Move microdroid sepolicy to system/sepolicy Bug: 190511750 Test: boot microdroid Change-Id: I4aa4a56e9be5103d70469c3508110a973f3e4f12

commit: e1389977e00124633c1165d778081afe6b185f92 [log] [tgz]
author: Inseob Kim <inseob@google.com> Mon Jul 19 07:48:34 2021 +0000
committer: Inseob Kim <inseob@google.com> Mon Jul 19 07:48:34 2021 +0000
tree: a516e15cb0e7dca45ecd53486ab6f99afa8998e1
parent: 951bf93ad8941b7e2848b82dac92b8f75c13b279 [diff] [blame]
diff --git a/microdroid/system/private/file.te b/microdroid/system/private/file.te
new file mode 100644
index 0000000..1989d7e
--- /dev/null
+++ b/microdroid/system/private/file.te

@@ -0,0 +1,12 @@
+allow fs_type self:filesystem associate;
+allow cgroup tmpfs:filesystem associate;
+allow cgroup_v2 tmpfs:filesystem associate;
+allow cgroup_rc_file tmpfs:filesystem associate;
+allow debugfs_type { debugfs debugfs_tracing debugfs_tracing_debug }:filesystem associate;
+allow dev_type tmpfs:filesystem associate;
+allow file_type labeledfs:filesystem associate;
+allow file_type tmpfs:filesystem associate;
+allow file_type rootfs:filesystem associate;
+allow proc_net proc:filesystem associate;
+allow sysfs_type sysfs:filesystem associate;
+allow system_data_file tmpfs:filesystem associate;
commit	e1389977e00124633c1165d778081afe6b185f92	[log] [tgz]
author	Inseob Kim <inseob@google.com>	Mon Jul 19 07:48:34 2021 +0000
committer	Inseob Kim <inseob@google.com>	Mon Jul 19 07:48:34 2021 +0000
tree	a516e15cb0e7dca45ecd53486ab6f99afa8998e1
parent	951bf93ad8941b7e2848b82dac92b8f75c13b279 [diff] [blame]