From 2f78330e8b4dcfe8b42697601f75eefd267d3ae3 Mon Sep 17 00:00:00 2001
From: Omkar Chandorkar <gotenksIN@aospa.co>
Date: Sat, 22 Oct 2022 12:11:46 +0530
Subject: [PATCH] sepolicy: qti: Allow cnss-daemon to access bdwlan.bin

Change-Id: I96375359bf4be92849a7969c4dfa13e13886ff70
Signed-off-by: Omkar Chandorkar <gotenksIN@aospa.co>
---
 sepolicy/qti/public/te_macros               | 9 +++++++++
 sepolicy/qti/vendor/vendor_wcnss_service.te | 1 +
 2 files changed, 10 insertions(+)
 create mode 100644 sepolicy/qti/vendor/vendor_wcnss_service.te

diff --git a/sepolicy/qti/public/te_macros b/sepolicy/qti/public/te_macros
index 08b2f89..2361dee 100644
--- a/sepolicy/qti/public/te_macros
+++ b/sepolicy/qti/public/te_macros
@@ -15,3 +15,12 @@ define(`rw_dir_file', `
 allow $1 $2:dir r_dir_perms;
 allow $1 $2:{ file lnk_file } rw_file_perms;
 ')
+
+#####################################
+# create_dir_file(domain, type)
+# Allow the specified domain to read directories and create files
+# and symbolic links of the specified type.
+define(`create_dir_file', `
+allow $1 $2:dir r_dir_perms;
+allow $1 $2:{ file lnk_file } create_file_perms;
+')
diff --git a/sepolicy/qti/vendor/vendor_wcnss_service.te b/sepolicy/qti/vendor/vendor_wcnss_service.te
new file mode 100644
index 0000000..3df4d8b
--- /dev/null
+++ b/sepolicy/qti/vendor/vendor_wcnss_service.te
@@ -0,0 +1 @@
+create_dir_file(vendor_wcnss_service, mnt_vendor_file)