• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1# Copyright (c) 2022-2023 Huawei Device Co., Ltd.
2# Licensed under the Apache License, Version 2.0 (the License);
3# you may not use this file except in compliance with the License.
4# You may obtain a copy of the License at
5#
6#     http://www.apache.org/licenses/LICENSE-2.0
7#
8# Unless required by applicable law or agreed to in writing, software
9# distributed under the License is distributed on an "AS IS" BASIS,
10# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
11# See the License for the specific language governing permissions and
12# limitations under the License.
13
14#avc:  denied  { ioctl } for  pid=413 comm="omx_enc_input" path="/dev/dri/card0" dev="tmpfs" ino=77 ioctlcmd=0x642e scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=chr_file permissive=1
15allow codec_host dev_dri_file:chr_file { ioctl };
16allowxperm codec_host dev_dri_file:chr_file ioctl { 0x642e 0x64b4 };
17
18#avc:  denied  { ioctl } for  pid=428 comm="omx_dec_input" path="/dev/dri/card0" dev="tmpfs" ino=77 ioctlcmd=0x64b2 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=chr_file permissive=1
19allow codec_host dev_dri_file:chr_file { ioctl };
20allowxperm codec_host dev_dri_file:chr_file ioctl { 0x64b2 0x642d };
21
22#avc:  denied  { open } for  pid=413 comm="codec_host" path="/dev/dri/card0" dev="tmpfs" ino=77 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=chr_file permissive=1
23allow codec_host dev_dri_file:chr_file { open };
24
25#avc:  denied  { read write } for  pid=413 comm="codec_host" name="card0" dev="tmpfs" ino=77 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=chr_file permissive=1
26allow codec_host dev_dri_file:chr_file { read write };
27
28#avc:  denied  { search } for  pid=413 comm="codec_host" name="dri" dev="tmpfs" ino=75 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_dri_file:s0 tclass=dir permissive=1
29allow codec_host dev_dri_file:dir { search };
30
31#avc:  denied  { ioctl } for  pid=413 comm="omx_dec_input" path="/dev/mpp_service" dev="tmpfs" ino=115 ioctlcmd=0x7601 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_mpp:s0 tclass=chr_file permissive=1
32allow codec_host dev_mpp:chr_file { ioctl };
33allowxperm codec_host dev_mpp:chr_file ioctl { 0x7601 };
34
35#avc:  denied  { read write } for  pid=413 comm="omx_dec_input" name="mpp_service" dev="tmpfs" ino=115 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_mpp:s0 tclass=chr_file permissive=1
36allow codec_host dev_mpp:chr_file { read write };
37
38#avc:  denied  { ioctl } for  pid=413 comm="omx_dec_output" path="/dev/rga" dev="tmpfs" ino=169 ioctlcmd=0x5017 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_rga:s0 tclass=chr_file permissive=1
39allow codec_host dev_rga:chr_file { ioctl };
40allowxperm codec_host dev_rga:chr_file ioctl { 0x5017 0x601b };
41
42
43#avc:  denied  { use } for  pid=2003 comm="src:src" path="/dmabuf:" dev="dmabuf" ino=37677 scontext=u:r:codec_host:s0 tcontext=u:r:allocator_host:s0 tclass=fd permissive=1
44allow codec_host allocator_host:fd { use };
45
46#avc:  denied  { call } for  pid=413 comm="codec_host" scontext=u:r:codec_host:s0 tcontext=u:r:media_service:s0 tclass=binder permissive=1
47allow codec_host media_service:binder { call };
48
49#avc:  denied  { transfer } for  pid=413 comm="codec_host" scontext=u:r:codec_host:s0 tcontext=u:r:media_service:s0 tclass=binder permissive=1
50allow codec_host media_service:binder { transfer };
51
52#avc:  denied  { use } for  pid=2003 comm="src:src" path="/dev/ashmem" dev="tmpfs" ino=166 scontext=u:r:codec_host:s0 tcontext=u:r:media_service:s0 tclass=fd permissive=1
53allow codec_host media_service:fd { use };
54
55#avc:  denied  { open } for  pid=413 comm="omx_dec_input" path="/sys/firmware/devicetree/base/compatible" dev="sysfs" ino=15 scontext=u:r:codec_host:s0 tcontext=u:object_r:sys_file:s0 tclass=file permissive=1
56allow codec_host sys_file:file { open };
57
58#avc:  denied  { read } for  pid=413 comm="omx_dec_input" name="compatible" dev="sysfs" ino=15 scontext=u:r:codec_host:s0 tcontext=u:object_r:sys_file:s0 tclass=file permissive=1
59allow codec_host sys_file:file { read };
60
61#avc:  denied  { open } for  pid=449 comm="omx_dec_input" path="/dev/mpp_service" dev="tmpfs" ino=115 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_mpp:s0 tclass=chr_file permissive=1
62allow codec_host dev_mpp:chr_file { open };
63
64#avc:  denied  { open } for  pid=449 comm="omx_dec_output" path="/dev/rga" dev="tmpfs" ino=169 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_rga:s0 tclass=chr_file permissive=1
65allow codec_host dev_rga:chr_file { open };
66
67#avc:  denied  { read write } for  pid=449 comm="omx_dec_output" name="rga" dev="tmpfs" ino=169 scontext=u:r:codec_host:s0 tcontext=u:object_r:dev_rga:s0 tclass=chr_file permissive=1
68allow codec_host dev_rga:chr_file { read write };
69
70#avc:  denied  { open } for  pid=449 comm="omx_dec_input" path="/proc/version" dev="proc" ino=4026532114 scontext=u:r:codec_host:s0 tcontext=u:object_r:proc_version_file:s0 tclass=file permissive=1
71allow codec_host proc_version_file:file { open };
72
73#avc:  denied  { read } for  pid=449 comm="omx_dec_input" name="version" dev="proc" ino=4026532114 scontext=u:r:codec_host:s0 tcontext=u:object_r:proc_version_file:s0 tclass=file permissive=1
74allow codec_host proc_version_file:file { read };
75