commit 19a74ec88a5716da878af2d850c88b231d8dbfbe
author Pawin Vongmasa <pawin@google.com> Wed Mar 28 21:09:23 2018 -0700
committer Jeffrey Vander Stoep <jeffv@google.com> Fri May 04 21:36:41 2018 +0000
tree f0b81e6acf63e5641fd124e17796efe77463cd08
parent 7a4af30b385d0a2a6c6093a6814492c4c18603b3

Put in sepolicies for Codec2.0 services

Test: Builds

Bug: 64121714
Bug: 31973802
Change-Id: Id37be8726a8bb297e35bca494964fdbcc48c6a73
(cherry picked from commit 4be28894772bccf5604fd36a75d07bb64e826c88)

public/app.te

diff --git a/public/app.te b/public/app.te
index 0c5008d..4ebf480 100644
--- a/public/app.te
+++ b/public/app.te
@@ -222,6 +222,7 @@
 # TODO(b/36375899): Replace this with hal_client_domain once mediacodec is properly attributized
 # as OMX HAL
 hwbinder_use({ appdomain  -isolated_app })
+allow { appdomain -isolated_app } hal_codec2_hwservice:hwservice_manager find;
 allow { appdomain -isolated_app } hal_omx_hwservice:hwservice_manager find;
 allow { appdomain -isolated_app } hidl_token_hwservice:hwservice_manager find;
 

public/hwservice.te

diff --git a/public/hwservice.te b/public/hwservice.te
index 2b745c0..ca20258 100644
--- a/public/hwservice.te
+++ b/public/hwservice.te
@@ -8,6 +8,7 @@
 type hal_bootctl_hwservice, hwservice_manager_type;
 type hal_broadcastradio_hwservice, hwservice_manager_type;
 type hal_camera_hwservice, hwservice_manager_type;
+type hal_codec2_hwservice, hwservice_manager_type;
 type hal_configstore_ISurfaceFlingerConfigs, hwservice_manager_type;
 type hal_confirmationui_hwservice, hwservice_manager_type;
 type hal_contexthub_hwservice, hwservice_manager_type;

public/mediacodec.te

diff --git a/public/mediacodec.te b/public/mediacodec.te
index bcccbb8..e5b4a7d 100644
--- a/public/mediacodec.te
+++ b/public/mediacodec.te
@@ -33,6 +33,7 @@
 
 crash_dump_fallback(mediacodec)
 
+add_hwservice(mediacodec, hal_codec2_hwservice)
 add_hwservice(mediacodec, hal_omx_hwservice)
 
 hal_client_domain(mediacodec, hal_allocator)