shinano-common: sepolicies: Solve camera related denials

Change-Id: I542625f5be637dbad4a40498eca69bfec0fe8ab1
author: nailyk-fr <nailyk_git@nailyk.fr> 2017-03-26 20:12:45 +0200
committer: Max Weffers <rcstar6696@gmail.com> 2017-03-27 14:28:10 +0200
commit: 4467dff061ab94fd54e6fbfd1ba1f30d0c1e959e (patch)
tree: 256762389080adb9c48c7719519f62d030f650c6
parent: 457377dbb945b5b6792a637e75d4e62a56dce807 (diff)
2 files changed, 5 insertions, 0 deletions
diff --git a/sepolicy/idd.te b/sepolicy/idd.te
index bb3ef03..5d7a3f7 100644
--- a/sepolicy/idd.te
+++ b/sepolicy/idd.te
@@ -40,4 +40,6 @@ allow system_server iddd_exec:file { getattr open read };
 allow iddd tmpfs:lnk_file read;
 #============= iddd ==============
 allow iddd iddd_exec:file execute_no_trans;
+allow iddd iddd_file:dir create;
+allow iddd proc:file { getattr open read };
 
diff --git a/sepolicy/workarounds.te b/sepolicy/workarounds.te
index ed9aaf6..b026b37 100644
--- a/sepolicy/workarounds.te
+++ b/sepolicy/workarounds.te
@@ -14,6 +14,8 @@ allow qti_init_shell toolbox_exec:file entrypoint;
 
 #============= mm-qcamerad ==============
 allow mm-qcamerad camera_device:chr_file { ioctl open read write };
+allow mm-qcamerad ta_data_file:dir { getattr open read };
+
 
 #============= thermanager ==============
 allow thermanager sysfs:file { open read };
@@ -37,6 +39,7 @@ allow wv tee_device:chr_file { ioctl open read write };
 
 #============= mediaserver ==============
 allow mediaserver sensorservice_service:service_manager find;
+allow mediaserver ta_data_file:dir { getattr open read };
 
 #============= rmt_storage ==============
 allow rmt_storage self:capability dac_override;
author	nailyk-fr <nailyk_git@nailyk.fr>	2017-03-26 20:12:45 +0200
committer	Max Weffers <rcstar6696@gmail.com>	2017-03-27 14:28:10 +0200
commit	4467dff061ab94fd54e6fbfd1ba1f30d0c1e959e (patch)
tree	256762389080adb9c48c7719519f62d030f650c6
parent	457377dbb945b5b6792a637e75d4e62a56dce807 (diff)