : WK19.46
# Purpose: Allow to access ged debug node
allow hal_graphics_composer_default debugfs_ged:file { w_file_perms };
# Data: 2019/09/04
# Purpose: Display architecture chage to DRM, so HWC has to access
# the DRM device node "/dev/dri/card0".
allow hal_graphics_composer_default dri_device:chr_file rw_file_perms;
# Data: 2020/03/25
# Purpose: HWC has to access allocator for dbq
hal_client_domain(hal_graphics_composer_default, hal_graphics_allocator);
binder_call(hal_graphics_composer_default, hal_graphics_allocator)