1 # bootanimation oneshot service 2 type bootanim, domain; 3 type bootanim_exec, exec_type, file_type; 4 5 hal_client_domain(bootanim, hal_graphics_allocator) 6 hal_client_domain(bootanim, hal_graphics_composer) 7 8 binder_use(bootanim) 9 binder_call(bootanim, surfaceflinger) 10 binder_call(bootanim, audioserver) 11 12 hwbinder_use(bootanim) 13 14 allow bootanim gpu_device:chr_file rw_file_perms; 15 16 # /oem access 17 allow bootanim oemfs:dir search; 18 allow bootanim oemfs:file r_file_perms; 19 20 allow bootanim audio_device:dir r_dir_perms; 21 allow bootanim audio_device:chr_file rw_file_perms; 22 23 allow bootanim audioserver_service:service_manager find; 24 allow bootanim surfaceflinger_service:service_manager find; 25 26 # Allow access to ion memory allocation device 27 allow bootanim ion_device:chr_file rw_file_perms; 28 allow bootanim hal_graphics_allocator:fd use; 29 30 # Fences 31 allow bootanim hal_graphics_composer:fd use; 32 33 # Read access to pseudo filesystems. 34 r_dir_file(bootanim, proc) 35 allow bootanim proc_meminfo:file r_file_perms; 36 r_dir_file(bootanim, sysfs) 37 r_dir_file(bootanim, cgroup) 38 39 # System file accesses. 40 allow bootanim system_file:dir r_dir_perms; 41
