Sepolicy for OMX hal. Bug: 31399200 Test: Compiles Change-Id: Ifb347a985df5deb85426a54c435c4a9c0248cb57

commit: 5559d21aa550ee03075b958fd65add628f31fcef [log] [tgz]
author: Pawin Vongmasa <pawin@google.com> Tue Jan 24 02:45:16 2017 -0800
committer: Pawin Vongmasa <pawin@google.com> Sat Feb 11 00:12:00 2017 -0800
tree: ea6b57f4c3d0ee4e4accc54279bc2c2cb0293fef
parent: 3651bae67bc593516b183dee7ea554fb20fb2e5e [diff]
diff --git a/public/mediacodec.te b/public/mediacodec.te
index 9f07d85..6b4d677 100644
--- a/public/mediacodec.te
+++ b/public/mediacodec.te

@@ -18,6 +18,11 @@
 allow mediacodec ion_device:chr_file rw_file_perms;
 allow mediacodec hal_graphics_allocator:fd use;
 
+# hidl access
+hwbinder_use(mediacodec)
+hwallocator_use(mediacodec)
+allow mediacodec system_file:dir { open read };
+
 ###
 ### neverallow rules
 ###

diff --git a/public/mediaserver.te b/public/mediaserver.te
index 16b8013..fa47288 100644
--- a/public/mediaserver.te
+++ b/public/mediaserver.te

@@ -132,6 +132,10 @@
 
 allow mediaserver system_server:fd use;
 
+# hidl access
+hwbinder_use(mediaserver)
+hwallocator_use(mediaserver)
+
 ###
 ### neverallow rules
 ###
commit	5559d21aa550ee03075b958fd65add628f31fcef	[log] [tgz]
author	Pawin Vongmasa <pawin@google.com>	Tue Jan 24 02:45:16 2017 -0800
committer	Pawin Vongmasa <pawin@google.com>	Sat Feb 11 00:12:00 2017 -0800
tree	ea6b57f4c3d0ee4e4accc54279bc2c2cb0293fef
parent	3651bae67bc593516b183dee7ea554fb20fb2e5e [diff]