msm8996-common: Fix hal_bluetooth_default SELinux denials:

* avc: denied { connectto } for pid=483 comm=bluetooth@1.0-s path=0062745F736F636B scontext=u:r:hal_bluetooth_default:s0 tcontext=u:r:wcnss_filter:s0 tclass=unix_stream_socket permissive=0 * vc: denied { add_name } for pid=483 comm=bluetooth@1.0-s name=bt_fw_version.txt scontext=u:r:hal_bluetooth_default:s0 tcontext=u:object_r:bluetooth_data_file:s0 tclass=dir permissive=0
author: Cosme Domínguez Díaz <cosme.ddiaz@gmail.com> 2018-03-23 22:44:56 +0100
committer: Cosme Domínguez Díaz <cosme.ddiaz@gmail.com> 2018-03-23 23:13:31 +0100
commit: 838dcfe594a5c98a0f9b3f61fbfb0a5a9a596933 (patch)
tree: 517d83f1fe81730b7e24fd8c91bd6b91de8032bd
parent: 8bd8db9ca44cffe61740fe2e81fccc609d37da4b (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/sepolicy/hal_bluetooth_default.te b/sepolicy/hal_bluetooth_default.te
index e3fa85e..cd5c85d 100644
--- a/sepolicy/hal_bluetooth_default.te
+++ b/sepolicy/hal_bluetooth_default.te
@@ -1,2 +1,4 @@
-allow hal_bluetooth_default bluetooth_data_file:dir { search write };
-allow hal_bluetooth_default bluetooth_data_file:file { append getattr open read write };
+allow hal_bluetooth_default bluetooth_data_file:dir ra_dir_perms;
+allow hal_bluetooth_default bluetooth_data_file:file create_file_perms;
+
+allow hal_bluetooth_default wcnss_filter:unix_stream_socket connectto;
author	Cosme Domínguez Díaz <cosme.ddiaz@gmail.com>	2018-03-23 22:44:56 +0100
committer	Cosme Domínguez Díaz <cosme.ddiaz@gmail.com>	2018-03-23 23:13:31 +0100
commit	838dcfe594a5c98a0f9b3f61fbfb0a5a9a596933 (patch)
tree	517d83f1fe81730b7e24fd8c91bd6b91de8032bd
parent	8bd8db9ca44cffe61740fe2e81fccc609d37da4b (diff)