marlin: remove binder_in_vendor_violators from camera HAL
b/36651814 [QCOM Treble] marlin/sailfish/wahoo Camera HAL uses Binder
Test: marlin
Change-Id: I88b839da4841bf69896666918b73cb42e652f481
Signed-off-by: Iliyan Malchev <malchev@google.com>
diff --git a/sepolicy/hal_camera.te b/sepolicy/hal_camera.te
index 5709cd3..3f44473 100644
--- a/sepolicy/hal_camera.te
+++ b/sepolicy/hal_camera.te
@@ -23,14 +23,7 @@
# find libraries
allow hal_camera system_file:dir r_dir_perms;
-# talk over binder to some binder services
-# TODO(b/36569385): Must be moved to HIDL
-binder_use(hal_camera)
-binder_call(hal_camera, binderservicedomain)
-
allow hal_camera qdisplay_service:vndservice_manager find;
-allow hal_camera sensorservice_service:service_manager find;
-allow hal_camera scheduling_policy_service:service_manager find;
# talk to system_server
diff --git a/sepolicy/hal_camera_default.te b/sepolicy/hal_camera_default.te
index e72b01a..e2ab1a3 100644
--- a/sepolicy/hal_camera_default.te
+++ b/sepolicy/hal_camera_default.te
@@ -1,8 +1,9 @@
-# TODO(b/36569385): Remove once Camera HAL no longer uses Binder
-typeattribute hal_camera_default binder_in_vendor_violators;
# TODO(b/36651251, b/36730929): Remove once Camera Hal is no longer accessing
# /data outside /data/vendor.
typeattribute hal_camera_default coredata_in_vendor_violators;
vndbinder_use(hal_camera_default);
allow hal_camera_default qdisplay_service:vndservice_manager { find };
+
+binder_call(hal_camera_default, hal_graphics_composer)
+binder_call(hal_camera_default, system_server)
