From dc01a02a1ade54d7d608d3d5f5376f878195388f Mon Sep 17 00:00:00 2001 From: John Stultz Date: Mon, 14 Dec 2020 23:27:22 +0000 Subject: [PATCH 1/2] ueventd.rc: Reduce permissions for /dev/dma_heap/system to 444 Jeffrey Vander Stoep noted the permissions for the system dmabuf heap should be 444 instead of 666, as we only need to open and call ioctl on the device. Signed-off-by: John Stultz Change-Id: I650c9fabfffd1eac5f59bbc7fa1e0ae1f5646bd9 --- rootdir/ueventd.rc | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/rootdir/ueventd.rc b/rootdir/ueventd.rc index 42229bdaa..5ed9d4d4d 100644 --- a/rootdir/ueventd.rc +++ b/rootdir/ueventd.rc @@ -46,7 +46,7 @@ subsystem dma_heap /dev/vndbinder 0666 root root /dev/pmsg0 0222 root log -/dev/dma_heap/system 0666 system system +/dev/dma_heap/system 0444 system system # kms driver for drm based gpu /dev/dri/* 0666 root graphics From efb6e07e0a33fd07ff714b88c40413a44eaab1d8 Mon Sep 17 00:00:00 2001 From: John Stultz Date: Fri, 11 Dec 2020 07:05:16 +0000 Subject: [PATCH 2/2] ueventd.rc: Add /dev/dma_heap/system-uncached permissions Add permissions for dev/dma_heap/system-uncached dmabuf heap. This should match the dmabuf system heap. Signed-off-by: John Stultz Change-Id: I9253d56c72d45e228539f709e76ba0862ae03d96 --- rootdir/ueventd.rc | 1 + 1 file changed, 1 insertion(+) diff --git a/rootdir/ueventd.rc b/rootdir/ueventd.rc index 5ed9d4d4d..114731594 100644 --- a/rootdir/ueventd.rc +++ b/rootdir/ueventd.rc @@ -47,6 +47,7 @@ subsystem dma_heap /dev/pmsg0 0222 root log /dev/dma_heap/system 0444 system system +/dev/dma_heap/system-uncached 0444 system system # kms driver for drm based gpu /dev/dri/* 0666 root graphics