From 1d72232ac041668af6bc8d2a5db6fcc233f0d05c Mon Sep 17 00:00:00 2001
From: Demon Singur <demonsingur@gmail.com>
Date: Tue, 18 Sep 2018 08:42:48 +0000
Subject: msm8996-common: sepolicy: let camera hal access /data/misc files

Removed from system_sepolicy, but still needed by our old camera stack.

Solves the following denials.
denied { search } for pid=717 comm="CAM_AECAWB" name="camera" dev="sda17" ino=3121215 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:camera_data_file:s0 tclass=dir permissive=0
denied { search } for pid=717 comm="CAM_AECAWB" name="camera" dev="sda17" ino=3121215 scontext=u:r:hal_camera_default:s0 tcontext=u:object_r:camera_data_file:s0 tclass=dir permissive=0

Change-Id: I497bade68e6a5b2f60cd8ec90a97a81986d971af
---
 sepolicy/hal_camera_default.te | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 sepolicy/hal_camera_default.te

diff --git a/sepolicy/hal_camera_default.te b/sepolicy/hal_camera_default.te
new file mode 100644
index 0000000..1978c79
--- /dev/null
+++ b/sepolicy/hal_camera_default.te
@@ -0,0 +1,4 @@
+typeattribute hal_camera_default data_between_core_and_vendor_violators;
+
+allow hal_camera_default camera_data_file:dir create_dir_perms;
+allow hal_camera_default camera_data_file:file create_file_perms;
-- 
cgit v1.2.3