hikey: hikey960: Add memtrack HAL

Bug: 65159580 Test: Manual Change-Id: I7f2ee70284a0b548fb7ea93e93f5e31a1825f721 Signed-off-by: Dmitry Shmidt <dimitrysh@google.com>
author: Dmitry Shmidt <dimitrysh@google.com> 2017-08-29 15:05:18 -0700
committer: Dmitry Shmidt <dimitrysh@google.com> 2017-09-08 09:04:55 -0700
commit: 4cb6c2b774aafbe1a8160129c3e5b29f52b5f836 (patch)
tree: 4b3b25f97ea822b654e24247a154f4b255e45857 /sepolicy
parent: 660356f45dbff88f1aaee7a1086a80dfe921b4e7 (diff)
download: hikey-4cb6c2b774aafbe1a8160129c3e5b29f52b5f836.tar.gz
1 files changed, 11 insertions, 0 deletions
diff --git a/sepolicy/hal_memtrack.te b/sepolicy/hal_memtrack.te
new file mode 100644
index 00000000..c2da1245
--- /dev/null
+++ b/sepolicy/hal_memtrack.te
@@ -0,0 +1,11 @@
+type debugfs_kgsl, debugfs_type, fs_type;
+
+allow domain debugfs_kgsl:dir search;
+
+allow hal_memtrack debugfs_kgsl:dir search;
+allow hal_memtrack debugfs_kgsl:file { open read getattr };
+
+# Memtrack reads proc/<pid>/cmdline to check if process is surfaceflinger.
+# Grant access if that's the case; don't log denials for other processes.
+allow hal_memtrack surfaceflinger:file read;
+dontaudit hal_memtrack { domain -surfaceflinger}:file read;
author	Dmitry Shmidt <dimitrysh@google.com>	2017-08-29 15:05:18 -0700
committer	Dmitry Shmidt <dimitrysh@google.com>	2017-09-08 09:04:55 -0700
commit	4cb6c2b774aafbe1a8160129c3e5b29f52b5f836 (patch)
tree	4b3b25f97ea822b654e24247a154f4b255e45857 /sepolicy
parent	660356f45dbff88f1aaee7a1086a80dfe921b4e7 (diff)
download	hikey-4cb6c2b774aafbe1a8160129c3e5b29f52b5f836.tar.gz