universal7580: sepolicy: address GPSD denials

Change-Id: Ic3ecfafa1641fa1c5e1166f5d9390e1497f397d4

diff --git a/sepolicy/gpsd.te b/sepolicy/gpsd.te
index eb0afa7adce45f15c76abc527f27493af07f7e72..60c4c2b32c36b5de8fa88e03bac63861b18ccf6f 100644 (file)
--- a/sepolicy/gpsd.te
+++ b/sepolicy/gpsd.te
@@ -47,3 +47,7 @@ allow gpsd node:tcp_socket node_bind;
 
 # sec sysfs files
 #allow gpsd sysfs_sec:dir search;
+
+# hwservicemanager ready prop
+allow gpsd hwservicemanager:binder call;
+allow gpsd hwservicemanager_prop:file { open read getattr};

diff --git a/sepolicy/init.te b/sepolicy/init.te
index 6a35a07cafa48e036ea6af23b460d13170753080..a86829e406fbb3f6059727e8df71fd4c870f88fd 100644 (file)
--- a/sepolicy/init.te
+++ b/sepolicy/init.te
@@ -44,7 +44,10 @@ allow init sysfs_bluetooth_writable:file setattr;
 
 # GPS permissions
 allow init sysfs_gps:lnk_file read;
-allow init sysfs_gps:file setattr;
+allow init sysfs_gps:file { rw_file_perms setattr };
+allow init gps_data_file:fifo_file write;
+allow init gps_data_file:file lock;
+allow init gps_device:chr_file { open read write };
 
 # CPU permissions
 allow init sysfs_devices_system_cpu:file rw_file_perms;