sepolicy: Add rules for PASR-HAL

Add contexts for memory offline nodes, and allow PASR-HAL to access
them.

Change-Id: I323f7a7369a3aea93f755bd7d2684374bf2f3b9e

qva/vendor/common/file.te

@@ -111,3 +111,5 @@ type sysfs_qvr_external_sensor, sysfs_type, fs_type;
 #qspm-hal
 type vendor_qspmhal_data_file, file_type, data_file_type;
 
+#Memory offlining file types
+type sysfs_memory_offline, sysfs_type, fs_type;

qva/vendor/common/genfs_contexts

@@ -40,3 +40,4 @@ genfscon sysfs /devices/platform/soc/soc:qcom,msm-ext-disp/extcon/extcon1/cable.
 genfscon sysfs /module/rmnet_perf/parameters u:object_r:sysfs_rmnet:s0
 
 genfscon sysfs /kernel/qvr_external_sensor u:object_r:sysfs_qvr_external_sensor:s0
+genfscon sysfs /devices/system/memory/ u:object_r:sysfs_memory_offline:s0

qva/vendor/common/hal_pasrmanager.te

@@ -34,3 +34,7 @@ binder_call(hal_pasrmanager_client, hal_pasrmanager_server)
 
 add_hwservice(hal_pasrmanager_server, hal_pasrmanager_hwservice)
 allow hal_pasrmanager_client hal_pasrmanager_hwservice:hwservice_manager find;
+
+allow hal_pasrmanager_qti sysfs:dir r_dir_perms;
+allow hal_pasrmanager_qti sysfs_memory_offline:file rw_file_perms;
+allow hal_pasrmanager_qti sysfs_memory_offline:dir r_dir_perms;

qva/vendor/common/system_app.te

@@ -58,3 +58,6 @@ binder_call( system_app, update_engine )
 
 #allow system app to access hal_qspmhal
 hal_client_domain(system_app, hal_qspmhal);
+
+# allow system_app to interact with pasr hal
+hal_client_domain(system_app, hal_pasrmanager)