1 # bootanimation oneshot service 2 type bootanim, domain; 3 type bootanim_exec, exec_type, file_type; 4 5 init_daemon_domain(bootanim) 6 7 binder_use(bootanim) 8 binder_call(bootanim, surfaceflinger) 9 binder_call(bootanim, audioserver) 10 11 allow bootanim gpu_device:chr_file rw_file_perms; 12 13 # /oem access 14 allow bootanim oemfs:dir search; 15 allow bootanim oemfs:file r_file_perms; 16 17 allow bootanim audio_device:dir r_dir_perms; 18 allow bootanim audio_device:chr_file rw_file_perms; 19 20 allow bootanim audioserver_service:service_manager find; 21 allow bootanim surfaceflinger_service:service_manager find; 22 23 # Allow access to ion memory allocation device 24 allow bootanim ion_device:chr_file rw_file_perms; 25 26 # Read access to pseudo filesystems. 27 r_dir_file(bootanim, proc) 28 allow bootanim proc_meminfo:file r_file_perms; 29 r_dir_file(bootanim, sysfs) 30 r_dir_file(bootanim, cgroup) 31 32 # System file accesses. 33 allow bootanim system_file:dir r_dir_perms; 34
