1typeattribute fingerprintd coredomain; 2 3init_daemon_domain(fingerprintd) 4 5binder_use(fingerprintd) 6 7# Scan through /system/lib64/hw looking for installed HALs 8allow fingerprintd system_file:dir r_dir_perms; 9 10# need to find KeyStore and add self 11add_service(fingerprintd, fingerprintd_service) 12 13# allow HAL module to read dir contents 14allow fingerprintd fingerprintd_data_file:file { create_file_perms }; 15 16# allow HAL module to read/write/unlink contents of this dir 17allow fingerprintd fingerprintd_data_file:dir rw_dir_perms; 18 19# Need to add auth tokens to KeyStore 20use_keystore(fingerprintd) 21allow fingerprintd keystore:keystore2 { add_auth }; 22 23# For permissions checking 24binder_call(fingerprintd, system_server); 25allow fingerprintd permission_service:service_manager find; 26 27allow fingerprintd ion_device:chr_file r_file_perms; 28