blob: f5029e5ae49c6763be7b6bfe00ffb3d1c3d8f285
1 | type aml_core_app, domain, binderservicedomain; |
2 | app_domain(aml_core_app) |
3 | net_domain(aml_core_app) |
4 | |
5 | # allow aml core service communicate with system services |
6 | allow aml_core_app connectivity_service:service_manager find; |
7 | allow aml_core_app display_service:service_manager find; |
8 | |
9 | #never allowed |
10 | #allow aml_core_app hdmi_control_service:service_manager find; |
11 | |
12 | allow aml_core_app network_management_service:service_manager find; |
13 | allow aml_core_app systemcontrol_hwservice:hwservice_manager find; |
14 | allow aml_core_app activity_service:service_manager find; |
15 | allow aml_core_app accessibility_service:service_manager find; |
16 | allow aml_core_app audio_service:service_manager find; |
17 | allow aml_core_app content_service:service_manager find; |
18 | allow aml_core_app graphicsstats_service:service_manager find; |
19 | allow aml_core_app input_method_service:service_manager find; |
20 | allow aml_core_app power_service:service_manager find; |
21 | allow aml_core_app surfaceflinger_service:service_manager find; |
22 | allow aml_core_app tv_input_service:service_manager find; |
23 | allow aml_core_app tvserver_hwservice:hwservice_manager find; |
24 | allow aml_core_app user_service:service_manager find; |
25 | allow aml_core_app audioserver_service:service_manager find; |
26 | allow aml_core_app bluetooth_manager_service:service_manager find; |
27 | allow aml_core_app cameraserver_service:service_manager find; |
28 | allow aml_core_app droidvold_hwservice:hwservice_manager find; |
29 | allow aml_core_app trust_service:service_manager find; |
30 | allow aml_core_app user_service:service_manager find; |
31 | |
32 | |
33 | allow aml_core_app system_control:binder { call transfer }; |
34 | |
35 | binder_call(aml_core_app, droidvold) |
36 | binder_call(aml_core_app, tvserver) |
37 | |
38 | set_prop(aml_core_app, system_prop) |
39 | |
40 | #allow aml_core_app sysfs:file { open read }; |
41 | allow aml_core_app sysfs_di:dir search; |
42 | allow aml_core_app sysfs_video:dir search; |
43 | allow aml_core_app sysfs_video:file r_file_perms; |
44 | allow aml_core_app vendor_file:file { r_file_perms }; |
45 | |
46 | allow aml_core_app vendor_file:file execute; |
47 |