sdm660-common: Address some more denials

Signed-off-by: Anush02198 <Anush.4376@gmail.com>
Signed-off-by: clarencelol <clarencekuiek@icloud.com>
Signed-off-by: pix106 <sbordenave@gmail.com>

sepolicy/vendor/gmscore_app.te

@@ -1,2 +1,6 @@
 binder_call(gmscore_app, hal_memtrack_default);
+
 dontaudit gmscore_app { bt_firmware_file firmware_file }:filesystem getattr;
+
+allow gmscore_app adsprpcd_file:dir{ search };
+allow gmscore_app exported_camera_prop:file { read open getattr };

sepolicy/vendor/gpuservice.te

@@ -1 +1 @@
-allow gpuservice graphics_config_prop:file { open read getattr };
+allow gpuservice graphics_config_prop:file { open read map getattr };

sepolicy/vendor/init.te

@@ -13,3 +13,4 @@ allow init {
 }:filesystem getattr;
 allow init firmware_file:filesystem { getattr };
 allow init bt_firmware_file:filesystem { getattr };
+allow init apex_metadata_file:lnk_file { read };

sepolicy/vendor/netutils_wrapper.te

@@ -0,0 +1 @@
+allow netutils_wrapper netutils_wrapper:capability { kill };

sepolicy/vendor/qti_init_shell.te

@@ -2,6 +2,9 @@ allow qti_init_shell ctl_start_prop:property_service set;
 allow qti_init_shell ctl_stop_prop:property_service set;
 allow qti_init_shell self:perf_event cpu;
 allow qti_init_shell sysfs:file { setattr write };
+allow qti_init_shell qti_init_shell:perf_event { cpu };
+allow qti_init_shell vendor_default_prop:property_service { set };
+allow qti_init_shell system_prop:property_service { set };
 
 dontaudit qti_init_shell system_prop:property_service set;
 dontaudit qti_init_shell self:capability { dac_override dac_read_search };

sepolicy/vendor/vold.te

@@ -1 +1,2 @@
 allow vold sysfs_mmc_host:file write;
+allow vold vendor_apex_file:file { getattr };

sepolicy/vendor/zygote.te

@@ -0,0 +1 @@
+allow zygote exported_camera_prop:file { open read getattr write };