From 83d2900ad16846963feec929b44d3a0609667cc8 Mon Sep 17 00:00:00 2001 From: Deokgyu Yang Date: Sun, 22 Aug 2021 01:11:12 +0900 Subject: [PATCH] gts3l-common: camera: Add more hal_camera_default and cameraserver policies Signed-off-by: Deokgyu Yang Change-Id: I5c2bc9b33a1424d1de81251cd3df06b521a8c530 --- sepolicy/cameraserver.te | 12 ++++++++++++ sepolicy/hal_camera_default.te | 8 ++++++-- 2 files changed, 18 insertions(+), 2 deletions(-) diff --git a/sepolicy/cameraserver.te b/sepolicy/cameraserver.te index a7a5baf..3cd205d 100644 --- a/sepolicy/cameraserver.te +++ b/sepolicy/cameraserver.te @@ -1 +1,13 @@ +allow cameraserver csc_prop:file { getattr open read }; + +allow cameraserver hal_perf_default:binder call; +allow cameraserver hal_perf_hwservice:hwservice_manager find; + +allow cameraserver mm-qcamerad:unix_dgram_socket sendto; + allow cameraserver sec_camera_prop:file { getattr open read }; +allow cameraserver sec_camera_prop:property_service set; + +allow cameraserver sysfs_camera_writable:dir search; +allow cameraserver sysfs_camera_writable:file { getattr open read }; +allow cameraserver sysfs:file { getattr open read write }; diff --git a/sepolicy/hal_camera_default.te b/sepolicy/hal_camera_default.te index 8639341..5c66ba0 100644 --- a/sepolicy/hal_camera_default.te +++ b/sepolicy/hal_camera_default.te @@ -1,6 +1,10 @@ allow hal_camera_default camera_data_file:sock_file write; +allow hal_camera_default csc_prop:file { getattr open read }; + +allow hal_camera_default sec_camera_prop:file { getattr open read }; +allow hal_camera_default sec_camera_prop:property_service set; + allow hal_camera_default sysfs_camera_writable:dir search; allow hal_camera_default sysfs_camera_writable:file { getattr open read }; - -allow hal_camera_default sec_camera_prop:file { getattr open read }; +allow hal_camera_default sysfs:file { getattr open read write };