Fix selinux denials on hal_secure_element_uicc

Bug: 264489780
Test: Confirm no more selinux denials
Change-Id: Ib159acaf8701d0ac7e3325addd7baca6a41f0cee

tracking_denials/hal_secure_element_uicc.te

@@ -1,14 +0,0 @@
-# b/261651325
-dontaudit hal_secure_element_uicc hwservicemanager:binder { call };
-dontaudit hal_secure_element_uicc hwservicemanager:binder { transfer };
-dontaudit hal_secure_element_uicc hwservicemanager_prop:file { getattr };
-dontaudit hal_secure_element_uicc hwservicemanager_prop:file { map };
-dontaudit hal_secure_element_uicc hwservicemanager_prop:file { open };
-dontaudit hal_secure_element_uicc hwservicemanager_prop:file { read };
-# b/264489780
-userdebug_or_eng(`
-  permissive hal_secure_element_uicc;
-')# b/264600083
-dontaudit hal_secure_element_uicc hal_secure_element_hwservice:hwservice_manager { add };
-dontaudit hal_secure_element_uicc hal_secure_element_hwservice:hwservice_manager { find };
-dontaudit hal_secure_element_uicc hidl_base_hwservice:hwservice_manager { add };

vendor/hal_secure_element_uicc.te

@@ -1,5 +1,12 @@
 type hal_secure_element_uicc, domain;
 type hal_secure_element_uicc_exec, exec_type, vendor_file_type, file_type;
 
+hal_server_domain(hal_secure_element_uicc, hal_secure_element)
 init_daemon_domain(hal_secure_element_uicc)
 
+# Allow writing to system_server pipes during crash dump
+crash_dump_fallback(hal_secure_element_uicc)
+
+# Allow hal_secure_element_uicc to access rild
+binder_call(hal_secure_element_uicc, rild);
+allow hal_secure_element_uicc hal_exynos_rild_hwservice:hwservice_manager find;