From bd36256badf8e1fe2ab1990653291b4e91b89740 Mon Sep 17 00:00:00 2001
From: Rick Chen <rickctchen@google.com>
Date: Tue, 8 Nov 2022 22:41:26 +0800
Subject: [PATCH] Allow CHRE to use EPOLLWAKEUP [DO NOT MERGE]

avc: denied { block_suspend } for comm="UsfTransport" capability=36 scontext=u:r:chre:s0 tcontext=u:r:chre:s0 tclass=capability2 permissive=0

Bug: 238666865
Test: Check no chre avc denied.
Change-Id: Ifd2c37c58c548aec46a2c46891a1fc4d1f83f9be
Signed-off-by: Rick Chen <rickctchen@google.com>
---
 whitechapel/vendor/google/chre.te | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/whitechapel/vendor/google/chre.te b/whitechapel/vendor/google/chre.te
index 9dfd9bf6..26c1675f 100644
--- a/whitechapel/vendor/google/chre.te
+++ b/whitechapel/vendor/google/chre.te
@@ -23,3 +23,5 @@ allow chre hal_wifi_ext_hwservice:hwservice_manager find;
 allow chre fwk_stats_service:service_manager find;
 binder_call(chre, stats_service_server)
 
+# Allow CHRE to block suspend, which is required to use EPOLLWAKEUP.
+allow chre self:global_capability2_class_set block_suspend;