| Ben Fennema | 52301e4 | 2017-10-17 12:24:04 -0700 | [diff] [blame] | 1 | #Allow access to nanohub device |
| 2 | allow hal_sensors sensors_device:chr_file rw_file_perms; |
| 3 | |
| 4 | # Allow acess to uinput for lidstate determination |
| 5 | allow hal_sensors uhid_device:chr_file rw_file_perms; |
| 6 | |
| 7 | # Allow access to saved settings file and nanohub_lock dir/file |
| 8 | allow hal_sensors sensor_vendor_data_file:dir create_dir_perms; |
| 9 | allow hal_sensors sensor_vendor_data_file:file create_file_perms; |
| 10 | |
| 11 | # Allow access to sensor properties |
| 12 | set_prop(hal_sensors, sensors_prop) |
| 13 | |
| 14 | # Allow access to gralloc shared memory (ion), for sensor direct report |
| 15 | allow hal_sensors ion_device:chr_file { open read ioctl }; |
| 16 | allow hal_sensors hal_graphics_allocator:fd use; |
| 17 | |
| 18 | # allow sensor hal to call scheduling policy service in system server |
| 19 | allow hal_sensors_default system_server:binder call; |
| 20 | |
| 21 | # allow access to detect change in /dev folder |
| 22 | allow hal_sensors_default device:dir { open read }; |