hal_sensors_default: Add permission to AOC reset sysfs node.

[21675.099727] type=1400 audit(1697127034.684:751): avc: denied { write } for comm="binder:912_1" name="reset" dev="sysfs" ino=102250 scontext=u:r:hal_sensors_default:s0 tcontext=u:object_r:sysfs_aoc_reset:s0 tclass=file permissive=0 Bug: 304681766 Test: Modify sensor HAL to trigger SSR when init. No avc denied log when sensor HAL access AOC reset sysfs node. Change-Id: Iede0fa94a627c5e0d3166bec05ef7041154d8efe Signed-off-by: Rick Chen <rickctchen@google.com>
author: Rick Chen <rickctchen@google.com> 2023-10-13 00:22:14 +0800
committer: Rick Chen <rickctchen@google.com> 2023-10-13 02:41:28 +0000
commit: c31ec37715a992ceb9039c4e5e168f52226630bc (patch)
tree: 4d14ab1cc834e06a75453afa62aa63e853aa9b31
parent: b2592218d6a097619b306d1e1fde39c6f89a9872 (diff)
download: zuma-sepolicy-c31ec37715a992ceb9039c4e5e168f52226630bc.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/vendor/hal_sensors_default.te b/vendor/hal_sensors_default.te
index fe24c8a..7dcf502 100644
--- a/vendor/hal_sensors_default.te
+++ b/vendor/hal_sensors_default.te
@@ -62,3 +62,6 @@ allow hal_sensors_default sysfs_chosen:file r_file_perms;
 # Allow display_info_service access to the backlight driver.
 allow hal_sensors_default sysfs_leds:dir search;
 allow hal_sensors_default sysfs_leds:file r_file_perms;
+
+# Allow sensor HAL to reset AOC.
+allow hal_sensors_default sysfs_aoc_reset:file rw_file_perms;
author	Rick Chen <rickctchen@google.com>	2023-10-13 00:22:14 +0800
committer	Rick Chen <rickctchen@google.com>	2023-10-13 02:41:28 +0000
commit	c31ec37715a992ceb9039c4e5e168f52226630bc (patch)
tree	4d14ab1cc834e06a75453afa62aa63e853aa9b31
parent	b2592218d6a097619b306d1e1fde39c6f89a9872 (diff)
download	zuma-sepolicy-c31ec37715a992ceb9039c4e5e168f52226630bc.tar.gz