From 157325442b58abd9f15b340f5dee666d4a594577 Mon Sep 17 00:00:00 2001
From: LuK1337 <priv.luk@gmail.com>
Date: Sat, 25 Jun 2022 12:22:47 +0200
Subject: [PATCH] sepolicy: qti: Add label and rules for MDM modem

Change-Id: I4035e1a8ca305642bb8f852f4f4af86558530729
---
 sepolicy/qti/private/property_contexts   | 3 +++
 sepolicy/qti/vendor/file_contexts        | 6 ++++++
 sepolicy/qti/vendor/property.te          | 3 +++
 sepolicy/qti/vendor/property_contexts    | 3 +++
 sepolicy/qti/vendor/vendor_mdm_helper.te | 6 ++++++
 5 files changed, 21 insertions(+)
 create mode 100644 sepolicy/qti/vendor/vendor_mdm_helper.te

diff --git a/sepolicy/qti/private/property_contexts b/sepolicy/qti/private/property_contexts
index df6b47c..aae8949 100644
--- a/sepolicy/qti/private/property_contexts
+++ b/sepolicy/qti/private/property_contexts
@@ -9,5 +9,8 @@ persist.sys.log.ae                  u:object_r:exported_system_prop:s0
 persist.sys.log.af                  u:object_r:exported_system_prop:s0
 persist.sys.log.awb                 u:object_r:exported_system_prop:s0
 
+# Modem
+persist.sys.enable_modem_dump    u:object_r:exported_system_prop:s0
+
 # Version
 ro.separate.soft    u:object_r:system_oplus_project_prop:s0
diff --git a/sepolicy/qti/vendor/file_contexts b/sepolicy/qti/vendor/file_contexts
index 3a0e2a7..6c6f4b2 100644
--- a/sepolicy/qti/vendor/file_contexts
+++ b/sepolicy/qti/vendor/file_contexts
@@ -27,6 +27,12 @@
 # Init
 /(odm|vendor/odm)/bin/init\.oplus\.sh    u:object_r:vendor_qti_init_shell_exec:s0
 
+# MDM
+/dev/block/platform/soc/1d84000\.ufshc/by-name/mdm_oem_dycnvbk    u:object_r:vendor_modem_efs_partition_device:s0
+/dev/block/platform/soc/1d84000\.ufshc/by-name/mdm_oem_stanvbk    u:object_r:vendor_modem_efs_partition_device:s0
+/dev/block/platform/soc/1d84000\.ufshc/by-name/mdm1oemnvbktmp     u:object_r:vendor_modem_efs_partition_device:s0
+/dev/block/platform/soc/1d84000\.ufshc/by-name/mdmddr             u:object_r:vendor_efs_boot_dev:s0
+
 # NFC
 /(odm|vendor/odm)/bin/hw/vendor\.nxp\.hardware\.nfc@1\.2-service      u:object_r:hal_nfc_default_exec:s0
 /(odm|vendor/odm)/bin/hw/vendor\.qti\.esepowermanager@1\.1-service    u:object_r:vendor_hal_esepowermanager_qti_exec:s0
diff --git a/sepolicy/qti/vendor/property.te b/sepolicy/qti/vendor/property.te
index 4ec3d49..1132c8e 100644
--- a/sepolicy/qti/vendor/property.te
+++ b/sepolicy/qti/vendor/property.te
@@ -1,2 +1,5 @@
 # Fingerprint
 vendor_internal_prop(vendor_fingerprint_prop)
+
+# Modem
+vendor_internal_prop(vendor_modem_prop)
diff --git a/sepolicy/qti/vendor/property_contexts b/sepolicy/qti/vendor/property_contexts
index ed0f3a2..a6b1126 100644
--- a/sepolicy/qti/vendor/property_contexts
+++ b/sepolicy/qti/vendor/property_contexts
@@ -5,5 +5,8 @@ vendor.dps.dump.composerpid    u:object_r:vendor_display_prop:s0
 persist.vendor.fingerprint.    u:object_r:vendor_fingerprint_prop:s0
 vendor.fingerprint.            u:object_r:vendor_fingerprint_prop:s0
 
+# Modem
+vendor.modem_dump_action       u:object_r:vendor_modem_prop:s0
+
 # NFC
 vendor.oplus.nfc.fw.version    u:object_r:vendor_nfc_nq_prop:s0
diff --git a/sepolicy/qti/vendor/vendor_mdm_helper.te b/sepolicy/qti/vendor/vendor_mdm_helper.te
new file mode 100644
index 0000000..77a2e8c
--- /dev/null
+++ b/sepolicy/qti/vendor/vendor_mdm_helper.te
@@ -0,0 +1,6 @@
+allow vendor_mdm_helper vendor_modem_efs_partition_device:blk_file rw_file_perms;
+
+r_dir_file(vendor_mdm_helper, vendor_proc_engineer)
+r_dir_file(vendor_mdm_helper, vendor_proc_oplus_version)
+
+set_prop(vendor_mdm_helper, vendor_modem_prop)