From d48a4f369161d0817f5844492eabe1c03d23eb4d Mon Sep 17 00:00:00 2001
From: Scott Warner <Tortel1210@gmail.com>
Date: Wed, 10 Jul 2019 12:59:08 -0400
Subject: [PATCH] sm8150-common: sepolicy: Label some more fod sysfs

Change-Id: I2e5be11f196bc069e44079663a6afb1be13aa0bb
---
 sepolicy/vendor/genfs_contexts             | 2 ++
 sepolicy/vendor/hal_display_default.te     | 3 ++-
 sepolicy/vendor/hal_fingerprint_default.te | 4 ++++
 3 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/sepolicy/vendor/genfs_contexts b/sepolicy/vendor/genfs_contexts
index b8a2defe..8b8ee33c 100644
--- a/sepolicy/vendor/genfs_contexts
+++ b/sepolicy/vendor/genfs_contexts
@@ -7,3 +7,5 @@ genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/drm/card0/card0-DSI-1
 genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/drm/card0/card0-DSI-1/dim_alpha u:object_r:sysfs_fod:s0
 genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/drm/card0/card0-DSI-1/op_friginer_print_hbm u:object_r:sysfs_fod:s0
 genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/drm/card0/card0-DSI-1/notify_aod u:object_r:sysfs_aod:s0
+genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/drm/card0/card0-DSI-1/notify_dim u:object_r:sysfs_fod:s0
+genfscon sysfs /devices/platform/soc/ae00000.qcom,mdss_mdp/drm/card0/card0-DSI-1/notify_fppress u:object_r:sysfs_fod:s0
diff --git a/sepolicy/vendor/hal_display_default.te b/sepolicy/vendor/hal_display_default.te
index f606b635..c76d17fb 100644
--- a/sepolicy/vendor/hal_display_default.te
+++ b/sepolicy/vendor/hal_display_default.te
@@ -4,5 +4,6 @@ hal_server_domain(hal_display_default, hal_display)
 type hal_display_default_exec, exec_type, vendor_file_type, file_type;
 init_daemon_domain(hal_display_default)
 
-# Allow hal_display_default to read/write AOD sysfs nodes
+# Allow hal_display_default to read/write aod/fod sysfs nodes
 allow hal_display_default sysfs_aod:file rw_file_perms;
+allow hal_display_default sysfs_fod:file rw_file_perms;
diff --git a/sepolicy/vendor/hal_fingerprint_default.te b/sepolicy/vendor/hal_fingerprint_default.te
index 5ab83e87..52449e63 100644
--- a/sepolicy/vendor/hal_fingerprint_default.te
+++ b/sepolicy/vendor/hal_fingerprint_default.te
@@ -18,3 +18,7 @@ allow hal_fingerprint_default tee_device:chr_file rw_file_perms;
 # Allow hal_fingerprint_default to read and write to proc_touchpanel
 allow hal_fingerprint_default proc_touchpanel:dir search;
 allow hal_fingerprint_default proc_touchpanel:file rw_file_perms;
+
+# Allow hal_fingerprint_default access to sysfs nodes
+allow hal_fingerprint_default sysfs_fod:file rw_file_perms;
+allow hal_fingerprint_default sysfs_aod:file r_file_perms;