| Kai Hsieh | 1f83bb1 | 2024-09-21 13:38:00 +0800 | [diff] [blame^] | 1 | # SEPolicies for GIA (Google Input interface Abstraction layer) |
| 2 | type gia, domain; |
| 3 | type gia_exec, exec_type, vendor_file_type, file_type; |
| 4 | |
| 5 | # Macro transferring gia_exec to the gia domain |
| 6 | init_daemon_domain(gia) |
| 7 | |
| 8 | # let this domain use the hal service |
| 9 | hal_client_domain(gia, hal_gia) |
| 10 | # allow binder communication with service_manager |
| 11 | binder_use(gia) |
| 12 | |
| 13 | # let this domain serve the hal service |
| 14 | hal_server_domain(gia, hal_gia) |
| 15 | |
| 16 | # allow gia for accessing touch related system file-nodes |
| 17 | allow gia sysfs_touch_gti:dir r_dir_perms; |
| 18 | allow gia sysfs_touch_gti:file rw_file_perms; |