1 type camera, domain; 2 type camera_exec, exec_type, file_type; 3 4 # Started by init 5 init_daemon_domain(camera) 6 7 allow camera self:capability sys_nice; 8 9 binder_use(camera) 10 binder_call(camera, system_server) 11 binder_call(camera, cameraserver) 12 allow camera system_server:unix_stream_socket { read write }; 13 14 allow camera ion_device:chr_file rw_file_perms; 15 allow camera sysfs_msm_subsys:file r_file_perms; 16 allow camera camera_device:chr_file rw_file_perms; 17 allow camera gpu_device:chr_file rw_file_perms; 18 allow camera graphics_device:chr_file rw_file_perms; 19 allow camera video_device:chr_file rw_file_perms; 20 allow camera sysfs_camera:dir search; 21 allow camera sysfs_camera:file rw_file_perms; 22 allow camera sysfs_video:dir search; 23 allow camera sysfs_video:file r_file_perms; 24 allow camera system_file:dir r_dir_perms; 25 allow camera sensorservice_service:service_manager find; 26 27 set_prop(camera, camera_prop) 28 29 allow camera surfaceflinger:fd use; 30 allow camera cameraserver:fd use; 31 32 allow camera camera_data_file:dir rw_dir_perms; 33 allow camera camera_data_file:sock_file { create unlink }; 34 35 allow camera input_device:dir r_dir_perms; 36 allow camera input_device:chr_file r_file_perms; 37
