From ac525e3da18508590389b9affee5aedd2603316e Mon Sep 17 00:00:00 2001
From: SGCMarkus <markusornik@gmail.com>
Date: Sun, 20 Feb 2022 01:40:42 +0100
Subject: [PATCH] sm8250-common: seccomp: add mediacodec.policy

---
 seccomp/mediacodec.policy | 21 +++++++++++++++++++++
 sm8250.mk                 |  4 ++++
 2 files changed, 25 insertions(+)
 create mode 100644 seccomp/mediacodec.policy

diff --git a/seccomp/mediacodec.policy b/seccomp/mediacodec.policy
new file mode 100644
index 0000000..0b75b84
--- /dev/null
+++ b/seccomp/mediacodec.policy
@@ -0,0 +1,21 @@
+# device specific syscalls
+# extension of services/mediacodec/minijail/seccomp_policy/mediacodec-seccomp-arm.policy
+pselect6: 1
+eventfd2: 1
+sendto: 1
+recvfrom: 1
+_llseek: 1
+sysinfo: 1
+getcwd: 1
+getdents64: 1
+ARM_cacheflush: 1
+inotify_init1: 1
+inotify_add_watch: 1
+inotify_rm_watch: 1
+uname: 1
+ueventd: 1
+timer_create: 1
+timer_settime: 1
+rt_sigtimedwait: 1
+readlink: 1
+open: 1
diff --git a/sm8250.mk b/sm8250.mk
index 300b349..049c27a 100644
--- a/sm8250.mk
+++ b/sm8250.mk
@@ -374,6 +374,10 @@ PRODUCT_PACKAGES += \
     librmnetctl \
     libxml2
 
+# Seccomp policy
+PRODUCT_COPY_FILES += \
+    $(LOCAL_PATH)/seccomp/mediacodec-seccomp.policy:$(TARGET_COPY_OUT_VENDOR)/etc/seccomp_policy/mediacodec.policy
+
 # Sensors
 PRODUCT_PACKAGES += \
     android.hardware.sensors@2.0-service.multihal \