From 3c733e2cc6a06d4da9f2174aaef51cdb4d96aefb Mon Sep 17 00:00:00 2001
From: LuK1337 <priv.luk@gmail.com>
Date: Thu, 17 Jan 2019 18:29:15 +0100
Subject: [PATCH] msm8976-common: sepolicy: Address timekeep denials

Change-Id: I1f6b24c2586106535415a1913d9b6d6841bc8392
---
 sepolicy/system_app.te | 4 ++++
 sepolicy/timekeep.te   | 3 ++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/sepolicy/system_app.te b/sepolicy/system_app.te
index f3eae41..11de303 100644
--- a/sepolicy/system_app.te
+++ b/sepolicy/system_app.te
@@ -3,4 +3,8 @@ allow system_app sysfs_mdnie:file rw_file_perms;
 # TimeKeep Java service
 allow system_app time_data_file:dir rw_dir_perms;
 allow system_app time_data_file:file rw_file_perms;
+
+allow system_app sysfs_rtc:dir search;
+allow system_app sysfs_rtc:file r_file_perms;
+
 set_prop(system_app, timekeep_prop)
diff --git a/sepolicy/timekeep.te b/sepolicy/timekeep.te
index 8191118..e9f9443 100644
--- a/sepolicy/timekeep.te
+++ b/sepolicy/timekeep.te
@@ -9,6 +9,7 @@ allow timekeep self:capability { fowner sys_time };
 allow timekeep time_data_file:file create_file_perms;
 allow timekeep time_data_file:dir create_dir_perms;
 
-allow timekeep sysfs:file r_file_perms;
+allow timekeep sysfs_rtc:dir search;
+allow timekeep sysfs_rtc:file r_file_perms;
 
 set_prop(timekeep, timekeep_prop)