Initialising brunch based on davidevinavil device tree (CM14.0 branch)

author: Fedor917 <cryscript@gmail.com> 2016-11-10 15:53:00 +0700
committer: Fedor917 <cryscript@gmail.com> 2016-11-10 15:53:00 +0700
commit: f7102b858dc849cc94255bc96f95b880dfd93452 (patch)
tree: 3e6164b0b02bb62f7093ddc44bbbaebaf44aacf8 /sepolicy/ifaadaemon.te
parent: cc834f0c4bb0ce51baddc42d11935438bf63394a (diff)
1 files changed, 26 insertions, 0 deletions
diff --git a/sepolicy/ifaadaemon.te b/sepolicy/ifaadaemon.te
new file mode 100755
index 0000000..c458692
--- /dev/null
+++ b/sepolicy/ifaadaemon.te
@@ -0,0 +1,26 @@
+type ifaadaemon, domain;
+type ifaadaemon_exec, exec_type, file_type;
+
+#Allow for transition from init domain to ifaadaemon
+init_daemon_domain(ifaadaemon)
+
+#Allow ifaadaemon to use Binder IPC
+binder_use(ifaadaemon)
+
+#Allow servicemanager to interact with ifaadaemon
+binder_call(ifaadaemon, servicemanager)
+
+#Allow alipay_app to interact with ifaadaemon
+binder_call(ifaadaemon, alipay_app)
+
+#Mark ifaadaemon as a Binder service domain
+binder_service(ifaadaemon)
+
+#Allow ifaadaemon to be registered with service manager
+allow ifaadaemon ifaadaemon_service:service_manager add;
+
+#Allow access to tee device
+allow ifaadaemon tee_device:chr_file rw_file_perms;
+
+#Allow access to firmware
+r_dir_file(ifaadaemon, firmware_file)
author	Fedor917 <cryscript@gmail.com>	2016-11-10 15:53:00 +0700
committer	Fedor917 <cryscript@gmail.com>	2016-11-10 15:53:00 +0700
commit	f7102b858dc849cc94255bc96f95b880dfd93452 (patch)
tree	3e6164b0b02bb62f7093ddc44bbbaebaf44aacf8 /sepolicy/ifaadaemon.te
parent	cc834f0c4bb0ce51baddc42d11935438bf63394a (diff)