psmattas/device_motorola_sanders-lineage
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

sanders: sepol: update sepolicy

Browse Source 
-ref: https://github.com/crdroidandroid/android_device_motorola_sanders/tree/10.0-20200126

Signed-off-by: ronaxdevil <pratabidya.007@gmail.com>
This commit is contained in:
ronaxdevil
2020-03-26 10:26:49 +05:30
committed by ArmSM
parent e4a48bc271
commit 63a775260b
79 changed files with 399 additions and 267 deletions
Download Patch File Download Diff File Expand all files Collapse all files

35
sepolicy/vendor/mm-qcamerad.te vendored
View File

@@ -1,27 +1,38 @@
#type_transition mm-qcamerad camera_data_file:sock_file camera_socket "cam_socket1";
#type_transition mm-qcamerad camera_data_file:sock_file camera_socket "cam_socket2";
type_transition mm-qcamerad camera_data_file:sock_file camera_socket "cam_socket1";
type_transition mm-qcamerad camera_data_file:sock_file camera_socket "cam_socket2";
allow mm-qcamerad camera_socket:sock_file { create unlink write };
allow mm-qcamerad sysfs_graphics:file r_file_perms;
# binder_call(mm-qcamerad, servicemanager);
# binder_use(mm-qcamerad);
# binder_call(mm-qcamerad, binderservicedomain);
# binder_call(mm-qcamerad, appdomain);
# binder_call(mm-qcamerad, hal_sensors_default);
#set_prop(mm-qcamerad, camera_prop);
set_prop(mm-qcamerad, camera_prop);
#allow servicemanager mm-qcamerad:dir { search };
#allow servicemanager mm-qcamerad:file { read open };
#allow servicemanager mm-qcamerad:process { getattr };
allow servicemanager mm-qcamerad:dir { search };
allow servicemanager mm-qcamerad:file { read open };
allow servicemanager mm-qcamerad:process { getattr };
# allow mm-qcamerad camera_data_file:sock_file { create unlink write };
# allow mm-qcamerad system_server:unix_stream_socket rw_socket_perms;
#allow mm-qcamerad sensorservice_service:service_manager find;
#allow mm-qcamerad vendor_camera_data_file:file rw_file_perms;
allow mm-qcamerad vendor_camera_data_file:file rw_file_perms;
# allow mm-qcamerad permission_service:service_manager find;
#allow mm-qcamerad debug_prop:property_service set;
allow mm-qcamerad debug_prop:property_service set;
#allow mm-qcamerad init:unix_stream_socket { read write };
allow mm-qcamerad init:unix_stream_socket { read write };
#allow mm-qcamerad hal_sensors_default:unix_stream_socket { read write };
allow mm-qcamerad hal_sensors_default:unix_stream_socket { read write };
#allow mm-qcamerad hal_configstore_ISurfaceFlingerConfigs:hwservice_manager find;
#allow mm-qcamerad hal_configstore_default:binder call;
allow mm-qcamerad hal_configstore_ISurfaceFlingerConfigs:hwservice_manager find;
allow mm-qcamerad hal_configstore_default:binder call;
allow mm-qcamerad binder_device:chr_file { ioctl open read write };
allow mm-qcamerad camera_data_file:dir search;
allow mm-qcamerad sysfs:file { open read };
allow mm-qcamerad vendor_data_file:dir read;
allow mm-qcamerad unlabeled:dir search;
allow mm-qcamerad unlabeled:file { open read };
allow mm-qcamerad default_prop:property_service set;
allow mm-qcamerad mnt_vendor_file:file { getattr open read };