From e465f1a8563e2710d41395429ec7c0e8614f0f16 Mon Sep 17 00:00:00 2001
From: Hsiu-Chang Chen <hsiuchangchen@google.com>
Date: Thu, 25 Aug 2022 10:04:19 +0800
Subject: [PATCH] Add sepolicy for wifi_sniffer and wifi_perf_diag

avc: denied { search } for name="wifi" dev="dm-38" ino=329 scontext=u:r:wifi_sniffer:s0 tcontext=u:object_r:vendor_wifi_vendor_data_file:s0 tclass=dir
avc: denied { setuid } for capability=7 scontext=u:r:wifi_sniffer:s0 tcontext=u:r:wifi_sniffer:s0 tclass=capability
avc: denied { setgid } for capability=6 scontext=u:r:wifi_sniffer:s0 tcontext=u:r:wifi_sniffer:s0 tclass=capability
avc: denied { search } for comm="wifi_perf_diag" name="wifi" dev="dm-38" ino=329 scontext=u:r:wifi_perf_diag:s0 tcontext=u:object_r:vendor_wifi_vendor_data_file:s0 tclass=dir

Bug: 243727673
Test: PixelLogger works normally
Change-Id: Idd0bb1ffeb198eea855b717a745fd93fecfe2251
---
 vendor/wifi_perf_diag.te | 3 +++
 vendor/wifi_sniffer.te   | 4 ++++
 2 files changed, 7 insertions(+)
 create mode 100644 vendor/wifi_perf_diag.te
 create mode 100644 vendor/wifi_sniffer.te

diff --git a/vendor/wifi_perf_diag.te b/vendor/wifi_perf_diag.te
new file mode 100644
index 0000000..b49c0da
--- /dev/null
+++ b/vendor/wifi_perf_diag.te
@@ -0,0 +1,3 @@
+userdebug_or_eng(`
+  allow wifi_perf_diag vendor_wifi_vendor_data_file:dir rw_dir_perms;
+')
diff --git a/vendor/wifi_sniffer.te b/vendor/wifi_sniffer.te
new file mode 100644
index 0000000..c1e5cfa
--- /dev/null
+++ b/vendor/wifi_sniffer.te
@@ -0,0 +1,4 @@
+userdebug_or_eng(`
+  allow wifi_sniffer self:capability { setuid setgid };
+  allow wifi_sniffer vendor_wifi_vendor_data_file:dir rw_dir_perms;
+')