From 3fefc8a57b30f0261cff2e147316837300831e4d Mon Sep 17 00:00:00 2001
From: chiayupei <chiayupei@google.com>
Date: Wed, 28 Apr 2021 03:48:01 +0800
Subject: [PATCH] Add sepolicy for sensor HAL accessing AOC sysfs node.

Bug: 177943509
Test: make selinux_policy -j128 and push to device.
      No hal_sensors_default related avc deined log while suez polling.

Signed-off-by: chiayupei <chiayupei@google.com>
Change-Id: Ie32eaccf551fcb9f2d7bc763c801891f637ccc1a
---
 usf/sensor_hal.te | 1 +
 1 file changed, 1 insertion(+)

diff --git a/usf/sensor_hal.te b/usf/sensor_hal.te
index f10cd46a..22561fb2 100644
--- a/usf/sensor_hal.te
+++ b/usf/sensor_hal.te
@@ -37,6 +37,7 @@ binder_call(hal_sensors_default, system_server);
 
 # Allow access to the sysfs_aoc.
 allow hal_sensors_default sysfs_aoc:dir search;
+allow hal_sensors_default sysfs_aoc:file r_file_perms;
 
 # Allow use of the USF low latency transport.
 usf_low_latency_transport(hal_sensors_default)