Merge "allow init to mount modem_img" into sc-dev

tracking_denials/init.te

@@ -7,15 +7,11 @@ dontaudit init sysfs:file { setattr };
 dontaudit init sysfs:file { write };
 # b/178979985
 dontaudit init device:chr_file { ioctl };
-dontaudit init modem_img_file:dir { mounton };
 dontaudit init device:chr_file { open };
 dontaudit init device:chr_file { read write };
-dontaudit init modem_img_file:dir { mounton };
 dontaudit init device:chr_file { ioctl };
 dontaudit init device:chr_file { open };
 dontaudit init device:chr_file { read write };
 # b/180963348
 dontaudit init overlayfs_file:chr_file { unlink };
 dontaudit init overlayfs_file:file { rename };
-# b/182524202
-dontaudit init mnt_vendor_file:dir { mounton };

tracking_denials/installd.te

@@ -1,4 +0,0 @@
-# b/182524203
-dontaudit installd modem_img_file:filesystem { quotaget };
-dontaudit installd modem_img_file:filesystem { quotaget };
-dontaudit installd modem_img_file:filesystem { quotaget };

whitechapel/vendor/google/init.te

@@ -8,6 +8,7 @@ allow init custom_ab_block_device:lnk_file relabelto;
 allow init boot_block_device:lnk_file relabelto;
 
 allow init modem_img_file:dir mounton;
+allow init mnt_vendor_file:dir mounton;
 allow init modem_img_file:filesystem { getattr mount relabelfrom };
 
 allow init persist_file:dir mounton;

whitechapel/vendor/google/installd.te

@@ -0,0 +1 @@
+dontaudit installd modem_img_file:filesystem quotaget;