Commits
Wenbo.Zhu committed a90ec9d951a
MA-12569 Clean selinux errors when operate camera and setprop.
Add sepolicies as request when operate camera and setprop.
avc: denied { set } for property=sys.hwc.disable pid=4085 uid=2000 gid=2000
scontext=u:r:shell:s0 tcontext=u:object_r:system_prop:s0
tclass=property_service permissive=0
avc: denied { getattr } for pid=3258 comm="MessageThread" path="/dev/dri/renderD128"
dev="tmpfs" ino=13458 scontext=u:r:hal_camera_default:s0
tcontext=u:object_r:gpu_device:s0 tclass=chr_file permissive=1
avc: denied { map } for pid=3309 comm="HwBinder:3309_2" path="/dev/mxc_hifi4"
dev="tmpfs" ino=14690 scontext=u:r:mediacodec:s0 tcontext=u:object_r:audio_device:s0
tclass=chr_file permissive=1
avc: denied { search } for pid=4581 comm="ndroid.settings" name="/" dev="bpf" ino=1
scontext=u:r:system_app:s0 tcontext=u:object_r:fs_bpf:s0 tclass=dir permissive=1
avc: denied { getattr } for pid=3327 comm="Binder:3327_2" path="/vendor/lib/libopencl-2d.so"
dev="mmcblk1p10" ino=215 scontext=u:r:cameraserver:s0 tcontext=u:object_r:vendor_file:s0
tclass=file permissive=1
avc: denied { open } for pid=3184 comm="boot@1.0-servic" path="/proc/cmdline" dev="proc"
ino=4026532261 scontext=u:r:hal_bootctl_default:s0 tcontext=u:object_r:proc_cmdline:s0
tclass=file permissive=1
avc: denied { read } for pid=3184 comm="boot@1.0-servic" name="cmdline" dev="proc" ino=4026532261
scontext=u:r:hal_bootctl_default:s0 tcontext=u:object_r:proc_cmdline:s0 tclass=file permissive=1
avc: denied { map } for pid=3368 comm="Binder:3368_1" path="/dev/galcore" dev="tmpfs" ino=15384
scontext=u:r:cameraserver:s0 tcontext=u:object_r:gpu_device:s0 tclass=chr_file permissive=0
Change-Id: Ie34a0441e9b1c5b489a1e26f28d150981297447c
Signed-off-by: Wenbo.Zhu <wenbo.zhu_1@nxp.com>
Reviewed-on: http://androidsource.ap.freescale.net/project/5785
Reviewed-by: zhang sanshan <sanshan.zhang@nxp.com>