From 3da96b7ea9074193e33739718cab378b3b38e290 Mon Sep 17 00:00:00 2001
From: Nishant Kumar <www.rajsonu13@gmail.com>
Date: Fri, 28 Jul 2023 18:49:16 +0530
Subject: [PATCH] RMX3031: Allow surfaceflinger and mtk hal camera to find mtk
 mmagent

* 07-28 18:47:44.000   548   548 E SELinux : avc:  denied  { find } for interface=vendor.mediatek.hardware.mmagent::IMMAgent sid=u:r:surfaceflinger:s0 pid=742 scontext=u:r:surfaceflinger:s0 tcontext=u:object_r:mtk_hal_mmagent_hwservice:s0 tclass=hwservice_manager permissive=0

07-28 18:46:28.653   548   548 E SELinux : avc:  denied  { find } for interface=vendor.mediatek.hardware.mmagent::IMMAgent sid=u:r:mtk_hal_camera:s0 pid=827 scontext=u:r:mtk_hal_camera:s0 tcontext=u:object_r:mtk_hal_mmagent_hwservice:s0 tclass=hwservice_manager permissive=0

Signed-off-by: Nishant Kumar <www.rajsonu13@gmail.com>
---
 sepolicy/vendor/mtk_hal_camera.te | 1 +
 sepolicy/vendor/surfaceflinger.te | 1 +
 2 files changed, 2 insertions(+)

diff --git a/sepolicy/vendor/mtk_hal_camera.te b/sepolicy/vendor/mtk_hal_camera.te
index 1487ac7..fc6711f 100644
--- a/sepolicy/vendor/mtk_hal_camera.te
+++ b/sepolicy/vendor/mtk_hal_camera.te
@@ -22,3 +22,4 @@ allow mtk_hal_camera proc_boost_pool:file rw_file_perms;
 binder_call(mtk_hal_camera, mtk_hal_mmagent)
 binder_call(mtk_hal_camera, opluscamera_app)
 allow mtk_hal_camera opluscamera_app:fd use;
+hal_client_domain(mtk_hal_camera, hal_mtk_mmagent)
diff --git a/sepolicy/vendor/surfaceflinger.te b/sepolicy/vendor/surfaceflinger.te
index 19bca38..9b1fb9e 100644
--- a/sepolicy/vendor/surfaceflinger.te
+++ b/sepolicy/vendor/surfaceflinger.te
@@ -1 +1,2 @@
 binder_call(surfaceflinger, mtk_hal_mmagent)
+hal_client_domain(surfaceflinger, hal_mtk_mmagent)