From aa293f7fa90eff91af04bd0df517fbde86d919cd Mon Sep 17 00:00:00 2001
From: Joel Galenson <jgalenson@google.com>
Date: Thu, 12 Apr 2018 11:02:02 -0700
Subject: [PATCH] Suppress hal_wifi_default module loading denials.

This suppresses the following denials:

avc: denied { module_request } for comm="android.hardwar" kmod="netdev-wlan0" scontext=u:r:hal_wifi_default:s0 tcontext=u:r:kernel:s0 tclass=system
avc: denied { sys_module } for comm="android.hardwar" capability=16 scontext=u:r:hal_wifi_default:s0 tcontext=u:r:hal_wifi_default:s0 tclass=capability

Bug: 77973826
Test: Boot device.
Change-Id: I2eb4789892172cb119f50084cfe9718d8ead647d
(cherry picked from commit 82ee41e471025be3d4ce161f2b484481b583abde)
---
 sepolicy/vendor/hal_wifi_default.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/sepolicy/vendor/hal_wifi_default.te b/sepolicy/vendor/hal_wifi_default.te
index ca0e8c58..a0155584 100644
--- a/sepolicy/vendor/hal_wifi_default.te
+++ b/sepolicy/vendor/hal_wifi_default.te
@@ -11,6 +11,9 @@ allow hal_wifi_default wlan_device:chr_file w_file_perms;
 # Allow wifi hal to read debug info from the driver.
 r_dir_file(hal_wifi_default, proc_wifi_dbg)
 
+dontaudit hal_wifi_default kernel:system module_request;
+dontaudit hal_wifi_default self:capability sys_module;
+
 userdebug_or_eng(`
 # debugfs entries are only needed in user-debug or eng builds