1 # bootanimation oneshot service 2 type bootanim, domain; 3 type bootanim_exec, exec_type, file_type; 4 5 hal_client_domain(bootanim, hal_configstore) 6 hal_client_domain(bootanim, hal_graphics_allocator) 7 hal_client_domain(bootanim, hal_graphics_composer) 8 9 binder_use(bootanim) 10 binder_call(bootanim, surfaceflinger) 11 binder_call(bootanim, audioserver) 12 13 hwbinder_use(bootanim) 14 15 allow bootanim gpu_device:chr_file rw_file_perms; 16 17 # /oem access 18 allow bootanim oemfs:dir search; 19 allow bootanim oemfs:file r_file_perms; 20 21 allow bootanim audio_device:dir r_dir_perms; 22 allow bootanim audio_device:chr_file rw_file_perms; 23 24 allow bootanim audioserver_service:service_manager find; 25 allow bootanim surfaceflinger_service:service_manager find; 26 27 # Allow access to ion memory allocation device 28 allow bootanim ion_device:chr_file rw_file_perms; 29 allow bootanim hal_graphics_allocator:fd use; 30 31 # Fences 32 allow bootanim hal_graphics_composer:fd use; 33 34 # Read access to pseudo filesystems. 35 r_dir_file(bootanim, proc) 36 allow bootanim proc_meminfo:file r_file_perms; 37 r_dir_file(bootanim, sysfs) 38 r_dir_file(bootanim, cgroup) 39 40 # System file accesses. 41 allow bootanim system_file:dir r_dir_perms; 42
