diff --git a/sepolicy/vendor/app.te b/sepolicy/vendor/app.te
new file mode 100644
index 0000000..ecd3946
--- /dev/null
+++ b/sepolicy/vendor/app.te
@@ -0,0 +1,2 @@
+get_prop(appdomain, vendor_camera_prop)
+get_prop(appdomain, camera_prop)
diff --git a/sepolicy/vendor/property.te b/sepolicy/vendor/property.te
index b4bba15..b2323c0 100644
--- a/sepolicy/vendor/property.te
+++ b/sepolicy/vendor/property.te
@@ -2,3 +2,4 @@ type hal_fingerprint_prop, property_type;
 type mlipay_prop, property_type;
 type thermal_engine_prop, property_type;
 type lirc_prop, property_type;
+type camera_prop, property_type;
diff --git a/sepolicy/vendor/property_contexts b/sepolicy/vendor/property_contexts
index 053c0fe..8051d5d 100644
--- a/sepolicy/vendor/property_contexts
+++ b/sepolicy/vendor/property_contexts
@@ -11,6 +11,8 @@ cpp.set.clock                           u:object_r:vendor_default_prop:s0
 disable.cpp.power.collapse              u:object_r:vendor_default_prop:s0
 vendor.camera.eis.gyro_name             u:object_r:vendor_camera_prop:s0
 vidc.enc.dcvs.extra-buff-count          u:object_r:vendor_default_prop:s0
+vendor.camera.aux.packageblacklist u:object_r:vendor_camera_prop:s0
+vendor.camera.aux.packagelist u:object_r:vendor_camera_prop:s0
 
 #IR
 ro.lirc.dev				u:object_r:lirc_prop:s0
diff --git a/sepolicy/vendor/system_app.te b/sepolicy/vendor/system_app.te
new file mode 100644
index 0000000..0e8c66c
--- /dev/null
+++ b/sepolicy/vendor/system_app.te
@@ -0,0 +1,2 @@
+allow system_app vendor_default_prop:file { getattr open read };
+allow system_app vendor_default_prop:file {map};
diff --git a/sepolicy/vendor/system_server.te b/sepolicy/vendor/system_server.te
new file mode 100644
index 0000000..a0b327d
--- /dev/null
+++ b/sepolicy/vendor/system_server.te
@@ -0,0 +1,3 @@
+# Allow system_server to set camera_prop
+get_prop(system_server, vendor_camera_prop)
+get_prop(system_server, camera_prop)
diff --git a/sepolicy/vendor/vendor_init.te b/sepolicy/vendor/vendor_init.te
index 5335e96..90b700b 100644
--- a/sepolicy/vendor/vendor_init.te
+++ b/sepolicy/vendor/vendor_init.te
@@ -9,3 +9,4 @@ allow init adsprpcd_file:file mounton;
 
 set_prop(vendor_init, vendor_freq_prop)
 set_prop(vendor_init, vendor_camera_prop)
+set_prop(vendor_init, camera_prop)