msm8996-common: sepolicy: Address some denials

* The camera ones are due to the OSS camera hal * The other one has just been missed before Signed-off-by: Davide Garberi <dade.garberi@gmail.com>
author: Davide Garberi <dade.garberi@gmail.com> 2018-01-17 14:56:42 +0100
committer: Davide Garberi <dade.garberi@gmail.com> 2018-01-19 14:12:52 +0100
commit: 9ec2269369ec7e43d1511eea537bd568c087b7db (patch)
tree: 395f0e4e647c43564131d2f7ac7bd4d782acec6c
parent: 8660e03e18733d5ab4519fd2966719adc7531f0e (diff)
3 files changed, 4 insertions, 0 deletions
diff --git a/sepolicy/cameraserver.te b/sepolicy/cameraserver.te
index b37ca3c..c31c9f1 100644
--- a/sepolicy/cameraserver.te
+++ b/sepolicy/cameraserver.te
@@ -1 +1,3 @@
 allow cameraserver init:unix_dgram_socket sendto;
+allow cameraserver hal_perf_hwservice:hwservice_manager find;
+allow cameraserver hal_perf_default:binder call;
diff --git a/sepolicy/kernel.te b/sepolicy/kernel.te
new file mode 100644
index 0000000..bd8c7b7
--- /dev/null
+++ b/sepolicy/kernel.te
@@ -0,0 +1 @@
+allow kernel tmpfs:dir search; 
diff --git a/sepolicy/priv_app.te b/sepolicy/priv_app.te
index 5b470fe..cc3ead2 100644
--- a/sepolicy/priv_app.te
+++ b/sepolicy/priv_app.te
@@ -1,2 +1,3 @@
 allow priv_app device:dir { open read };
 allow priv_app { camera_prop proc_interrupts }:file { open read };
+allow priv_app camera_prop:file getattr;
author	Davide Garberi <dade.garberi@gmail.com>	2018-01-17 14:56:42 +0100
committer	Davide Garberi <dade.garberi@gmail.com>	2018-01-19 14:12:52 +0100
commit	9ec2269369ec7e43d1511eea537bd568c087b7db (patch)
tree	395f0e4e647c43564131d2f7ac7bd4d782acec6c
parent	8660e03e18733d5ab4519fd2966719adc7531f0e (diff)