diff --git a/sepolicy/vendor/hal_fingerprint_device.te b/sepolicy/vendor/hal_fingerprint_device.te
index 1d207b5..1f518d1 100644
--- a/sepolicy/vendor/hal_fingerprint_device.te
+++ b/sepolicy/vendor/hal_fingerprint_device.te
@@ -2,6 +2,13 @@ allow hal_fingerprint_default self:netlink_socket create_socket_perms_no_ioctl;
 
 binder_call(hal_fingerprint_default, hal_perf_default)
 
+# Allow binder communication with hal_display_default
+binder_call(hal_fingerprint_default, hal_display_default)
+
+# Allow hal_fingerprint_default to find hal_display_hwservice
+allow hal_fingerprint_default hal_display_hwservice:hwservice_manager find;
+
+# Allow hal_fingerprint_default to find vendor_hal_perf_hwservice
 allow hal_fingerprint_default vendor_hal_perf_hwservice:hwservice_manager find;
 
 allow hal_fingerprint_default fingerprintd_device:chr_file rw_file_perms;
diff --git a/sepolicy/vendor/surfaceflinger.te b/sepolicy/vendor/surfaceflinger.te
new file mode 100644
index 0000000..ccddbeb
--- /dev/null
+++ b/sepolicy/vendor/surfaceflinger.te
@@ -0,0 +1,3 @@
+binder_call(surfaceflinger, hal_display_default)
+
+allow surfaceflinger hal_display_hwservice:hwservice_manager find;