[ALPS03866203] pidmap: Add SELinux policy for Android P

[Detail]
Add SELinux policy for Android P:
Allow aee_aedv and dumpstate to read pidmap proc file.

MTK-Commit-Id: 16f120df6c33e20cdb0ce7f8c2040356ffecf02a

Change-Id: If1aa665003f70a2621687fcf291433d80f0d54d3
CR-Id: ALPS03866203
Feature: Android Exception Engine(AEE)

non_plat/aee_aedv.te

@@ -410,6 +410,9 @@ allow aee_aedv debugfs_rcu:file r_file_perms;
 # Purpose: Allow aee_aedv to read /proc/msdc_debug
 allow aee_aedv proc_msdc_debug:file r_file_perms;
 
+# Purpose: Allow aee_aedv to read /proc/pidmap
+allow aee_aedv proc_pidmap:file r_file_perms;
+
 # Purpose: Allow aee_aedv to read /sys/power/vcorefs/vcore_debug
 allow aee_aedv sysfs_vcore_debug:file r_file_perms;
 

non_plat/dumpstate.te

@@ -114,6 +114,9 @@ allow dumpstate debugfs_rcu:file r_file_perms;
 # Purpose: Allow dumpstate to read /proc/msdc_debug
 allow dumpstate proc_msdc_debug:file r_file_perms;
 
+# Purpose: Allow dumpstate to read /proc/pidmap
+allow dumpstate proc_pidmap:file r_file_perms;
+
 # Purpose: Allow dumpstate to read /sys/power/vcorefs/vcore_debug
 allow dumpstate sysfs_vcore_debug:file r_file_perms;
 

non_plat/file.te

@@ -66,6 +66,7 @@ type proc_last_kmsg, fs_type, proc_type;
 type proc_bootprof, fs_type, proc_type;
 type proc_pl_lk, fs_type, proc_type;
 type proc_msdc_debug, fs_type, proc_type;
+type proc_pidmap, fs_type, proc_type;
 type proc_kpageflags, fs_type, proc_type;
 type proc_slabtrace, fs_type, proc_type;
 type proc_cmqd_debug, fs_type, proc_type;

non_plat/genfs_contexts

@@ -31,6 +31,7 @@ genfscon proc /last_kmsg u:object_r:proc_last_kmsg:s0
 genfscon proc /bootprof u:object_r:proc_bootprof:s0
 genfscon proc /pl_lk u:object_r:proc_pl_lk:s0
 genfscon proc /msdc_debug u:object_r:proc_msdc_debug:s0
+genfscon proc /pidmap u:object_r:proc_pidmap:s0
 genfscon proc /kpageflags u:object_r:proc_kpageflags:s0
 genfscon proc /mtk_memcfg/slabtrace u:object_r:proc_slabtrace:s0
 genfscon proc /mtk_cmdq_debug/status u:object_r:proc_cmqd_debug:s0