########################################################
# Domain for shell processes spawned by ADB or console service.
########################################################

allow shell teecd_exec:file { getattr};

#--------------------------
allow shell udev_helper_exec:file { getattr};
allow shell udev_rules:file { getattr};
allow shell udev_conf:file { getattr};

allow shell udev_device:dir { getattr};
#####################################

allow shell adec_device:chr_file { getattr};
allow shell aenc_device:chr_file { getattr};
allow shell ai_device:chr_file { getattr};
allow shell ao_device:chr_file { getattr};

allow shell ca_device:chr_file { getattr};
allow shell cipher_device:chr_file { getattr};

allow shell demux_device:chr_file { getattr};
allow shell disp_device:chr_file { getattr};

allow shell gpio_device:chr_file { getattr};

allow shell hdmi_device:chr_file { getattr};

allow shell i2c_device:chr_file { getattr};
allow shell ir_device:chr_file { getattr};

allow shell omxvdec_device:chr_file { getattr};
allow shell otp_device:chr_file { getattr};

allow shell pm_device:chr_file { getattr};
allow shell png_device:chr_file { getattr};

allow shell sci_device:chr_file { getattr};

allow shell sync_device:chr_file { getattr};

allow shell tuner_device:chr_file { getattr};

allow shell vdec_device:chr_file { getattr};
allow shell venc_device:chr_file { getattr};
allow shell vo_device:chr_file { getattr};

#--------------------------

allow shell adsp_device:chr_file { getattr};

allow shell dbe_device:chr_file { getattr};
allow shell tde_device:chr_file { getattr};

allow shell mce_device:chr_file { getattr};

allow shell pdm_device:chr_file r_file_perms;
allow shell pq_device:chr_file { getattr};

allow shell module_device:chr_file { getattr};
allow shell stat_device:chr_file { getattr};
allow shell sys_device:chr_file { getattr};
allow shell userproc_device:chr_file { getattr};

allow shell vpss_device:chr_file { getattr};

#--------------------------

allow shell dfb_fusion_device:chr_file r_file_perms;
allow shell dfb_surface_device:chr_file r_file_perms;

allow shell smmu_device:chr_file r_file_perms;
allow shell mmz_userdev_device:chr_file { getattr};