| Amit Pundir | 276a055 | 2019-11-23 22:27:15 +0530 | [diff] [blame] | 1 | ##################################### |
| 2 | # gpu_access(client_domain) |
| 3 | # Allow client_domain to communicate with the GPU |
| 4 | define(`gpu_access', ` |
| 5 | allow $1 dri_device:dir { open read search }; |
| 6 | allow $1 sysfs_gpu:dir search; |
| John Stultz | f1cee11 | 2020-09-18 20:54:06 +0000 | [diff] [blame] | 7 | allow $1 gpu_device:chr_file { getattr ioctl map open read write }; |
| 8 | allow $1 graphics_device:chr_file { getattr }; |
| Amit Pundir | 276a055 | 2019-11-23 22:27:15 +0530 | [diff] [blame] | 9 | allow $1 sysfs_gpu:file { getattr open read }; |
| Amit Pundir | 276a055 | 2019-11-23 22:27:15 +0530 | [diff] [blame] | 10 | ') |