1 type camera, domain, device_domain_deprecated; 2 type camera_exec, exec_type, file_type; 3 4 # Started by init 5 init_daemon_domain(camera) 6 7 binder_use(camera) 8 binder_call(camera, system_server) 9 10 allow camera self:capability { sys_nice }; 11 12 allow camera sensorservice_service:service_manager find; 13 14 allow camera system_server:unix_stream_socket { read write }; 15 16 allow camera camera_device:chr_file rw_file_perms; 17 allow camera input_device:dir r_dir_perms; 18 allow camera input_device:chr_file r_file_perms; 19 allow camera media_device:chr_file rw_file_perms; 20 allow camera gpu_device:chr_file rw_file_perms; 21 allow camera video_device:chr_file rw_file_perms; 22 23 allow camera sysfs_prox_snsr:file rw_file_perms; 24 allow camera camera_data_file:dir rw_dir_perms; 25 allow camera camera_data_file:sock_file create_file_perms; 26 27 # /persist access 28 allow camera persist_file:dir search; 29 allow camera persist_data_file:dir search; 30 allow camera persist_data_file:file r_file_perms; 31 32 allow camera { cameraserver surfaceflinger }:fd use; 33 hal_client_domain(camera, hal_graphics_allocator) 34 allow camera hal_renderscript_hwservice:hwservice_manager find; 35
