| wangxl | 5b6293a | 2015-02-03 21:10:20 +0800 | [diff] [blame^] | 1 | # allow mediaserver to communicate with cnd |
| 2 | unix_socket_connect(mediaserver, cnd, cnd) |
| 3 | |
| 4 | allow mediaserver camera_device:chr_file rw_file_perms; |
| 5 | unix_socket_send(mediaserver, camera, mm-qcamerad) |
| 6 | |
| 7 | allow mediaserver tee_device:chr_file rw_file_perms; |
| 8 | allow mediaserver qdsp_device:chr_file r_file_perms; |
| 9 | |
| 10 | allow mediaserver self:socket create_socket_perms; |
| 11 | |
| 12 | binder_call(mediaserver, rild) |
| 13 | |
| 14 | qmux_socket(mediaserver) |
| 15 | allow mediaserver camera_data_file:sock_file write; |
| 16 | userdebug_or_eng(` |
| 17 | allow mediaserver camera_data_file:dir rw_dir_perms; |
| 18 | allow mediaserver camera_data_file:file create_file_perms; |
| 19 | ') |
| 20 | |
| 21 | allow mediaserver sysfs_esoc:dir r_dir_perms; |
| 22 | allow mediaserver sysfs_esoc:lnk_file read; |
| 23 | allow mediaserver system_app_data_file:file rw_file_perms; |
| 24 | # access to perflock |
| 25 | allow mediaserver mpctl_socket:dir r_dir_perms; |
| 26 | unix_socket_send(mediaserver, mpctl, mpdecision) |
| 27 | unix_socket_connect(mediaserver, mpctl, mpdecision) |
| 28 | |
| 29 | # access to perflock |
| 30 | allow mediaserver mpctl_socket:dir r_dir_perms; |
| 31 | unix_socket_send(mediaserver, mpctl, perfd) |
| 32 | unix_socket_connect(mediaserver, mpctl, perfd) |
| 33 | |
| 34 | # for thermal sock files |
| 35 | unix_socket_connect(mediaserver, thermal, thermal-engine) |
| 36 | |
| 37 | #allow mediaserver to communicate with timedaemon |
| 38 | allow mediaserver time_daemon:unix_stream_socket connectto; |