From 181a629d1e42ae830a46f74446b3daad230dcd4c Mon Sep 17 00:00:00 2001
From: Omkar Chandorkar <gotenksIN@aospa.co>
Date: Sun, 5 Feb 2023 22:38:22 +0900
Subject: [PATCH] sepolicy: address hub denials

- fixes `02-05 18:56:02.829  6540  6540 W TcmReceiver: type=1400 audit(0.0:75): avc: denied { connectto } for path="/dev/socket/tcm" scontext=u:r:hub_app:s0:c512,c768 tcontext=u:r:vendor_dpmd:s0 tclass=unix_stream_socket permissive=0 app=co.aospa.hub`

Change-Id: I6cef7dbbef2bbe776b3eb26dc45772f1579b75b3
Signed-off-by: Omkar Chandorkar <gotenksIN@aospa.co>
---
 sepolicy/common/private/hub_app.te | 1 +
 1 file changed, 1 insertion(+)

diff --git a/sepolicy/common/private/hub_app.te b/sepolicy/common/private/hub_app.te
index f7660606..baea10a3 100644
--- a/sepolicy/common/private/hub_app.te
+++ b/sepolicy/common/private/hub_app.te
@@ -1,2 +1,3 @@
 # Allow hub_app to write to the DPM/TCM socket
 allow hub_app vendor_dpmtcm_socket:sock_file w_file_perms;
+allow hub_app vendor_dpmd:unix_stream_socket connectto;