microdroid_manager: allow tcdain Bug: 220071963 Test: packages/modules/Virtualization/android/vm/vm_shell.sh start-microdroid Change-Id: Ib6b2876e3875821fed09370fec0526454767194d

commit: 2ea821d5cca5d3dcf3b3f2f7c9a3b398264f73dc [log] [tgz]
author: Frederick Mayle <fmayle@google.com> Thu Nov 14 18:01:44 2024 -0800
committer: Frederick Mayle <fmayle@google.com> Thu Nov 14 18:01:44 2024 -0800
tree: e7a71f98c3b4921f2e6c4880de3176d5c422289c
parent: 6f991b010170085b765e07a9a89913c5c91b3cd3 [diff]
diff --git a/microdroid/system/private/microdroid_manager.te b/microdroid/system/private/microdroid_manager.te
index 75c89be..96a05f7 100644
--- a/microdroid/system/private/microdroid_manager.te
+++ b/microdroid/system/private/microdroid_manager.te

@@ -129,7 +129,8 @@
 allow microdroid_manager ram_device:blk_file rw_file_perms;
 
 # Allow microdroid_manager to read/write failure serial device
-allow microdroid_manager serial_device:chr_file w_file_perms;
+# tcdrain requires ioctl.
+allow microdroid_manager serial_device:chr_file { w_file_perms ioctl };
 
 # Allow microdroid_manager to handle extra_apks
 allow microdroid_manager extra_apk_file:dir create_dir_perms;
commit	2ea821d5cca5d3dcf3b3f2f7c9a3b398264f73dc	[log] [tgz]
author	Frederick Mayle <fmayle@google.com>	Thu Nov 14 18:01:44 2024 -0800
committer	Frederick Mayle <fmayle@google.com>	Thu Nov 14 18:01:44 2024 -0800
tree	e7a71f98c3b4921f2e6c4880de3176d5c422289c
parent	6f991b010170085b765e07a9a89913c5c91b3cd3 [diff]