From d243f35618d883b166f47c04b2e3fc19c11f8319 Mon Sep 17 00:00:00 2001
From: Lili Lin <lili.lin@mediatek.com>
Date: Sat, 18 Jan 2020 09:47:51 +0800
Subject: [PATCH] [ALPS03881723] vendor_init: Fix bootup denial

[Detail] vendor_init is new introduced in Android P,
and related policies have not been created yet.

[Solution] Add policies for vendor_init

MTK-Commit-Id: 00dc11bf94cbb7909ef58482d7726ebe8b954782

Change-Id: Ic2286e8e3e67b4005c7e2df18d217275f069f208
CR-Id: ALPS03881723
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
---
 non_plat/vendor_init.te | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 non_plat/vendor_init.te

diff --git a/non_plat/vendor_init.te b/non_plat/vendor_init.te
new file mode 100644
index 0000000..d168618
--- /dev/null
+++ b/non_plat/vendor_init.te
@@ -0,0 +1,22 @@
+allow vendor_init exported3_system_prop:property_service set;
+allow vendor_init bt_prop:property_service set;
+allow vendor_init dalvik_prop:property_service set;
+
+allow vendor_init ffs_prop:property_service set;
+allow vendor_init mediatek_prop:property_service set;
+allow vendor_init mtk_md_version_prop:property_service set;
+allow vendor_init mtk_volte_prop:property_service set;
+allow vendor_init usp_prop:property_service set;
+allow vendor_init vendor_radio_prop:property_service set;
+
+
+allow vendor_init proc:file write;
+allow vendor_init proc_bootprof:file write;
+allow vendor_init rootfs:dir { write add_name setattr };
+allow vendor_init self:capability sys_module;
+
+allow vendor_init tmpfs:dir { write create add_name };
+
+allow vendor_init vendor_file:system module_load;
+
+allow vendor_init kmsg_device:chr_file unlink;
\ No newline at end of file