Snap for 10850711 from 8b350cc57dc21d656d402d622b0ee7adff7637bf to udc-qpr1-releaseandroid-14.0.0_r27android-14.0.0_r26android-14.0.0_r25android-14.0.0_r24android-14.0.0_r23android-14.0.0_r22android-14.0.0_r21android-14.0.0_r20android-14.0.0_r19android-14.0.0_r18android-14.0.0_r17android-14.0.0_r16android14-qpr1-s2-releaseandroid14-qpr1-release

Change-Id: Icb6d1ba03d8d973d5cea1a0fdde8bbd38ace2bab

4 files changed, 10 insertions, 0 deletions

diff --git a/husky-sepolicy.mk b/husky-sepolicy.mk
index 1a8c79b..73742a8 100644
--- a/husky-sepolicy.mk
+++ b/husky-sepolicy.mk
@@ -1,3 +1,5 @@
 # sepolicy exclusively for husky.
 BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/husky
 
+# unresolved SELinux error log with bug tracking
+BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/tracking_denials
diff --git a/shiba-sepolicy.mk b/shiba-sepolicy.mk
index 23f811f..114c114 100644
--- a/shiba-sepolicy.mk
+++ b/shiba-sepolicy.mk
@@ -1,3 +1,5 @@
 # sepolicy exclusively for shiba.
 BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/shiba
 
+# unresolved SELinux error log with bug tracking
+BOARD_SEPOLICY_DIRS += device/google/shusky-sepolicy/tracking_denials
diff --git a/tracking_denials/file.te b/tracking_denials/file.te
new file mode 100644
index 0000000..e348a15
--- /dev/null
+++ b/tracking_denials/file.te
@@ -0,0 +1,2 @@
+# b/301300623
+typeattribute sysfs_touch_gti mlstrustedobject;
diff --git a/tracking_denials/priv_app.te b/tracking_denials/priv_app.te
new file mode 100644
index 0000000..6e25d2e
--- /dev/null
+++ b/tracking_denials/priv_app.te
@@ -0,0 +1,4 @@
+# b/301300623
+allow priv_app app_api_service:service_manager find;
+allow priv_app sysfs_touch_gti:file rw_file_perms;
+allow priv_app sysfs_touch_gti:file { getattr open read write };