From c077e3373655fcd64f3a069b65c77392e5f04720 Mon Sep 17 00:00:00 2001
From: Anand S <anandzzz360@gmail.com>
Date: Sat, 10 Aug 2024 20:16:00 +0530
Subject: [PATCH] sm6375-common: sepolicy: Add rule for fingerprint

* E SELinux : avc:  denied  { find } for interface=android.hardware.health::IHealth sid=u:r:hal_fingerprint_default:s0 pid=1445 scontext=u:r:hal_fingerprint_default:s0 tcontext=u:object_r:hal_health_hwservice:s0 tclass=hwservice_manager permissive=0

Change-Id: I7a7ff4798f1c605948627b73ae3f7a76596ec354
---
 sepolicy/vendor/hal_fingerprint_default.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/sepolicy/vendor/hal_fingerprint_default.te b/sepolicy/vendor/hal_fingerprint_default.te
index b024d59..0d79bb5 100644
--- a/sepolicy/vendor/hal_fingerprint_default.te
+++ b/sepolicy/vendor/hal_fingerprint_default.te
@@ -30,3 +30,6 @@ allow hal_fingerprint_default vendor_hal_perf_hwservice:hwservice_manager find;
 typeattribute hal_fingerprint_default data_between_core_and_vendor_violators;
 allow hal_fingerprint_default fingerprintd_data_file:dir { rw_dir_perms };
 allow hal_fingerprint_default fingerprintd_data_file:file { create_file_perms };
+
+# Allow fingerprint HAL to get updates from health hal
+hal_client_domain(hal_fingerprint_default, hal_health)