Allow SurfaceFlinger to read/write Unix sockets from automotive_display_service
This change extends the permissions granted to SurfaceFlinger added in aosp/3164560 for the same use case.
Bug: 294133380
Bug: 362800004
Test: presubmits
Change-Id: I6253932ee65656b2d3c9f6177c03f3be9f725685
diff --git a/private/surfaceflinger.te b/private/surfaceflinger.te
index f6f1d9b..be3244e 100644
--- a/private/surfaceflinger.te
+++ b/private/surfaceflinger.te
@@ -85,9 +85,14 @@
# Use socket supplied by adbd, for cmd gpu vkjson etc.
allow surfaceflinger adbd:unix_stream_socket { read write getattr };
-# Allow reading and writing to sockets used for BLAST buffer releases
+# Allow reading and writing to sockets used for BLAST buffer releases.
+# SurfaceFlinger never reads from these sockets but needs read permissions in order to receive
+# the file descriptors over binder. There's no mechanism to mark a socket as write-only.
+# shutdown is used to close the read-end of the sockets that are sent to SurfaceFlinger. See
+# b/353597444
allow surfaceflinger { appdomain -isolated_app_all -ephemeral_app -sdk_sandbox_all }:unix_stream_socket { read write };
allow surfaceflinger bootanim:unix_stream_socket { read write };
+allow surfaceflinger automotive_display_service:unix_stream_socket { read write };
# Allow a dumpstate triggered screenshot
binder_call(surfaceflinger, dumpstate)