1# ============================================== 2# MTK Policy Rule 3# ============================================== 4 5# Data : WK14.42 6# Operation : Migration 7# Purpose : Video playback 8allow surfaceflinger sw_sync_device:chr_file rw_file_perms; 9 10# Date : WK16.33 11# Purpose: Allow to access ged for gralloc_extra functions 12allow surfaceflinger proc_ged:file rw_file_perms; 13allowxperm surfaceflinger proc_ged:file ioctl { proc_ged_ioctls }; 14 15# Date : W16.42 16# Operation : Integration 17# Purpose : DRM / DRI GPU driver required 18 19allow surfaceflinger gpu_device:dir search; 20 21# Date : WK17.12 22# Purpose: Fix bootup fail 23allow surfaceflinger proc_bootprof:file r_file_perms; 24 25#============= surfaceflinger ============== 26allow surfaceflinger debugfs_ion:dir search; 27 28# Date : WK17.30 29# Operation : O Migration 30# Purpose: Allow to access cmdq driver 31allow surfaceflinger mtk_cmdq_device:chr_file r_file_perms; 32allow surfaceflinger mtk_mdp_device:chr_file r_file_perms; 33allow surfaceflinger mtk_mdp_sync:chr_file r_file_perms; 34allow surfaceflinger sysfs_boot_mode:file r_file_perms; 35 36# Date : W17.39 37# Perform Binder IPC. 38binder_use(surfaceflinger) 39binder_call(surfaceflinger, binderservicedomain) 40binder_call(surfaceflinger, appdomain) 41binder_call(surfaceflinger, mtkbootanimation) 42binder_service(surfaceflinger) 43 44allow surfaceflinger mtkbootanimation:dir search; 45allow surfaceflinger mtkbootanimation:file { read getattr open }; 46 47# Date : W17.43 48# Operation : Migration 49# Purpose: Allow to access perfmgr 50allow surfaceflinger proc_perfmgr:dir {read search}; 51allow surfaceflinger proc_perfmgr:file {open read ioctl}; 52allowxperm surfaceflinger proc_perfmgr:file ioctl { 53 PERFMGR_FPSGO_QUEUE 54 PERFMGR_FPSGO_DEQUEUE 55 PERFMGR_FPSGO_QUEUE_CONNECT 56 PERFMGR_FPSGO_BQID 57 PERFMGR_FPSGO_VSYNC 58}; 59 60# Date : WK17.43 61# Operation : Debug 62# Purpose: Allow to dump HWC backtrace 63get_prop(surfaceflinger, vendor_mtk_graphics_hwc_pid_prop) 64get_prop(surfaceflinger, vendor_mtk_graphics_hwc_latch_unsignaled_prop) 65get_prop(surfaceflinger, vendor_mtk_graphics_hwc_validate_separate_prop) 66allow surfaceflinger hal_graphics_composer_default:dir search; 67allow surfaceflinger hal_graphics_composer_default:lnk_file read; 68dontaudit surfaceflinger hal_graphics_composer_default:file r_file_perms; 69 70# Date : WK19.4 71# Operation : P Migration 72# Purpose: Allow to access /dev/mdp_device driver 73allow surfaceflinger mdp_device:chr_file rw_file_perms; 74 75# Date : WK18.43 76# Operation : HDR 77# Purpose: Allow to skip aosp hdr solution 78get_prop(surfaceflinger, vendor_mtk_graphics_hwc_hdr_prop) 79