Merge "Add SEPolicy for audio HAL to use EdgeTpu" into main

commit: f382fb25df1c6ec58f5a1195e12da2442725d495 [log] [tgz]
author: Feiyu Chen <feiyuchen@google.com> Thu Nov 09 18:55:36 2023 +0000
committer: Android (Google) Code Review <android-gerrit@google.com> Thu Nov 09 18:55:36 2023 +0000
tree: 1d86e7e1dbed44a7ba84bd83f3ec81b8fae13935
parent: c19870b2f7322bba5ff9879a69f0acb8a21b5b53 [diff]
parent: 9f6785063af2bb5c7a11b79a9d98218f3d0e6493 [diff]
diff --git a/edgetpu/sepolicy/hal_audio_default.te b/edgetpu/sepolicy/hal_audio_default.te
new file mode 100644
index 0000000..2646fcc
--- /dev/null
+++ b/edgetpu/sepolicy/hal_audio_default.te

@@ -0,0 +1,14 @@
+# Allow the audio hal to access the EdgeTPU service and the
+# Android shared memory allocated by the EdgeTPU service for
+# on-device compilation.
+allow hal_audio_default edgetpu_device:chr_file rw_file_perms;
+allow hal_audio_default edgetpu_vendor_service:service_manager find;
+binder_call(hal_audio_default, edgetpu_vendor_server)
+
+# Allow edgetpu_app_service as well, due to the EdgeTpu metrics logging
+# library has a dependency on edgetpu_app_service, see b/275016466.
+allow hal_audio_default edgetpu_app_service:service_manager find;
+binder_call(hal_audio_default, edgetpu_app_server)
+
+# Allow audio HAL to read tflite Darwinn delegate properties
+get_prop(hal_audio_default, vendor_tflite_delegate_prop)
commit	f382fb25df1c6ec58f5a1195e12da2442725d495	[log] [tgz]
author	Feiyu Chen <feiyuchen@google.com>	Thu Nov 09 18:55:36 2023 +0000
committer	Android (Google) Code Review <android-gerrit@google.com>	Thu Nov 09 18:55:36 2023 +0000
tree	1d86e7e1dbed44a7ba84bd83f3ec81b8fae13935
parent	c19870b2f7322bba5ff9879a69f0acb8a21b5b53 [diff]
parent	9f6785063af2bb5c7a11b79a9d98218f3d0e6493 [diff]