From 54c9dafb5e11b6d02c4008322dbe8ce8328389f7 Mon Sep 17 00:00:00 2001
From: Pavel Grafov <pgrafov@google.com>
Date: Tue, 13 Feb 2018 16:35:10 +0000
Subject: [PATCH] Allow wpa_supplicant to read security logging property.

This is needed to allow it to log audit events, e.g. cert
validation failure.

Bug: 70886042
Test: manual, attempt connecting to EAP-TLS wifi with bad cert.
Merged-In: Ia1b0f3c6e02697fdb5018082d5c851f116013fb1
Change-Id: Ia1b0f3c6e02697fdb5018082d5c851f116013fb1
---
 vendor/hal_wifi_supplicant_default.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/vendor/hal_wifi_supplicant_default.te b/vendor/hal_wifi_supplicant_default.te
index 8d7069c96..1ff9ba247 100644
--- a/vendor/hal_wifi_supplicant_default.te
+++ b/vendor/hal_wifi_supplicant_default.te
@@ -12,3 +12,6 @@ type_transition hal_wifi_supplicant_default wifi_data_file:dir wpa_socket "socke
 hwbinder_use(hal_wifi_supplicant_default)
 allow hal_wifi_supplicant_default system_wifi_keystore_hwservice:hwservice_manager find;
 binder_call(hal_wifi_supplicant_default, wifi_keystore_service_server)
+
+# Write to security logs for audit.
+get_prop(hal_wifi_supplicant_default, device_logging_prop)
-- 
GitLab