Add type and mapping for /metadata/sepolicy Test: make -j; launch_cvd; adb shell ls -laZ /metadata Bug: 199914227 Change-Id: I573af0949d92f401589238dab8c3e9fbe2ee7efe

commit: 5aa5e5e8458add8484efd25896e3dbd03d751a87 [log] [tgz]
author: Jeff Vander Stoep <jeffv@google.com> Wed Nov 17 08:51:11 2021 +0100
committer: Jeffrey Vander Stoep <jeffv@google.com> Wed Nov 17 10:45:24 2021 +0000
tree: 5ecaf733f1b1ea01c213631cd866c29955b166ea
parent: 07246483ade32976c429727e9f9d11f9407c89e2 [diff]
diff --git a/private/file.te b/private/file.te
index f2d3f56..f3e1855 100644
--- a/private/file.te
+++ b/private/file.te

@@ -74,3 +74,6 @@
 
 # /apex/com.android.virt/bin/fd_server
 type fd_server_exec, system_file_type, exec_type, file_type;
+
+# /metadata/sepolicy
+type sepolicy_metadata_file, file_type;

diff --git a/private/file_contexts b/private/file_contexts
index e7045e0..1079dca 100644
--- a/private/file_contexts
+++ b/private/file_contexts

@@ -778,6 +778,7 @@
 /metadata/password_slots(/.*)?    u:object_r:password_slot_metadata_file:s0
 /metadata/ota(/.*)?       u:object_r:ota_metadata_file:s0
 /metadata/bootstat(/.*)?  u:object_r:metadata_bootstat_file:s0
+/metadata/sepolicy(/.*)?    u:object_r:sepolicy_metadata_file:s0
 /metadata/staged-install(/.*)?    u:object_r:staged_install_file:s0
 /metadata/userspacereboot(/.*)?    u:object_r:userspace_reboot_metadata_file:s0
 /metadata/watchdog(/.*)?    u:object_r:watchdog_metadata_file:s0
commit	5aa5e5e8458add8484efd25896e3dbd03d751a87	[log] [tgz]
author	Jeff Vander Stoep <jeffv@google.com>	Wed Nov 17 08:51:11 2021 +0100
committer	Jeffrey Vander Stoep <jeffv@google.com>	Wed Nov 17 10:45:24 2021 +0000
tree	5ecaf733f1b1ea01c213631cd866c29955b166ea
parent	07246483ade32976c429727e9f9d11f9407c89e2 [diff]