1# bootanimation oneshot service 2type bootanim, domain; 3type bootanim_exec, system_file_type, exec_type, file_type; 4 5hal_client_domain(bootanim, hal_configstore) 6hal_client_domain(bootanim, hal_graphics_allocator) 7hal_client_domain(bootanim, hal_graphics_composer) 8 9binder_use(bootanim) 10binder_call(bootanim, surfaceflinger) 11binder_call(bootanim, audioserver) 12 13hwbinder_use(bootanim) 14 15allow bootanim gpu_device:chr_file rw_file_perms; 16allow bootanim gpu_device:dir r_dir_perms; 17allow bootanim sysfs_gpu:file r_file_perms; 18 19# /oem access 20allow bootanim oemfs:dir search; 21allow bootanim oemfs:file r_file_perms; 22 23allow bootanim audio_device:dir r_dir_perms; 24allow bootanim audio_device:chr_file rw_file_perms; 25 26allow bootanim audioserver_service:service_manager find; 27allow bootanim surfaceflinger_service:service_manager find; 28allow bootanim surfaceflinger:unix_stream_socket { read write }; 29 30# Allow access to ion memory allocation device 31allow bootanim ion_device:chr_file rw_file_perms; 32 33# Allow access to DMA-BUF system heap 34allow bootanim dmabuf_system_heap_device:chr_file r_file_perms; 35 36allow bootanim hal_graphics_allocator:fd use; 37 38# Fences 39allow bootanim hal_graphics_composer:fd use; 40 41# Read access to pseudo filesystems. 42allow bootanim proc_meminfo:file r_file_perms; 43 44# System file accesses. 45allow bootanim system_file:dir r_dir_perms; 46