Merge "Filecontext changed for vm-system mount" into sepolicy.vndr.lnx.12.0

generic/vendor/common/file_contexts

@@ -381,7 +381,6 @@
 # /
 /tombstones                          u:object_r:rootfs:s0
 /vendor/dsp(/.*)?                    u:object_r:adsprpcd_file:s0
-/vendor/vm-system(/.*)?              u:object_r:vendor_vm_system_file:s0
 
 # /persist
 /mnt/vendor/persist/data(/.*)?       u:object_r:vendor_persist_data_file:s0

generic/vendor/common/init.te

@@ -30,6 +30,7 @@ allow init {
     mnt_vendor_file
     storage_file
     vendor_vm_system_file
+    same_process_hal_file
 }:dir mounton;
 
 # symlink /sdcard to backing block

generic/vendor/lahaina/file_contexts

@@ -166,3 +166,5 @@
 # Feature configs
 /sys/devices/platform/soc/780000.qfprom/qfprom0/feat_conf* u:object_r:vendor_sysfs_qfprom:s0
 
+# VM Specific
+/vendor/vm-system(/.*)?              u:object_r:vendor_vm_system_file:s0

generic/vendor/taro/file_contexts

@@ -252,3 +252,5 @@
 
 /vendor/bin/hw/vendor\.qti\.hardware\.display\.demura-service u:object_r:hal_display_demura_default_exec:s0
 
+# VM Specific
+/vendor/vm-system(/.*)?              u:object_r:same_process_hal_file:s0

generic/vendor/taro/qvirtmgr.te

@@ -28,5 +28,4 @@
 # Qvirtmgr Policies
 allow vendor_qvirtmgr vendor_sysfs_guestvm:file rw_file_perms;
 allow vendor_qvirtmgr vendor_virtio_chr_device:chr_file rw_file_perms;
-allow vendor_qvirtmgr vendor_vm_system_file:dir r_dir_perms;
-allow vendor_qvirtmgr vendor_vm_system_file:file r_file_perms;
+allow vendor_qvirtmgr same_process_hal_file:file r_file_perms;