• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# Copyright (c) 2022 Huawei Device Co., Ltd.
2# Licensed under the Apache License, Version 2.0 (the License);
3# you may not use this file except in compliance with the License.
4# You may obtain a copy of the License at
5#
6#     http://www.apache.org/licenses/LICENSE-2.0
7#
8# Unless required by applicable law or agreed to in writing, software
9# distributed under the License is distributed on an "AS IS" BASIS,
10# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
11# See the License for the specific language governing permissions and
12# limitations under the License.
13
14#avc:  denied  { ioctl } for  pid=413 comm="omx_enc_input" path="/dev/dri/card0" dev="tmpfs" ino=77 ioctlcmd=0x642e scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=chr_file permissive=1
15allow codec_host dev_dri_file:chr_file { ioctl };
16allowxperm codec_host dev_dri_file:chr_file ioctl { 0x642e 0x64b4 };
17
18#avc:  denied  { ioctl } for  pid=428 comm="omx_dec_input" path="/dev/dri/card0" dev="tmpfs" ino=77 ioctlcmd=0x64b2 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=chr_file permissive=1
19allow codec_host dev_dri_file:chr_file { ioctl };
20allowxperm codec_host dev_dri_file:chr_file ioctl { 0x64b2 0x642d };
21
22#avc:  denied  { open } for  pid=413 comm="codec_host" path="/dev/dri/card0" dev="tmpfs" ino=77 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=chr_file permissive=1
23allow codec_host dev_dri_file:chr_file { open };
24
25#avc:  denied  { read write } for  pid=413 comm="codec_host" name="card0" dev="tmpfs" ino=77 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=chr_file permissive=1
26allow codec_host dev_dri_file:chr_file { read write };
27
28#avc:  denied  { search } for  pid=413 comm="codec_host" name="dri" dev="tmpfs" ino=75 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=dir permissive=1
29allow codec_host dev_dri_file:dir { search };
30
31#avc:  denied  { ioctl } for  pid=413 comm="omx_dec_input" path="/dev/mpp_service" dev="tmpfs" ino=115 ioctlcmd=0x7601 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_mpp:s0 tclass=chr_file permissive=1
32allow codec_host dev_mpp:chr_file { ioctl };
33allowxperm codec_host dev_mpp:chr_file ioctl { 0x7601 };
34
35#avc:  denied  { read write } for  pid=413 comm="omx_dec_input" name="mpp_service" dev="tmpfs" ino=115 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_mpp:s0 tclass=chr_file permissive=1
36allow codec_host dev_mpp:chr_file { read write };
37
38#avc:  denied  { ioctl } for  pid=413 comm="omx_dec_output" path="/dev/rga" dev="tmpfs" ino=169 ioctlcmd=0x5017 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_rga:s0 tclass=chr_file permissive=1
39allow codec_host dev_rga:chr_file { ioctl };
40allowxperm codec_host dev_rga:chr_file ioctl { 0x5017 0x601b };
41
42#avc:  denied  { use } for  pid=2003 comm="src:src" path="/dmabuf:" dev="dmabuf" ino=37677 scontext=u:r:codec_host:s0 tcontext=u:r:disp_gralloc_host:s0 tclass=fd permissive=1
43allow codec_host disp_gralloc_host:fd { use };
44
45#avc:  denied  { call } for  pid=413 comm="codec_host" scontext=u:r:codec_host:s0 tcontext=u:r:media_service:s0 tclass=binder permissive=1
46allow codec_host media_service:binder { call };
47
48#avc:  denied  { transfer } for  pid=413 comm="codec_host" scontext=u:r:codec_host:s0 tcontext=u:r:media_service:s0 tclass=binder permissive=1
49allow codec_host media_service:binder { transfer };
50
51#avc:  denied  { use } for  pid=2003 comm="src:src" path="/dev/ashmem" dev="tmpfs" ino=166 scontext=u:r:codec_host:s0 tcontext=u:r:media_service:s0 tclass=fd permissive=1
52allow codec_host media_service:fd { use };
53
54#avc:  denied  { open } for  pid=413 comm="omx_dec_input" path="/sys/firmware/devicetree/base/compatible" dev="sysfs" ino=15 scontext=u:r:codec_host:s0 tcontext=u:object_r:sys_file:s0 tclass=file permissive=1
55allow codec_host sys_file:file { open };
56
57#avc:  denied  { read } for  pid=413 comm="omx_dec_input" name="compatible" dev="sysfs" ino=15 scontext=u:r:codec_host:s0 tcontext=u:object_r:sys_file:s0 tclass=file permissive=1
58allow codec_host sys_file:file { read };
59
60#avc:  denied  { open } for  pid=449 comm="omx_dec_input" path="/dev/mpp_service" dev="tmpfs" ino=115 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_mpp:s0 tclass=chr_file permissive=1
61allow codec_host dev_mpp:chr_file { open };
62
63#avc:  denied  { open } for  pid=449 comm="omx_dec_output" path="/dev/rga" dev="tmpfs" ino=169 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_rga:s0 tclass=chr_file permissive=1
64allow codec_host dev_rga:chr_file { open };
65
66#avc:  denied  { read write } for  pid=449 comm="omx_dec_output" name="rga" dev="tmpfs" ino=169 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_rga:s0 tclass=chr_file permissive=1
67allow codec_host dev_rga:chr_file { read write };
68
69#avc:  denied  { open } for  pid=449 comm="omx_dec_input" path="/proc/version" dev="proc" ino=4026532114 scontext=u:r:codec_host:s0 tcontext=u:object_r:proc_version_file:s0 tclass=file permissive=1
70allow codec_host proc_version_file:file { open };
71
72#avc:  denied  { read } for  pid=449 comm="omx_dec_input" name="version" dev="proc" ino=4026532114 scontext=u:r:codec_host:s0 tcontext=u:object_r:proc_version_file:s0 tclass=file permissive=1
73allow codec_host proc_version_file:file { read };
74