Evolution-X-Tensor/device_google_gs-common
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Allow tachyon service to make binder calls to GCA

Browse source 
This permission is needed for tachyon service to call callbacks.

AVC Error seen when tachyon tries accessing GCA:
12-02 11:40:03.212  6987  6987 W com.google.edge: type=1400 audit(0.0:17): avc:  denied  { call } for  scontext=u:r:edgetpu_tachyon_server:s0 tcontext=u:r:google_camera_app:s0:c145,c256,c512,c768 tclass=binder permissive=0
12-03 07:12:26.424  4166  4166 W com.google.edge: type=1400 audit(0.0:254): avc:  denied  { call } for  scontext=u:r:edgetpu_tachyon_server:s0 tcontext=u:r:debug_camera_app:s0:c67,c257,c512,c768 tclass=binder permissive=0

Bug: 381787911
Flag: EXEMPT updates device sepolicy only
Change-Id: Id27ecd53e9ea7fbf273be098749cdaece55d00cb
This commit is contained in:
Dinesh Yadav 2024-12-03 04:01:59 +00:00
parent efc0fc73ea
commit 97f50223aa
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
edgetpu/sepolicy/google_camera.te Normal file
View file

@ -0,0 +1,5 @@
# Allow tachyon service to communicate with google_camera_app via binder.
binder_call(edgetpu_tachyon_server, google_camera_app);
# Allow tachyon_service to communicate with fishfood/Eng camera variants via binder.
binder_call(edgetpu_tachyon_server, debug_camera_app);