From 4467dff061ab94fd54e6fbfd1ba1f30d0c1e959e Mon Sep 17 00:00:00 2001
From: nailyk-fr <nailyk_git@nailyk.fr>
Date: Sun, 26 Mar 2017 20:12:45 +0200
Subject: shinano-common: sepolicies: Solve camera related denials

Change-Id: I542625f5be637dbad4a40498eca69bfec0fe8ab1
---
 sepolicy/idd.te         | 2 ++
 sepolicy/workarounds.te | 3 +++
 2 files changed, 5 insertions(+)

(limited to 'sepolicy')

diff --git a/sepolicy/idd.te b/sepolicy/idd.te
index bb3ef03..5d7a3f7 100644
--- a/sepolicy/idd.te
+++ b/sepolicy/idd.te
@@ -40,4 +40,6 @@ allow system_server iddd_exec:file { getattr open read };
 allow iddd tmpfs:lnk_file read;
 #============= iddd ==============
 allow iddd iddd_exec:file execute_no_trans;
+allow iddd iddd_file:dir create;
+allow iddd proc:file { getattr open read };
 
diff --git a/sepolicy/workarounds.te b/sepolicy/workarounds.te
index ed9aaf6..b026b37 100644
--- a/sepolicy/workarounds.te
+++ b/sepolicy/workarounds.te
@@ -14,6 +14,8 @@ allow qti_init_shell toolbox_exec:file entrypoint;
 
 #============= mm-qcamerad ==============
 allow mm-qcamerad camera_device:chr_file { ioctl open read write };
+allow mm-qcamerad ta_data_file:dir { getattr open read };
+
 
 #============= thermanager ==============
 allow thermanager sysfs:file { open read };
@@ -37,6 +39,7 @@ allow wv tee_device:chr_file { ioctl open read write };
 
 #============= mediaserver ==============
 allow mediaserver sensorservice_service:service_manager find;
+allow mediaserver ta_data_file:dir { getattr open read };
 
 #============= rmt_storage ==============
 allow rmt_storage self:capability dac_override;
-- 
cgit v1.2.3