From cb043a58b51f38ad63b0d1beb9047b90179b2be9 Mon Sep 17 00:00:00 2001
From: Tri Vo <trong@google.com>
Date: Tue, 14 Nov 2017 17:40:11 -0800
Subject: [PATCH] charger: read permissions to /sys/power/state

Fixes these denials:
avc:  denied  { read } for  pid=585 comm="charger" name="state"
dev="sysfs" ino=18844 scontext=u:r:charger:s0
tcontext=u:object_r:sysfs_power:s0 tclass=file permissive=1

avc:  denied  { open } for  pid=585 comm="charger"
path="/sys/power/state" dev="sysfs" ino=18844 scontext=u:r:charger:s0
tcontext=u:object_r:sysfs_power:s0 tclass=file permissive=1

Test: above denials not observed in charger mode.
Change-Id: I5660e63315fada7f24d6cfe2e0bd2b383b556670
---
 public/charger.te | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/public/charger.te b/public/charger.te
index 5a5b6535c..9c48dddbd 100644
--- a/public/charger.te
+++ b/public/charger.te
@@ -17,8 +17,8 @@ wakelock_use(charger)
 
 allow charger self:netlink_kobject_uevent_socket create_socket_perms_no_ioctl;
 
-# Write to /sys/power/state
-allow charger sysfs_power:file write;
+# Read/write to /sys/power/state
+allow charger sysfs_power:file rw_file_perms;
 
 allow charger sysfs_batteryinfo:file r_file_perms;
 
-- 
GitLab