Gitiles
Code Review Sign In
LeafOS / LeafOS-Project / android_device_qcom_sepolicy / 7eabf65ff9bd7d699a1a0121ef99e8743bb080af^1..7eabf65ff9bd7d699a1a0121ef99e8743bb080af / .
commit7eabf65ff9bd7d699a1a0121ef99e8743bb080af[log] [tgz]
authorMichael Bestas <mkbestas@lineageos.org>Fri Mar 29 12:08:16 2024 +0200
committerMichael Bestas <mkbestas@lineageos.org>Fri Mar 29 12:08:16 2024 +0200
tree1f8563b50dbf7e207ff542375e2d04597a9ea511
parenta55fc3cc31b7a8a84788cdb823a00dc39059dd1f [diff]
parentf7b43c73fc7b09a19efc6ab7d57f09c285732b6b [diff]
Merge tag 'LA.UM.12.2.1.r1-02900-sdm660.0' into staging/lineage-21.0_merge-LA.UM.12.2.1.r1-02900-sdm660.0

"LA.UM.12.2.1.r1-02900-sdm660.0"

* tag 'LA.UM.12.2.1.r1-02900-sdm660.0':
  Sepolicy : Allow vendor_init to access bluetooth prop.
  Add sepolicy dir and sock permissions to location module
  location AVC denials during user profile switch

 Conflicts:
	legacy/vendor/common/property_contexts

Change-Id: Ic870aa5f9abe177e4d8c00a1bf3d9b66b67e3d75

diff --git a/legacy/vendor/common/property_contexts b/legacy/vendor/common/property_contexts
index 76325c7..06a317d 100644
--- a/legacy/vendor/common/property_contexts
+++ b/legacy/vendor/common/property_contexts

@@ -27,6 +27,7 @@
 
 persist.vendor.service.bdroid.      u:object_r:vendor_bluetooth_prop:s0
 persist.vendor.bt.soc.scram_freqs   u:object_r:vendor_bluetooth_prop:s0
+persist.vendor.bt.a2dp_offload_cap  u:object_r:vendor_bluetooth_prop:s0
 persist.vendor.bluetooth.           u:object_r:vendor_bluetooth_prop:s0
 persist.vendor.bluetooth.a2dp.      u:object_r:vendor_bluetooth_prop:s0
 persist.vendor.qcom.bluetooth.      u:object_r:vendor_bluetooth_prop:s0

diff --git a/legacy/vendor/sdm660/hal_wifi_supplicant.te b/legacy/vendor/sdm660/hal_wifi_supplicant.te
new file mode 100644
index 0000000..0968d6a
--- /dev/null
+++ b/legacy/vendor/sdm660/hal_wifi_supplicant.te

@@ -0,0 +1,5 @@
+# Copyright (c) 2024 Qualcomm Innovation Center, Inc. All rights reserved.
+# SPDX-License-Identifier: BSD-3-Clause-Clear
+
+# # Allow wpa_supplicant to send back wifi information to location
+allow hal_wifi_supplicant_default location:unix_dgram_socket sendto;
\ No newline at end of file

diff --git a/legacy/vendor/sdm660/location.te b/legacy/vendor/sdm660/location.te
index 077b165..6dcebb0 100644
--- a/legacy/vendor/sdm660/location.te
+++ b/legacy/vendor/sdm660/location.te

@@ -5,3 +5,6 @@
 
 # allows location to access ssgtzd socket
 allow location ssgtzd_socket:sock_file write;
+
+# /data/vendor/wifi
+allow location wifi_vendor_data_file:dir rw_dir_perms;

diff --git a/legacy/vendor/sdm660/location_app.te b/legacy/vendor/sdm660/location_app.te
index 6bf6da9..7e88264 100644
--- a/legacy/vendor/sdm660/location_app.te
+++ b/legacy/vendor/sdm660/location_app.te

@@ -31,3 +31,6 @@
 
 allow vendor_location_app sysfs_kgsl_gpu_model:file r_file_perms;
 dontaudit vendor_location_app default_android_service:service_manager {find};
+
+allow vendor_location_app system_data_file:dir {search};
+allow vendor_location_app user_profile_root_file:dir {search};