| William Clark | 7297165 | 2015-10-07 15:24:03 -0700 | [diff] [blame] | 1 | #Copyright (c) 2015, The Linux Foundation. All rights reserved. |
| 2 | # |
| 3 | #Redistribution and use in source and binary forms, with or without |
| 4 | #modification, are permitted provided that the following conditions are |
| 5 | #met: |
| 6 | # * Redistributions of source code must retain the above copyright |
| 7 | # notice, this list of conditions and the following disclaimer. |
| 8 | # * Redistributions in binary form must reproduce the above |
| 9 | # copyright notice, this list of conditions and the following |
| 10 | # disclaimer in the documentation and/or other materials provided |
| 11 | # with the distribution. |
| 12 | # * Neither the name of The Linux Foundation nor the names of its |
| 13 | # contributors may be used to endorse or promote products derived |
| 14 | # from this software without specific prior written permission. |
| 15 | # |
| 16 | #THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED |
| 17 | #WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF |
| 18 | #MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT |
| 19 | #ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS |
| 20 | #BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR |
| 21 | #CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF |
| 22 | #SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR |
| 23 | #BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, |
| 24 | #WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE |
| 25 | #OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN |
| 26 | #IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 27 | |
| Biswajit Paul | 6786a92 | 2017-03-16 11:53:53 -0700 | [diff] [blame] | 28 | type secotad, domain; |
| Ravi Kumar Siddojigari | c7def12 | 2017-06-13 00:49:19 +0530 | [diff] [blame] | 29 | type secotad_exec, exec_type, vendor_file_type, file_type; |
| William Clark | 7297165 | 2015-10-07 15:24:03 -0700 | [diff] [blame] | 30 | |
| 31 | #Allow for transition from init domain to secota daemon |
| 32 | init_daemon_domain(secotad) |
| 33 | |
| 34 | #Allow secotad to use Binder IPC |
| Ravi Kumar Siddojigari | c7def12 | 2017-06-13 00:49:19 +0530 | [diff] [blame] | 35 | #binder_use(secotad) |
| William Clark | 7297165 | 2015-10-07 15:24:03 -0700 | [diff] [blame] | 36 | |
| 37 | #Allow apps to interact with secotad |
| 38 | binder_call(secotad, platform_app) |
| 39 | binder_call(secotad, system_app) |
| 40 | |
| 41 | #Mark secotad as a Binder service domain |
| Ravi Kumar Siddojigari | c7def12 | 2017-06-13 00:49:19 +0530 | [diff] [blame] | 42 | #binder_service(secotad) |
| William Clark | 7297165 | 2015-10-07 15:24:03 -0700 | [diff] [blame] | 43 | |
| 44 | #Allow secotad to be registered with service manager |
| 45 | allow secotad secotad_service:service_manager add; |
| 46 | |
| 47 | #Allow access to tee device |
| 48 | allow secotad tee_device:chr_file rw_file_perms; |
| 49 | |
| 50 | #Allow access to firmware |
| Ravi Kumar Siddojigari | abdffc3 | 2017-06-13 00:13:19 +0530 | [diff] [blame] | 51 | r_dir_file(secotad, firmware_file) |