1 # Rules for audio service. 2 type hiavplayer, domain; 3 type hiavplayer_exec, exec_type, vendor_file_type, file_type; 4 5 init_daemon_domain(hiavplayer) 6 7 vndbinder_use(hiavplayer) 8 binder_call(hiavplayer, vndservicemanager) 9 10 allow hiavplayer hiavplayer_service:service_manager { add }; 11 allow hiavplayer hal_audio_default:binder { transfer call }; 12 allow hiavplayer hal_audio_default:fd { use }; 13 allow hiavplayer hi_sys_device:chr_file { read write open ioctl }; 14 allow hiavplayer hi_vfmw_device:chr_file { open read write ioctl getattr}; 15 allow hiavplayer hi_userproc_device:chr_file { read write open ioctl }; 16 allow hiavplayer hi_log_device:chr_file { read write open getattr ioctl }; 17 allow hiavplayer hi_mem_device:chr_file { read write open ioctl }; 18 allow hiavplayer hi_module_device:chr_file { read write open ioctl }; 19 allow hiavplayer hi_stat_device:chr_file { read write open ioctl }; 20 allow hiavplayer hi_userproc_device:chr_file { read write open ioctl }; 21 allow hiavplayer hi_vdec_device:chr_file { read write open ioctl }; 22 allow hiavplayer hi_sync_device:chr_file { read write open ioctl }; 23 allow hiavplayer hi_ao_device:chr_file { read write open ioctl }; 24 allow hiavplayer hi_vo_device:chr_file { read write open ioctl }; 25 allow hiavplayer mmz_userdev_device:chr_file { read write open ioctl }; 26 allow hiavplayer hi_adec_device:chr_file { read write open ioctl }; 27 allow hiavplayer mediacodec:binder { call }; 28 29 # neverallow 30 # binder_in_vendor_violators, vendor_executes_system_violators; 31
