vold does more than LOOP_GET_STATUS64. Update the "allowxperm" to reflect the various ioctl() performed in the vold source code. Bug: 118437832 Test: atest android.os.storage.cts.StorageManagerTest Change-Id: Ide3a09104d8b4ce7fa2b7e23e9b215139186f595

commit: f2cad2d92b848f6dcae4706a92043214c162a305 [log] [tgz]
author: Jeff Sharkey <jsharkey@android.com> Sat Oct 27 16:55:56 2018 -0600
committer: Jeff Sharkey <jsharkey@google.com> Sat Oct 27 16:56:55 2018 -0600
tree: 8bda4159add9e72072c4bc0f5580c5f71aef3046
parent: de8dfc752c2dffd8866e471ad27492dbce946da9 [diff]
diff --git a/public/vold.te b/public/vold.te
index 350b6b7..236604f 100644
--- a/public/vold.te
+++ b/public/vold.te

@@ -99,7 +99,13 @@
 allow vold self:netlink_kobject_uevent_socket create_socket_perms_no_ioctl;
 allow vold loop_control_device:chr_file rw_file_perms;
 allow vold loop_device:blk_file { create setattr unlink rw_file_perms };
-allowxperm vold loop_device:blk_file ioctl LOOP_GET_STATUS64;
+allowxperm vold loop_device:blk_file ioctl {
+  LOOP_CLR_FD
+  LOOP_CTL_GET_FREE
+  LOOP_GET_STATUS64
+  LOOP_SET_FD
+  LOOP_SET_STATUS64
+};
 allow vold vold_device:blk_file { create setattr unlink rw_file_perms };
 allow vold dm_device:chr_file rw_file_perms;
 allow vold dm_device:blk_file rw_file_perms;
commit	f2cad2d92b848f6dcae4706a92043214c162a305	[log] [tgz]
author	Jeff Sharkey <jsharkey@android.com>	Sat Oct 27 16:55:56 2018 -0600
committer	Jeff Sharkey <jsharkey@google.com>	Sat Oct 27 16:56:55 2018 -0600
tree	8bda4159add9e72072c4bc0f5580c5f71aef3046
parent	de8dfc752c2dffd8866e471ad27492dbce946da9 [diff]