diff --git a/sepolicy/vendor/hal_camera_default.te b/sepolicy/vendor/hal_camera_default.te
index 4dd99d6..56050b4 100644
--- a/sepolicy/vendor/hal_camera_default.te
+++ b/sepolicy/vendor/hal_camera_default.te
@@ -4,6 +4,7 @@ hal_client_domain(hal_camera_default, hal_power)
 
 allow hal_camera_default proc_meminfo:file r_file_perms;
 
+r_dir_file(hal_camera_default, sysfs_leds)
 r_dir_file(hal_camera_default, vendor_sysfs_kgsl)
 r_dir_file(hal_camera_default, vendor_persist_camera_file)
 r_dir_file(hal_camera_default, mnt_vendor_file)
diff --git a/sepolicy/vendor/hal_wifi_default.te b/sepolicy/vendor/hal_wifi_default.te
new file mode 100644
index 0000000..c6580df
--- /dev/null
+++ b/sepolicy/vendor/hal_wifi_default.te
@@ -0,0 +1 @@
+allow hal_wifi_default self:capability sys_module;
diff --git a/sepolicy/vendor/kernel.te b/sepolicy/vendor/kernel.te
index ce22b84..eca3d76 100644
--- a/sepolicy/vendor/kernel.te
+++ b/sepolicy/vendor/kernel.te
@@ -1 +1,3 @@
 allow kernel per_boot_file:file r_file_perms;
+
+dontaudit kernel mnt_vendor_file:dir search;
diff --git a/sepolicy/vendor/property.te b/sepolicy/vendor/property.te
index 5431b52..c6379fb 100644
--- a/sepolicy/vendor/property.te
+++ b/sepolicy/vendor/property.te
@@ -1,2 +1,5 @@
 # Ultrasound
 vendor_public_prop(elliptic_ultrasound_prop)
+
+# WiFi
+vendor_internal_prop(vendor_wcnss_service_prop)
diff --git a/sepolicy/vendor/property_contexts b/sepolicy/vendor/property_contexts
index 123badb..606bf3b 100644
--- a/sepolicy/vendor/property_contexts
+++ b/sepolicy/vendor/property_contexts
@@ -18,5 +18,8 @@ ro.vendor.oem.sno                  u:object_r:vendor_sno_prop:s0
 persist.vendor.radio.imei          u:object_r:vendor_deviceid_prop:s0
 persist.vendor.radio.meid          u:object_r:vendor_deviceid_prop:s0
 
+# WiFi
+persist.vendor.cnss-daemon.        u:object_r:vendor_wcnss_service_prop:s0
+
 # Xiaomi thermal daemon
 vendor.sys.thermal.                u:object_r:vendor_thermal_normal_prop:s0
diff --git a/sepolicy/vendor/toolbox.te b/sepolicy/vendor/toolbox.te
index b12911a..81b9da8 100644
--- a/sepolicy/vendor/toolbox.te
+++ b/sepolicy/vendor/toolbox.te
@@ -1,2 +1,3 @@
 allow toolbox per_boot_file:dir create_dir_perms;
 allow toolbox per_boot_file:file create_file_perms;
+allow toolbox self:capability kill;
diff --git a/sepolicy/vendor/vendor_thermal-engine.te b/sepolicy/vendor/vendor_thermal-engine.te
new file mode 100644
index 0000000..76d9e38
--- /dev/null
+++ b/sepolicy/vendor/vendor_thermal-engine.te
@@ -0,0 +1,2 @@
+r_dir_file(vendor_thermal-engine, thermal_data_file)
+set_prop(vendor_thermal-engine, vendor_thermal_normal_prop)
diff --git a/sepolicy/vendor/vendor_wcnss_service.te b/sepolicy/vendor/vendor_wcnss_service.te
new file mode 100644
index 0000000..508e727
--- /dev/null
+++ b/sepolicy/vendor/vendor_wcnss_service.te
@@ -0,0 +1,2 @@
+set_prop(vendor_wcnss_service, vendor_radio_prop)
+set_prop(vendor_wcnss_service, vendor_wcnss_service_prop)