From 48435ccfaa0e8afa9f69a7e6bf886c37f9e69735 Mon Sep 17 00:00:00 2001
From: Adam Shih <adamshih@google.com>
Date: Mon, 22 Nov 2021 14:11:40 +0800
Subject: [PATCH] let uwb app access secure element property

Bug: 207300261
Test: boot with no relevant error log
Change-Id: I10f505d1ef3cbbc118082e5c44381c1b55389da3
---
 tracking_denials/uwb_vendor_app.te | 5 -----
 whitechapel_pro/uwb_vendor_app.te  | 1 +
 2 files changed, 1 insertion(+), 5 deletions(-)
 delete mode 100644 tracking_denials/uwb_vendor_app.te

diff --git a/tracking_denials/uwb_vendor_app.te b/tracking_denials/uwb_vendor_app.te
deleted file mode 100644
index 57127193..00000000
--- a/tracking_denials/uwb_vendor_app.te
+++ /dev/null
@@ -1,5 +0,0 @@
-# b/207300261
-dontaudit uwb_vendor_app vendor_secure_element_prop:file { getattr };
-dontaudit uwb_vendor_app vendor_secure_element_prop:file { map };
-dontaudit uwb_vendor_app vendor_secure_element_prop:file { open };
-dontaudit uwb_vendor_app vendor_secure_element_prop:file { read };
diff --git a/whitechapel_pro/uwb_vendor_app.te b/whitechapel_pro/uwb_vendor_app.te
index 223383c1..66237edc 100644
--- a/whitechapel_pro/uwb_vendor_app.te
+++ b/whitechapel_pro/uwb_vendor_app.te
@@ -18,5 +18,6 @@ allow uwb_vendor_app uwb_vendor_data_file:dir create_dir_perms;
 allow hal_uwb_vendor_default self:global_capability_class_set sys_nice;
 allow hal_uwb_vendor_default kernel:process setsched;
 
+get_prop(uwb_vendor_app, vendor_secure_element_prop)
 binder_call(uwb_vendor_app, hal_uwb_vendor_default)
 ')