893272d883
Notes: - Added face hal domain, context and file types for the default SELinux policy. - Please see aosp/q/topic:"Face+Authentication" Bug: 80155388 Test: Built successfully. Change-Id: I2e02cf6df009c5ca476dfd842b493c6b76b7712a
13 lines
498 B
Plaintext
13 lines
498 B
Plaintext
# Allow HwBinder IPC from client to server, and vice versa for callbacks.
|
|
binder_call(hal_face_client, hal_face_server)
|
|
binder_call(hal_face_server, hal_face_client)
|
|
|
|
hal_attribute_hwservice(hal_face, hal_face_hwservice)
|
|
|
|
# Allow access to the ion memory allocation device.
|
|
allow hal_face ion_device:chr_file r_file_perms;
|
|
|
|
# Allow read/write access to the face template directory.
|
|
allow hal_face face_vendor_data_file:file create_file_perms;
|
|
allow hal_face face_vendor_data_file:dir rw_dir_perms;
|