From fb22704002bba045a36ddff6265d333e6355b762 Mon Sep 17 00:00:00 2001
From: Pavel Grafov <pgrafov@google.com>
Date: Tue, 13 Feb 2018 16:35:10 +0000
Subject: [PATCH] Allow wpa_supplicant to read security logging property.

This is needed to allow it to log audit events, e.g. cert
validation failure.

Bug: 70886042
Test: manual, attempt connecting to EAP-TLS wifi with bad cert.
Change-Id: Ia1b0f3c6e02697fdb5018082d5c851f116013fb1
---
 vendor/hal_wifi_supplicant_default.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/vendor/hal_wifi_supplicant_default.te b/vendor/hal_wifi_supplicant_default.te
index e078a3f04..9b70dd5ed 100644
--- a/vendor/hal_wifi_supplicant_default.te
+++ b/vendor/hal_wifi_supplicant_default.te
@@ -16,3 +16,6 @@ binder_call(hal_wifi_supplicant_default, wifi_keystore_service_server)
 allow hal_wifi_supplicant_default wpa_data_file:dir create_dir_perms;
 allow hal_wifi_supplicant_default wpa_data_file:file create_file_perms;
 allow hal_wifi_supplicant_default wpa_data_file:sock_file create_file_perms;
+
+# Write to security logs for audit.
+get_prop(hal_wifi_supplicant_default, device_logging_prop)
-- 
GitLab