From 807dacaab8e2e4f4b53ad4dea172476a9602cf7f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Cosme=20Dom=C3=ADnguez=20D=C3=ADaz?= <cosme.ddiaz@gmail.com>
Date: Fri, 30 Mar 2018 22:18:50 +0200
Subject: msm8996-common: sepolicy: Fix some SELinux denials with perf HALs.

  * And simplify hal_fingerprint_default.te
---
 sepolicy/hal_fingerprint_default.te | 5 ++---
 sepolicy/hal_perf_default.te        | 3 ++-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/sepolicy/hal_fingerprint_default.te b/sepolicy/hal_fingerprint_default.te
index 34df9e2..abbc29d 100644
--- a/sepolicy/hal_fingerprint_default.te
+++ b/sepolicy/hal_fingerprint_default.te
@@ -4,6 +4,5 @@ allow hal_fingerprint_default sysfs:file write;
 allow hal_fingerprint_default fpc_data_file:dir rw_dir_perms;
 allow hal_fingerprint_default sysfs_fpc_irq:file rw_file_perms;
 allow hal_fingerprint_default tee_device:chr_file rw_file_perms;
-allow hal_fingerprint_default firmware_file:dir { search read };
-allow hal_fingerprint_default firmware_file:file { read open };
-allow hal_fingerprint_default system_data_file:dir { add_name create open read remove_name write };
+allow hal_fingerprint_default firmware_file:file r_file_perms;
+allow hal_fingerprint_default system_data_file:dir rw_dir_perms;
diff --git a/sepolicy/hal_perf_default.te b/sepolicy/hal_perf_default.te
index 8505d25..86004ca 100644
--- a/sepolicy/hal_perf_default.te
+++ b/sepolicy/hal_perf_default.te
@@ -1 +1,2 @@
-allow hal_perf_default freq_prop:property_service set;
+set_prop(hal_perf_default, freq_prop)
+allow hal_perf_default hal_graphics_composer_default:process signull;
-- 
cgit v1.2.3