From 3dc2515efef643376ab67a0d5828e0c49405ada8 Mon Sep 17 00:00:00 2001
From: George Chang <georgekgchang@google.com>
Date: Mon, 22 Nov 2021 11:16:59 +0800
Subject: [PATCH] Update SecureElement sysfs_st33spi Sepolicy

Add rules for sysfs_st33spi

Bug: 205250948
Test: check avc without secure_element
Change-Id: I1ccf39ca09c6b19a597114f04803800d38fdf774
---
 whitechapel_pro/file.te        | 4 ++++
 whitechapel_pro/genfs_contexts | 4 ++++
 whitechapel_pro/vendor_init.te | 1 +
 3 files changed, 9 insertions(+)

diff --git a/whitechapel_pro/file.te b/whitechapel_pro/file.te
index 3f6ae4ca..a7818a5a 100644
--- a/whitechapel_pro/file.te
+++ b/whitechapel_pro/file.te
@@ -77,3 +77,7 @@ type vendor_dumpsys, vendor_file_type, file_type;
 # Modem
 type modem_efs_file, file_type;
 type modem_userdata_file, file_type;
+
+# SecureElement
+type sysfs_st33spi, sysfs_type, fs_type;
+
diff --git a/whitechapel_pro/genfs_contexts b/whitechapel_pro/genfs_contexts
index 7ea10d32..82b62db5 100644
--- a/whitechapel_pro/genfs_contexts
+++ b/whitechapel_pro/genfs_contexts
@@ -124,3 +124,7 @@ genfscon sysfs /devices/platform/gpio_keys/wakeup/wakeup u:object_r:sysfs_wakeup
 genfscon sysfs /devices/platform/odm/odm:btbcm/wakeup/wakeup u:object_r:sysfs_wakeup:s0
 genfscon sysfs /devices/platform/sound-aoc/wakeup/wakeup u:object_r:sysfs_wakeup:s0
 genfscon sysfs /devices/virtual/wakeup/wakeup u:object_r:sysfs_wakeup:s0
+
+#SecureElement
+genfscon sysfs /devices/platform/181c0000.spi/spi_master/spi17/spi17.0/st33spi u:object_r:sysfs_st33spi:s0
+
diff --git a/whitechapel_pro/vendor_init.te b/whitechapel_pro/vendor_init.te
index 39d9bf6f..68ac08be 100644
--- a/whitechapel_pro/vendor_init.te
+++ b/whitechapel_pro/vendor_init.te
@@ -13,4 +13,5 @@ allow vendor_init proc_dirty:file w_file_perms;
 set_prop(vendor_init, vendor_nfc_prop)
 # SecureElement vendor property
 set_prop(vendor_init, vendor_secure_element_prop)
+allow vendor_init sysfs_st33spi:file w_file_perms;