| shubang | f8ab3eb | 2020-09-11 17:50:45 -0700 | [diff] [blame] | 1 | # mediatuner - mediatuner daemon |
| 2 | type mediatuner, domain; |
| 3 | type mediatuner_exec, system_file_type, exec_type, file_type; |
| 4 | |
| 5 | typeattribute mediatuner coredomain; |
| 6 | |
| 7 | init_daemon_domain(mediatuner) |
| 8 | hal_client_domain(mediatuner, hal_tv_tuner) |
| 9 | |
| 10 | binder_use(mediatuner) |
| 11 | binder_call(mediatuner, appdomain) |
| 12 | binder_service(mediatuner) |
| 13 | |
| 14 | add_service(mediatuner, mediatuner_service) |
| 15 | allow mediatuner system_server:fd use; |
| Amy Zhang | ec7079b | 2021-01-21 11:08:37 -0800 | [diff] [blame] | 16 | allow mediatuner tv_tuner_resource_mgr_service:service_manager find; |
| Amy Zhang | bd2e154 | 2021-03-01 16:48:02 -0800 | [diff] [blame] | 17 | allow mediatuner package_native_service:service_manager find; |
| Amy Zhang | ec7079b | 2021-01-21 11:08:37 -0800 | [diff] [blame] | 18 | binder_call(mediatuner, system_server) |
| shubang | f8ab3eb | 2020-09-11 17:50:45 -0700 | [diff] [blame] | 19 | |
| Hongguang | 9515559 | 2022-08-09 14:57:02 -0700 | [diff] [blame] | 20 | # Read ro.tuner.lazyhal |
| 21 | get_prop(mediatuner, tuner_config_prop) |
| 22 | |
| Hongguang Chen | 8dd58bf | 2023-06-20 09:07:23 -0700 | [diff] [blame] | 23 | # Read tuner.server.enable |
| 24 | get_prop(mediatuner, tuner_server_ctl_prop) |
| 25 | |
| shubang | f8ab3eb | 2020-09-11 17:50:45 -0700 | [diff] [blame] | 26 | ### |
| 27 | ### neverallow rules |
| 28 | ### |
| 29 | |
| 30 | # mediatuner should never execute any executable without a |
| 31 | # domain transition |
| 32 | neverallow mediatuner { file_type fs_type }:file execute_no_trans; |
| 33 | |
| 34 | # do not allow privileged socket ioctl commands |
| 35 | neverallowxperm mediatuner domain:{ rawip_socket tcp_socket udp_socket } ioctl priv_sock_ioctls; |
| 36 | |