Add MTC specific SELinux permissions for VrCore

Bug: 78638290 Test: boot Change-Id: I560d3907088336aff8bd43747f1a299b67a63e9f
author: Akshay Joshi <joshiakshay@google.com> 2018-06-11 15:51:53 -0700
committer: Akshay Joshi <joshiakshay@google.com> 2018-06-11 15:51:53 -0700
commit: a754ddf83838f0cecf3e85c2a9231fbd321daa63 (patch)
tree: 7baf9cb33d1f908644e22e33397906306084526c
parent: cf0636cbc21bf95f7de6c525e8357eb8d9fffce0 (diff)
download: device_google_vrservices-a754ddf83838f0cecf3e85c2a9231fbd321daa63.tar.gz
device_google_vrservices-a754ddf83838f0cecf3e85c2a9231fbd321daa63.tar.bz2
device_google_vrservices-a754ddf83838f0cecf3e85c2a9231fbd321daa63.zip
1 files changed, 13 insertions, 0 deletions
diff --git a/vrcore/sepolicy_mtc/vrcore_app.te b/vrcore/sepolicy_mtc/vrcore_app.te
new file mode 100644
index 0000000..a037610
--- /dev/null
+++ b/vrcore/sepolicy_mtc/vrcore_app.te
@@ -0,0 +1,13 @@
+###
+### MTC specific VrCore permissions
+###
+
+allow vrcore_app persist_file:dir search;
+
+# allow vrcore to access dsp
+allow vrcore_app qdsp_device:chr_file r_file_perms;
+r_dir_file(vrcore_app, adsprpcd_file)
+
+# allow vrcore to access sensor service
+allow vrcore_app fwk_sensor_hwservice:hwservice_manager find;
+allow vrcore_app sensorservice_service:service_manager find;
author	Akshay Joshi <joshiakshay@google.com>	2018-06-11 15:51:53 -0700
committer	Akshay Joshi <joshiakshay@google.com>	2018-06-11 15:51:53 -0700
commit	a754ddf83838f0cecf3e85c2a9231fbd321daa63 (patch)
tree	7baf9cb33d1f908644e22e33397906306084526c
parent	cf0636cbc21bf95f7de6c525e8357eb8d9fffce0 (diff)
download	device_google_vrservices-a754ddf83838f0cecf3e85c2a9231fbd321daa63.tar.gz device_google_vrservices-a754ddf83838f0cecf3e85c2a9231fbd321daa63.tar.bz2 device_google_vrservices-a754ddf83838f0cecf3e85c2a9231fbd321daa63.zip