From c94a7269fbc0d9055ccb4790796ececbb0c98fbd Mon Sep 17 00:00:00 2001
From: Michael Bestas <mkbestas@lineageos.org>
Date: Sun, 9 Apr 2023 21:22:38 +0300
Subject: [PATCH] sepolicy: qti: Resolve vl53l1 denials

Change-Id: If0fc75186bcce23f0b9cc82ae13c37a30f57a26e
---
 sepolicy/qti/vendor/genfs_contexts        | 1 +
 sepolicy/qti/vendor/vl53l1_daemon_main.te | 2 ++
 2 files changed, 3 insertions(+)

diff --git a/sepolicy/qti/vendor/genfs_contexts b/sepolicy/qti/vendor/genfs_contexts
index 234ef11..8f26c51 100644
--- a/sepolicy/qti/vendor/genfs_contexts
+++ b/sepolicy/qti/vendor/genfs_contexts
@@ -30,6 +30,7 @@ genfscon sysfs /devices/platform/soc/soc:sensor_fb    u:object_r:vendor_sysfs_se
 
 # TOF
 genfscon sysfs /kernel/tof_control    u:object_r:vendor_sysfs_tof:s0
+genfscon sysfs /module/stmvl53l1      u:object_r:vendor_sysfs_tof:s0
 
 # Ultrasound
 genfscon proc /ultrasound    u:object_r:vendor_proc_ultrasound:s0
diff --git a/sepolicy/qti/vendor/vl53l1_daemon_main.te b/sepolicy/qti/vendor/vl53l1_daemon_main.te
index 02e2358..d4358a3 100644
--- a/sepolicy/qti/vendor/vl53l1_daemon_main.te
+++ b/sepolicy/qti/vendor/vl53l1_daemon_main.te
@@ -11,4 +11,6 @@ allow vl53l1_daemon_main self:{
 
 allow vl53l1_daemon_main self:netlink_iscsi_socket { read write create bind };
 
+r_dir_file(vl53l1_daemon_main, vendor_persist_camera_file)
+r_dir_file(vl53l1_daemon_main, vendor_sysfs_tof)
 rw_dir_file(vl53l1_daemon_main, mnt_vendor_file)