From 1aa2263a21d2f4059af70f0b8615ea006024baeb Mon Sep 17 00:00:00 2001
From: Davide Garberi <dade.garberi@gmail.com>
Date: Thu, 19 Sep 2019 19:43:48 +0200
Subject: sdm660-common: biometrics: Address fingerprint denials

* Mostly just for goodix

Change-Id: Ia8fb90fca742a220e31f206b344026c69e751bb0
---
 sepolicy/vendor/init_fingerprint.te | 4 +++-
 sepolicy/vendor/tee.te              | 2 ++
 2 files changed, 5 insertions(+), 1 deletion(-)

(limited to 'sepolicy')

diff --git a/sepolicy/vendor/init_fingerprint.te b/sepolicy/vendor/init_fingerprint.te
index b45cdd6..9ef78c4 100644
--- a/sepolicy/vendor/init_fingerprint.te
+++ b/sepolicy/vendor/init_fingerprint.te
@@ -11,4 +11,6 @@ allow init_fingerprint vendor_toolbox_exec:file rx_file_perms;
 # Allow to delete file
 allow init_fingerprint persist_file:dir search;
 allow init_fingerprint persist_drm_file:dir { read search open write remove_name };
-allow init_fingerprint persist_drm_file:file { getattr unlink };
\ No newline at end of file
+allow init_fingerprint persist_drm_file:file { getattr unlink };
+
+allow init_fingerprint system_data_file:file getattr;
diff --git a/sepolicy/vendor/tee.te b/sepolicy/vendor/tee.te
index 0a124bc..6c2c9b1 100644
--- a/sepolicy/vendor/tee.te
+++ b/sepolicy/vendor/tee.te
@@ -4,3 +4,5 @@ typeattribute tee data_between_core_and_vendor_violators;
 allow tee system_data_file:dir r_dir_perms;
 allow tee fingerprintd_data_file:dir rw_dir_perms;
 allow tee fingerprintd_data_file:file create_file_perms;
+allow tee vendor_data_file:file { read open unlink };
+allow tee vendor_data_file:dir { write remove_name read };
-- 
cgit v1.2.3