From f0c534137e090bd2ba9396d081e577698f845950 Mon Sep 17 00:00:00 2001
From: Semavi Ulusoy <doc.divxm@gmail.com>
Date: Sat, 21 Oct 2023 18:46:18 +0530
Subject: [PATCH] sepolicy: qti: allow `vendor_hal_oplusSensor_default` to
 search block_device

auditd: type=1400 audit(0.0:17): avc: denied { search } for comm="vendor.oplus.ha" name="block" dev="tmpfs" ino=14361 scontext=u:r:vendor_hal_oplusSensor_default:s0 tcontext=u:object_r:block_device:s0 tclass=dir permissive=0
---
 sepolicy/qti/vendor/vendor_hal_oplusSensor_default.te | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/sepolicy/qti/vendor/vendor_hal_oplusSensor_default.te b/sepolicy/qti/vendor/vendor_hal_oplusSensor_default.te
index 640274a..b864e0e 100644
--- a/sepolicy/qti/vendor/vendor_hal_oplusSensor_default.te
+++ b/sepolicy/qti/vendor/vendor_hal_oplusSensor_default.te
@@ -13,6 +13,8 @@ allow vendor_hal_oplusSensor_default vendor_reserve_partition:blk_file r_file_pe
 
 allow vendor_hal_oplusSensor_default mnt_vendor_file:dir search;
 
+allow vendor_hal_oplusSensor_default block_device:dir search;
+
 r_dir_file(vendor_hal_oplusSensor_default, vendor_persist_engineer_file)
 r_dir_file(vendor_hal_oplusSensor_default, vendor_persist_sensors_file)
 r_dir_file(vendor_hal_oplusSensor_default, vendor_proc_oplus_version)