From 53746d95466a594b3e3edb5eb1adc448b968253e Mon Sep 17 00:00:00 2001
From: Hsiu-Chang Chen <hsiuchangchen@google.com>
Date: Mon, 13 Feb 2023 17:24:16 +0800
Subject: [PATCH] wlan: add cnss-daemon and related libraries

cnss-daemon is necessary for CHRE function

Bug: 264524963
Test: Regression Test
Change-Id: Ic7b63617e30a9e6427b0ac280bf4763f9cc19f6e
---
 vendor/cnss-daemon.te | 20 ++++++++++++++++++++
 vendor/file.te        |  1 +
 vendor/file_contexts  |  1 +
 vendor/genfs_contexts |  1 +
 4 files changed, 23 insertions(+)
 create mode 100644 vendor/cnss-daemon.te

diff --git a/vendor/cnss-daemon.te b/vendor/cnss-daemon.te
new file mode 100644
index 0000000..e6ea641
--- /dev/null
+++ b/vendor/cnss-daemon.te
@@ -0,0 +1,20 @@
+# cnss-daemon service
+type cnss-daemon, domain;
+type cnss-daemon_exec, exec_type, vendor_file_type, file_type;
+init_daemon_domain(cnss-daemon)
+
+net_domain(cnss-daemon)
+
+allow cnss-daemon self:netlink_generic_socket create_socket_perms_no_ioctl;
+allow cnss-daemon self:qipcrtr_socket create_socket_perms_no_ioctl;
+
+# /data/vendor/wifi/
+allow cnss-daemon vendor_wifi_vendor_data_file:dir create_dir_perms;
+allow cnss-daemon vendor_wifi_vendor_data_file:file create_file_perms;
+
+# /proc/sys/net/ipv4/tcp_adv_win_scal
+allow cnss-daemon proc_net:file rw_file_perms;
+
+# /sys/class/remoteproc
+allow cnss-daemon sysfs_cnss_daemon:dir r_dir_perms;
+allow cnss-daemon sysfs_cnss_daemon:file r_file_perms;
diff --git a/vendor/file.te b/vendor/file.te
index b70b548..7f9aa22 100644
--- a/vendor/file.te
+++ b/vendor/file.te
@@ -4,3 +4,4 @@ type vendor_wifi_vendor_data_file, file_type, data_file_type;
 type vendor_wifihal_socket, file_type;
 type vendor_location_sysfs, fs_type, sysfs_type;
 type vendor_proc_wifi_dbg, fs_type, proc_type;
+type sysfs_cnss_daemon, fs_type, sysfs_type;
\ No newline at end of file
diff --git a/vendor/file_contexts b/vendor/file_contexts
index 1b1cd08..c224e48 100644
--- a/vendor/file_contexts
+++ b/vendor/file_contexts
@@ -15,6 +15,7 @@
 /dev/socket/wifihal(/.*)?               u:object_r:vendor_wifihal_socket:s0
 /vendor/bin/loc_launcher                u:object_r:vendor_location_exec:s0
 /vendor/bin/lowi-server                 u:object_r:lowi_server_exec:s0
+/vendor/bin/cnss-daemon                 u:object_r:cnss-daemon_exec:s0
 
 # Haptics
 /vendor/bin/hw/android\.hardware\.vibrator-service\.cs40l26-private-lynx   u:object_r:hal_vibrator_default_exec:s0
\ No newline at end of file
diff --git a/vendor/genfs_contexts b/vendor/genfs_contexts
index 8f929cb..0ee732e 100644
--- a/vendor/genfs_contexts
+++ b/vendor/genfs_contexts
@@ -5,6 +5,7 @@ genfscon sysfs /devices/platform/10970000.hsi2c/i2c-4/i2c-cs40l26a             u
 genfscon sysfs /devices/soc0/soc_id      u:object_r:vendor_location_sysfs:s0
 genfscon proc /debugdriver/driverdump    u:object_r:vendor_proc_wifi_dbg:s0
 genfscon sysfs /devices/platform/14520000.pcie/pci0001:00/0001:00:00.0/0001:01:00.0/net    u:object_r:sysfs_net:s0
+genfscon sysfs /class/remoteproc     u:object_r:sysfs_cnss_daemon:s0
 
 # BMS
 genfscon sysfs /devices/platform/10da0000.hsi2c/i2c-6/i2c-p9222                 u:object_r:sysfs_wlc:s0