device/common: add vfat selinux policy [1/5]

PD#SWPL-36497

Prolem:
can't recording file into HDD;

Solution:
add vfat selinux policy;

Verify:
newton

Change-Id: Iee09e3a638194ff0a0e78ce08cdc62a5ecbd158d
Signed-off-by: junchao yuan <junchao.yuan@amlogic.com>

1 files changed, 4 insertions, 2 deletions

diff --git a/sepolicy/dtvkitserver.te b/sepolicy/dtvkitserver.te
index 6130714..3a29ee3 100644
--- a/sepolicy/dtvkitserver.te
+++ b/sepolicy/dtvkitserver.te
@@ -13,7 +13,7 @@ allow dtvkitserver self:capability sys_nice;
 allow dtvkitserver hwservicemanager:binder { call transfer };
 allow dtvkitserver system_control:binder { call transfer };
 allow dtvkitserver sysfs_video:dir { search };
-allow dtvkitserver dtvkit_data_file:dir{ write read add_name remove_name open search };
+allow dtvkitserver dtvkit_data_file:dir{ create write read add_name remove_name open search };
 allow dtvkitserver dtvkit_data_file:file { ioctl getattr read write open create lock setattr unlink append };
 allow dtvkitserver dtvkit_data_file:chr_file{ ioctl };
 allow dtvkitserver vndbinder_device:chr_file { read write open ioctl };
@@ -50,4 +50,6 @@ allow dtvkitserver vendor_video_device:chr_file { read write open ioctl getattr
 allow dtvkitserver vendor_framework_file:file { execute };
 allow dtvkitserver self:capability { net_raw };
 allow dtvkitserver param_tv_file:dir { read open };
-allow dtvkitserver vfat:dir { read open getattr };
+allow dtvkitserver vfat:dir { add_name write create ioctl remove_name open read rmdir getattr search };
+allow dtvkitserver vfat:file { write create open unlink link read getattr };
+allow dtvkitserver mnt_media_rw_file:dir r_dir_perms;