From 5cde66e787c0eff492d979db16031101f0843b5e Mon Sep 17 00:00:00 2001
From: ChihYao Chien <ccchien@google.com>
Date: Fri, 21 Jan 2022 17:16:38 +0800
Subject: Add sepolicy rules from AU184

avc:  denied  { find } for pid=4219 uid=10202
name=vendor.qti.hardware.radio.ims.IImsRadio/imsradio0
scontext=u:r:qtelephony:s0:c202,c256,c512,c768
tcontext=u:object_r:default_android_service:s0
tclass=service_manager
permissive=0

avc: denied { read } for name="wakeup24" dev="sysfs" ino=63576
scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir
permissive=0
avc: denied { read } for name="wakeup23" dev="sysfs" ino=63561
scontext=u:r:system_suspend:s0 tcontext=u:object_r:sysfs:s0 tclass=dir
permissive=0

Bug: 215046366
Change-Id: Ia5a1e0647473250ccbab46df4be88a2a6f2f033a
---
 vendor/qcom/common/genfs_contexts   | 2 ++
 vendor/qcom/common/service.te       | 2 +-
 vendor/qcom/common/service_contexts | 2 ++
 3 files changed, 5 insertions(+), 1 deletion(-)

(limited to 'vendor/qcom')

diff --git a/vendor/qcom/common/genfs_contexts b/vendor/qcom/common/genfs_contexts
index 8afbb14..d8158ec 100644
--- a/vendor/qcom/common/genfs_contexts
+++ b/vendor/qcom/common/genfs_contexts
@@ -26,3 +26,5 @@ genfscon sysfs /devices/platform/soc/soc:qcom,ipa_fws@1e08000
 genfscon sysfs /devices/virtual/xt_hardidletimer/timers                                                                                u:object_r:sysfs_data:s0
 genfscon sysfs /devices/virtual/xt_idletimer/timers                                                                                    u:object_r:sysfs_data:s0
 genfscon sysfs /module/subsystem_restart/parameters/enable_ramdumps                                                                    u:object_r:sysfs_ssr:s0
+genfscon sysfs /devices/virtual/fastrpc/adsprpc-smd/wakeup                                                                             u:object_r:sysfs_wakeup:s0
+genfscon sysfs /devices/virtual/fastrpc/adsprpc-smd-secure/wakeup                                                                      u:object_r:sysfs_wakeup:s0
diff --git a/vendor/qcom/common/service.te b/vendor/qcom/common/service.te
index c3aa9f1..cb00941 100644
--- a/vendor/qcom/common/service.te
+++ b/vendor/qcom/common/service.te
@@ -4,4 +4,4 @@ type imsrcs_service,              service_manager_type;
 type improve_touch_service,       service_manager_type;
 type gba_auth_service,            service_manager_type;
 type qtitetherservice_service,    service_manager_type;
-type hal_telephony_service, service_manager_type, vendor_service;
+type hal_telephony_service,       service_manager_type, vendor_service, protected_service;
diff --git a/vendor/qcom/common/service_contexts b/vendor/qcom/common/service_contexts
index 405f768..c11263b 100644
--- a/vendor/qcom/common/service_contexts
+++ b/vendor/qcom/common/service_contexts
@@ -1 +1,3 @@
 vendor.qti.hardware.radio.ims.IImsRadio/default        u:object_r:hal_telephony_service:s0
+vendor.qti.hardware.radio.ims.IImsRadio/imsradio0         u:object_r:hal_telephony_service:s0
+vendor.qti.hardware.radio.ims.IImsRadio/imsradio1         u:object_r:hal_telephony_service:s0
-- 
cgit v1.2.3