diff options
| author | Dilip Gudlur <dgudlur@codeaurora.org> | 2015-01-02 18:26:49 -0800 |
|---|---|---|
| committer | Steve Kondik <steve@cyngn.com> | 2015-01-15 18:15:17 -0800 |
| commit | c6a655da9c9e21d5d4eb8754585893a4ccbd6d2a (patch) | |
| tree | 1a87785395a61443360f2f770dc414ab1a414fd9 | |
| parent | 46b55b9d66f311f63ac3b8310ccb1843b271e796 (diff) | |
| download | android_device_qcom_sepolicy-c6a655da9c9e21d5d4eb8754585893a4ccbd6d2a.tar.gz android_device_qcom_sepolicy-c6a655da9c9e21d5d4eb8754585893a4ccbd6d2a.tar.bz2 android_device_qcom_sepolicy-c6a655da9c9e21d5d4eb8754585893a4ccbd6d2a.zip | |
sepolicy: add appdomain permissions for perfd
Allow appdomain to access perfd.
Change-Id: I20c26842b643c49304a066a5726b9dc531d1a81e
| -rw-r--r-- | common/app.te | 5 | ||||
| -rw-r--r-- | common/untrusted_app.te | 3 |
2 files changed, 5 insertions, 3 deletions
diff --git a/common/app.te b/common/app.te index ac49f975..f65c034b 100644 --- a/common/app.te +++ b/common/app.te @@ -7,3 +7,8 @@ unix_socket_connect(appdomain, dpmwrapper, dpmd) unix_socket_connect(appdomain, qlogd, qlogd) #Allow all apps to open and send ioctl to qdsp device allow appdomain qdsp_device:chr_file r_file_perms; + +# access to perflock +allow appdomain mpctl_socket:dir r_dir_perms; +unix_socket_send(appdomain, mpctl, perfd) +unix_socket_connect(appdomain, mpctl, perfd) diff --git a/common/untrusted_app.te b/common/untrusted_app.te index 4bb8e8ef..cfecfa21 100644 --- a/common/untrusted_app.te +++ b/common/untrusted_app.te @@ -1,7 +1,4 @@ # access to perflock -allow untrusted_app mpctl_socket:dir r_dir_perms; -unix_socket_send(untrusted_app, mpctl, perfd) -unix_socket_connect(untrusted_app, mpctl, perfd) unix_socket_send(untrusted_app, mpctl, mpdecision) unix_socket_connect(untrusted_app, mpctl, mpdecision) |