Allow the sensor HAL to access raw HID devices. am: d60ebc5327

Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs101-sepolicy/+/15847652

Change-Id: I31d13e1a04c7280706e52caea4f1c34a28b5d0e7

usf/sensor_hal.te

@@ -52,6 +52,9 @@ allow hal_sensors_default sysfs_aoc_dumpstate:file r_file_perms;
 # Allow access for dynamic sensor properties.
 get_prop(hal_sensors_default, vendor_dynamic_sensor_prop)
 
+# Allow access to raw HID devices for dynamic sensors.
+allow hal_sensors_default hidraw_device:chr_file rw_file_perms;
+
 #
 # Suez type enforcements.
 #

whitechapel/vendor/google/device.te

@@ -55,3 +55,7 @@ type amcs_device, dev_type;
 
 # Battery history
 type battery_history_device, dev_type;
+
+# Raw HID device
+type hidraw_device, dev_type;
+

whitechapel/vendor/google/file_contexts

@@ -441,3 +441,7 @@
 /vendor/lib64/android\.frameworks\.stats-V1-ndk_platform\.so u:object_r:same_process_hal_file:s0
 /vendor/lib64/vendor-pixelatoms-cpp\.so u:object_r:same_process_hal_file:s0
 /vendor/lib64/libprotobuf-cpp-lite-3\.9\.1\.so u:object_r:same_process_hal_file:s0
+
+# Raw HID device
+/dev/hidraw[0-9]*                        u:object_r:hidraw_device:s0
+