From b07d84f0874bae11a2a9de193c4da9aba89db1da Mon Sep 17 00:00:00 2001
From: Ankit Goyal <layog@google.com>
Date: Tue, 30 Mar 2021 14:03:47 +0800
Subject: [PATCH] Fix SELinux denials for arm.graphics AIDL interface

Denial example:
03-30 05:44:44.468   490   490 W RenderEngine: type=1400 audit(0.0:4): avc: denied { read } for name="arm.graphics-V1-ndk_platform.so" dev="dm-9" ino=1923 scontext=u:r:surfaceflinger:s0 tcontext=u:object_r:vendor_file:s0 tclass=file permissive=0

Bug: 143246001
Test: Build and boot to home
Change-Id: Id7c2bd98aa634f852a21812fb2421a2e96ef7636
---
 whitechapel/vendor/google/file_contexts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/whitechapel/vendor/google/file_contexts b/whitechapel/vendor/google/file_contexts
index c7621773..86dfdc2a 100644
--- a/whitechapel/vendor/google/file_contexts
+++ b/whitechapel/vendor/google/file_contexts
@@ -365,6 +365,7 @@
 /vendor/lib(64)?/libdrm\.so                                                      u:object_r:same_process_hal_file:s0
 /vendor/lib(64)?/hw/gralloc\.gs101\.so                                           u:object_r:same_process_hal_file:s0
 /vendor/lib(64)?/hw/vulkan\.gs101\.so                                            u:object_r:same_process_hal_file:s0
+/vendor/lib(64)?/arm\.graphics-V1-ndk_platform\.so                               u:object_r:same_process_hal_file:s0
 
 # Touch
 /dev/touch_offload                                                               u:object_r:touch_offload_device:s0