5183d7fb36
Energy aware feature control is previously done through debugfs,
which will be deprecated, so move the control to sysctl. Added
permisson for it, and removed the one unused.
[ 1.460128] audit: type=1400 audit(2753763.033:8): avc: denied { write } for pid=537 comm="init" name="energy_aware" dev="proc" ino=21663 scontext=u:r:vendor_init:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=0
10-05 16:49:18.933 820 820 W NodeLooperThrea: type=1400 audit(0.0:1097): avc: denied { write } for name="energy_aware" dev="proc" ino=66567 scontext=u:r:hal_power_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=0
10-05 17:00:15.726 822 822 W NodeLooperThrea: type=1400 audit(0.0:262): avc: denied { open } for path="/proc/sys/kernel/energy_aware" dev="proc" ino=51228 scontext=u:r:hal_power_default:s0 tcontext=u:object_r:proc:s0 tclass=file permissive=0
Bug: 141333728
Test: function works as expected
Change-Id: I2b4eda73bfa34824244e21d804b48eee49a71eae
Signed-off-by: clarencelol <clarencekuiek@icloud.com>
Signed-off-by: pix106 <sbordenave@gmail.com>
24 lines
1.1 KiB
Text
24 lines
1.1 KiB
Text
allow hal_power_default cgroup:file read;
|
|
allow hal_power_default cgroup:file r_file_perms;
|
|
allow hal_power_default device_latency:chr_file rw_file_perms;
|
|
allow hal_power_default sysfs_battery_saver:dir r_dir_perms;
|
|
allow hal_power_default sysfs_battery_saver:file rw_file_perms;
|
|
allow hal_power_default proc:{ file lnk_file } rw_file_perms;
|
|
allow hal_power_default proc_sched_energy_aware:file rw_file_perms;
|
|
allow hal_power_default { sysfs_devfreq sysfs_kgsl }:dir search;
|
|
allow hal_power_default { sysfs_devfreq sysfs_kgsl }:{ file lnk_file } rw_file_perms;
|
|
allow hal_power_default sysfs_devices_system_cpu:file rw_file_perms;
|
|
allow hal_power_default sysfs_touchpanel:dir search;
|
|
allow hal_power_default sysfs_touchpanel:file rw_file_perms;
|
|
|
|
r_dir_file(hal_power_default, sysfs_graphics)
|
|
set_prop(hal_power_default, vendor_power_prop)
|
|
|
|
typeattribute hal_power_default mlstrustedsubject;
|
|
|
|
# Set scheduling info for apps (for adpf)
|
|
allow hal_power_default appdomain:process { getsched setsched };
|
|
allow hal_power_default self:capability sys_nice;
|
|
|
|
# Set scheduling info for system_server (for adpf)
|
|
allow hal_power_default system_server:process setsched;
|