1 # Qualcomm Secure Execution Environment Communicator policy 2 allow tee self:process execmem; 3 4 # /data/misc/playready labeling 5 type_transition tee system_data_file:dir drm_data_file; 6 7 # Access /data/misc/playready 8 allow tee system_data_file:dir ra_dir_perms; 9 allow tee drm_data_file:dir create_dir_perms; 10 allow tee drm_data_file:file create_file_perms; 11 12 # Read from persist partition 13 allow tee persist_file:dir r_dir_perms; 14 r_dir_file(tee, persist_data_file) 15 # Write to drm related pieces of persist partition 16 allow tee persist_data_file:dir create_dir_perms; 17 allow tee persist_data_file:file create_file_perms; 18
