Evolution-X-Tensor/device_google_zuma
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge "Add se-policies for google_camera_app from pro" into udc-d1-dev

Browse source
This commit is contained in:
Dinesh Yadav 2023-04-17 08:32:26 +00:00 committed by Android (Google) Code Review
commit 39b4b20545
1 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

8
vendor/google_camera_app.te vendored
View file

@ -9,7 +9,15 @@ hal_client_domain(google_camera_app, hal_power)
# Allow camera app to access the a subset of app services. # Allow camera app to access the a subset of app services.
allow google_camera_app app_api_service:service_manager find; allow google_camera_app app_api_service:service_manager find;
allow google_camera_app audioserver_service:service_manager find;
allow google_camera_app cameraserver_service:service_manager find;
allow google_camera_app mediaextractor_service:service_manager find;
allow google_camera_app mediametrics_service:service_manager find;
allow google_camera_app mediaserver_service:service_manager find;
# Allows GCA to access the EdgeTPU device. # Allows GCA to access the EdgeTPU device.
allow google_camera_app edgetpu_app_service:service_manager find; allow google_camera_app edgetpu_app_service:service_manager find;
allow google_camera_app edgetpu_device:chr_file { getattr read write ioctl map }; allow google_camera_app edgetpu_device:chr_file { getattr read write ioctl map };
# Library code may try to access vendor properties, but should be denied
dontaudit google_camera_app vendor_default_prop:file { getattr map open };