1# Copyright (c) 2022-2023 Huawei Device Co., Ltd. 2# Licensed under the Apache License, Version 2.0 (the "License"); 3# you may not use this file except in compliance with the License. 4# You may obtain a copy of the License at 5# 6# http://www.apache.org/licenses/LICENSE-2.0 7# 8# Unless required by applicable law or agreed to in writing, software 9# distributed under the License is distributed on an "AS IS" BASIS, 10# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 11# See the License for the specific language governing permissions and 12# limitations under the License. 13 14allow foundation system_basic_hap_attr:unix_stream_socket { read write }; 15 16# avc: denied { call } for pid=1077 comm="IPC_4_1780" scontext=u:r:foundation:s0 tcontext=u:r:isolated_render:s0 tclass=binder permissive=1 17allow foundation isolated_render:binder { call transfer }; 18 19# avc: denied { sigkill } for pid=1101 comm="IPC_10_2173" scontext=u:r:foundation:s0 tcontext=u:r:isolated_render:s0 tclass=process permissive=1 20allow foundation isolated_render:process { sigkill }; 21 22allow foundation isolated_gpu:binder { call }; 23allow foundation isolated_gpu:process { sigkill }; 24 25# avc_audit_slow:267] avc: denied { call } for pid=1475, comm="/system/bin/sa_main" scontext=u:r:foundation:s0 tcontext=u:r:app_fwk_update_service:s0 tclass=binder permissive=1 26# avc_audit_slow:267] avc: denied { transfer } for pid=1475, comm="/system/bin/sa_main" scontext=u:r:foundation:s0 tcontext=u:r:app_fwk_update_service:s0 tclass=binder permissive=1 27allow foundation app_fwk_update_service:binder { call transfer }; 28