From c1948181656b3b8d8466213583a78595171bf1b6 Mon Sep 17 00:00:00 2001
From: Jaegeuk Kim <jaegeuk@google.com>
Date: Thu, 24 Sep 2020 05:56:02 -0700
Subject: [PATCH] sm7250-common: sepolicy: Allow ioctl to zram_swap for
 performance

This fixes permission denied when setting F2FS_PIN_FILE.

[   46.726131] init: [libfs_mgr]Failed to set pin_file for f2fs: /data/per_boot/zram_swap: Permission denied
[   46.726151] init: [libfs_mgr]Failure of zram backing device file for '/dev/block/zram0'
[   46.726341] type=1400 audit(1601025878.312:17): avc: denied { ioctl } for comm="init" path="/data/per_boot/zram_swap" dev="dm-9" ino=4868 ioctlcmd=0xf50d scontext=u:r:init:s0 tcontext=u:object_r:per_boot_file:s0 tclass=file permissive=0

Bug: 169311165
Signed-off-by: Jaegeuk Kim <jaegeuk@google.com>
Change-Id: I982f70556284ac55d659bae6aff93b84d71e67f0
Signed-off-by: aswin7469 <aswinas@pixysos.com>
Signed-off-by: Sandeep P S <sandymankara11@gmail.com>
---
 sepolicy/vendor/init.te | 6 ++++++
 1 file changed, 6 insertions(+)
 create mode 100644 sepolicy/vendor/init.te

diff --git a/sepolicy/vendor/init.te b/sepolicy/vendor/init.te
new file mode 100644
index 0000000..03b709e
--- /dev/null
+++ b/sepolicy/vendor/init.te
@@ -0,0 +1,6 @@
+allow init vendor_data_file:file lock;
+allow init hal_audio_default:binder call;
+allow init platform_app:binder call;
+
+allow init per_boot_file:file ioctl;
+allowxperm init per_boot_file:file ioctl { F2FS_IOC_SET_PIN_FILE };