From 2a8ed004f69a24a982417b0b571c7edcf058fd1e Mon Sep 17 00:00:00 2001
From: Grace Chen <chengrace@google.com>
Date: Wed, 23 Mar 2022 14:53:03 -0700
Subject: [PATCH] Add selinux permissions to r/w sysfs st33spi_state

Bug: 228508704
Test: Confirm can r/w to sysfs file
Change-Id: If96f15f53ee510bf361a2bec5f006d67b178981e
---
 whitechapel_pro/euiccpixel_app.te | 2 ++
 whitechapel_pro/file.te           | 1 +
 2 files changed, 3 insertions(+)

diff --git a/whitechapel_pro/euiccpixel_app.te b/whitechapel_pro/euiccpixel_app.te
index a59581eb..303f8f36 100644
--- a/whitechapel_pro/euiccpixel_app.te
+++ b/whitechapel_pro/euiccpixel_app.te
@@ -6,6 +6,8 @@ app_domain(euiccpixel_app)
 allow euiccpixel_app app_api_service:service_manager find;
 allow euiccpixel_app radio_service:service_manager find;
 allow euiccpixel_app nfc_service:service_manager find;
+allow euiccpixel_app sysfs_st33spi:dir search;
+allow euiccpixel_app sysfs_st33spi:file rw_file_perms;
 
 set_prop(euiccpixel_app, vendor_secure_element_prop)
 set_prop(euiccpixel_app, vendor_modem_prop)
diff --git a/whitechapel_pro/file.te b/whitechapel_pro/file.te
index b42bf4ee..361828ff 100644
--- a/whitechapel_pro/file.te
+++ b/whitechapel_pro/file.te
@@ -91,6 +91,7 @@ type modem_userdata_file, file_type;
 
 # SecureElement
 type sysfs_st33spi, sysfs_type, fs_type;
+typeattribute sysfs_st33spi mlstrustedobject;
 
 # GPU
 type sysfs_gpu, sysfs_type, fs_type;