sdm660-common: sepolicy: let camera hal access /data/misc files
Removed from system_sepolicy, but still needed by our old camera stack.
Solves the following denials.
denied { search } for pid=717 comm="CAM_AECAWB" name="camera" dev="sda17" ino=3121215 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:camera_data_file:s0 tclass=dir permissive=0
denied { search } for pid=717 comm="CAM_AECAWB" name="camera" dev="sda17" ino=3121215 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:camera_data_file:s0 tclass=dir permissive=0
Change-Id: I497bade68e6a5b2f60cd8ec90a97a81986d971af
Signed-off-by: Hadad <repo-sync@outlook.com>
Signed-off-by: pix106 <sbordenave@gmail.com>
This commit is contained in:
Demon Singur
pix106
parent
7c4bba77a9
commit
81083ebf5c
1 changed files with 6 additions and 0 deletions
6
sepolicy/vendor/hal_camera_default.te
vendored
6
sepolicy/vendor/hal_camera_default.te
vendored
|
|
@ -14,3 +14,9 @@ allow hal_camera_default sysfs:file { getattr open read };
|
|||
allow hal_camera_default self:socket { read write };
|
||||
|
||||
r_dir_file(hal_camera_default, sysfs_kgsl)
|
||||
|
||||
typeattribute hal_camera_default data_between_core_and_vendor_violators;
|
||||
|
||||
allow hal_camera_default camera_data_file:sock_file write;
|
||||
allow hal_camera_default camera_data_file:dir create_dir_perms;
|
||||
allow hal_camera_default camera_data_file:file create_file_perms;
|
||||
|
|
|
|||
Loading…
Reference in a new issue