Set up zumapro selinux policy for /dev/video12 access for hardware JPG encoder.
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:ea768217f5f8f2ab32a3f76b4329378c5731aa24) Bug: b/296330134 Test: https://android-build.corp.google.com/builds/abtd/run/L22000030001255046 Change-Id: I03d99401f5444e5a42e570a039c4838f1141bec9
This commit is contained in:
Angela Wu
parent
aaaf45379c
commit
0b7ef4e53b
5 changed files with 13 additions and 0 deletions
4
vendor/debug_camera_app.te
vendored
Normal file
4
vendor/debug_camera_app.te
vendored
Normal file
|
|
@ -0,0 +1,4 @@
|
||||||
|
userdebug_or_eng(`
|
||||||
|
# Allows GCA_Eng & GCA-Next to access the hw_jpeg /dev/video12.
|
||||||
|
allow debug_camera_app hw_jpg_device:chr_file rw_file_perms;
|
||||||
|
')
|
||||||
1
vendor/device.te
vendored
1
vendor/device.te
vendored
|
|
@ -1,3 +1,4 @@
|
||||||
type lwis_device, dev_type;
|
type lwis_device, dev_type;
|
||||||
type tee_persist_block_device, dev_type;
|
type tee_persist_block_device, dev_type;
|
||||||
type tee_userdata_block_device, dev_type;
|
type tee_userdata_block_device, dev_type;
|
||||||
|
type hw_jpg_device, dev_type, mlstrustedobject;
|
||||||
|
|
|
||||||
3
vendor/file_contexts
vendored
3
vendor/file_contexts
vendored
|
|
@ -34,6 +34,8 @@
|
||||||
/vendor/lib64/libOpenCL-pixel\.so u:object_r:same_process_hal_file:s0
|
/vendor/lib64/libOpenCL-pixel\.so u:object_r:same_process_hal_file:s0
|
||||||
/vendor/lib64/libOpenCL\.so u:object_r:same_process_hal_file:s0
|
/vendor/lib64/libOpenCL\.so u:object_r:same_process_hal_file:s0
|
||||||
/vendor/lib64/lib_aion_buffer\.so u:object_r:same_process_hal_file:s0
|
/vendor/lib64/lib_aion_buffer\.so u:object_r:same_process_hal_file:s0
|
||||||
|
/vendor/lib64/lib_jpg_encoder\.so u:object_r:same_process_hal_file:s0
|
||||||
|
/vendor/lib64/libhwjpeg\.so u:object_r:same_process_hal_file:s0
|
||||||
/vendor/lib64/pixel-power-ext-V1-ndk\.so u:object_r:same_process_hal_file:s0
|
/vendor/lib64/pixel-power-ext-V1-ndk\.so u:object_r:same_process_hal_file:s0
|
||||||
/vendor/lib64/android\.frameworks\.stats-V1-ndk\.so u:object_r:same_process_hal_file:s0
|
/vendor/lib64/android\.frameworks\.stats-V1-ndk\.so u:object_r:same_process_hal_file:s0
|
||||||
/vendor/lib64/vendor-pixelatoms-cpp\.so u:object_r:same_process_hal_file:s0
|
/vendor/lib64/vendor-pixelatoms-cpp\.so u:object_r:same_process_hal_file:s0
|
||||||
|
|
@ -156,6 +158,7 @@
|
||||||
/dev/qbt_ipc u:object_r:fingerprint_device:s0
|
/dev/qbt_ipc u:object_r:fingerprint_device:s0
|
||||||
/dev/qbt_fd u:object_r:fingerprint_device:s0
|
/dev/qbt_fd u:object_r:fingerprint_device:s0
|
||||||
/dev/goodix_fp u:object_r:fingerprint_device:s0
|
/dev/goodix_fp u:object_r:fingerprint_device:s0
|
||||||
|
/dev/video12 u:object_r:hw_jpg_device:s0
|
||||||
|
|
||||||
# Data
|
# Data
|
||||||
/data/vendor/ss(/.*)? u:object_r:tee_data_file:s0
|
/data/vendor/ss(/.*)? u:object_r:tee_data_file:s0
|
||||||
|
|
|
||||||
2
vendor/google_camera_app.te
vendored
Normal file
2
vendor/google_camera_app.te
vendored
Normal file
|
|
@ -0,0 +1,2 @@
|
||||||
|
# Allows GCA to access the hw_jpeg /dev/video12.
|
||||||
|
allow google_camera_app hw_jpg_device:chr_file rw_file_perms;
|
||||||
3
vendor/hal_camera_default.te
vendored
3
vendor/hal_camera_default.te
vendored
|
|
@ -1,2 +1,5 @@
|
||||||
# Allow the Camera HAL to acquire wakelocks for buffer pre-allocation purposes
|
# Allow the Camera HAL to acquire wakelocks for buffer pre-allocation purposes
|
||||||
wakelock_use(hal_camera_default)
|
wakelock_use(hal_camera_default)
|
||||||
|
|
||||||
|
# Allows camera HAL to access the hw_jpeg /dev/video12.
|
||||||
|
allow hal_camera_default hw_jpg_device:chr_file rw_file_perms;
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue