commit 813ba6f73b9334bfc3f34748c2ed8c796e6d67e2
author Rick Yiu <rickyiu@google.com> Wed Mar 25 22:12:27 2020 +0800
committer Rick Yiu <rickyiu@google.com> Fri Mar 27 14:21:55 2020 +0000
tree 7aba6b5702bce65ff2ae57aeae2bd3a41acd0dad
parent b1118c285b7ffb8525f81f9c730df2a35774a426

Move common pixel powerhal sepolicies into one place

Only move the policies that are independent of any chipset.

Bug: 151873153
Test: selinux_policy build pass
Change-Id: Ic37b33807fcc13b3bfdd88701e9326bfd9e51293

common/file_contexts

diff --git a/common/file_contexts b/common/file_contexts
index a980b0d..e86fd9f 100644
--- a/common/file_contexts
+++ b/common/file_contexts
@@ -7,4 +7,3 @@
 /vendor/bin/awk                                     u:object_r:vendor_toolbox_exec:s0
 /vendor/bin/cp                                      u:object_r:vendor_toolbox_exec:s0
 /vendor/bin/toolbox_vendor                          u:object_r:vendor_toolbox_exec:s0
-/vendor/bin/hw/android\.hardware\.power-service\.pixel-libperfmgr                 u:object_r:hal_power_default_exec:s0

power-libperfmgr/devcice.te

diff --git a/power-libperfmgr/devcice.te b/power-libperfmgr/devcice.te
new file mode 100644
index 0000000..702780a
--- /dev/null
+++ b/power-libperfmgr/devcice.te
@@ -0,0 +1 @@
+type latency_device, dev_type;

power-libperfmgr/file.te

diff --git a/power-libperfmgr/file.te b/power-libperfmgr/file.te
new file mode 100644
index 0000000..8e3a9f6
--- /dev/null
+++ b/power-libperfmgr/file.te
@@ -0,0 +1 @@
+type pps_socket, file_type;

power-libperfmgr/file_contexts

diff --git a/power-libperfmgr/file_contexts b/power-libperfmgr/file_contexts
new file mode 100644
index 0000000..027be7a
--- /dev/null
+++ b/power-libperfmgr/file_contexts
@@ -0,0 +1,5 @@
+/vendor/bin/hw/android\.hardware\.power-service\.pixel-libperfmgr                 u:object_r:hal_power_default_exec:s0
+/vendor/bin/hw/android\.hardware\.power@1\.3-service\.pixel-libperfmgr            u:object_r:hal_power_default_exec:s0
+
+/dev/cpu_dma_latency                                                              u:object_r:latency_device:s0
+/dev/socket/pps                                                                   u:object_r:pps_socket:s0

power-libperfmgr/hal_power_default.te

diff --git a/power-libperfmgr/hal_power_default.te b/power-libperfmgr/hal_power_default.te
new file mode 100644
index 0000000..fd7c9be
--- /dev/null
+++ b/power-libperfmgr/hal_power_default.te
@@ -0,0 +1,8 @@
+allow hal_power_default sysfs_devices_system_cpu:file rw_file_perms;
+allow hal_power_default latency_device:chr_file rw_file_perms;
+
+# To get/set powerhal state property
+set_prop(hal_power_default, power_prop)
+
+# Rule for hal_power_default to access graphics composer process
+unix_socket_connect(hal_power_default, pps, hal_graphics_composer_default);

power-libperfmgr/property.te

diff --git a/power-libperfmgr/property.te b/power-libperfmgr/property.te
new file mode 100644
index 0000000..dc973cf
--- /dev/null
+++ b/power-libperfmgr/property.te
@@ -0,0 +1 @@
+type power_prop, property_type;

power-libperfmgr/property_contexts

diff --git a/power-libperfmgr/property_contexts b/power-libperfmgr/property_contexts
new file mode 100644
index 0000000..95d2bde
--- /dev/null
+++ b/power-libperfmgr/property_contexts
@@ -0,0 +1 @@
+vendor.powerhal.                               u:object_r:power_prop:s0