SEPolicy: Add context for /dev/radio

[Detail]
Do not allow access to the generic device label. This is too broad.
Instead, if access to part of device is desired, it should have a
more specific label.

[Solution]
Add context for dev/radio .

Merged-In: If97bc5bb23fabad7f62efcdbda3a3fa0ba7ec307
Change-Id: I51c16762a0fcafa90ad30d7a8849ae2f8c241ed1
CR-Id: ALPS05047061
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK

2 files changed, 2 insertions, 2 deletions

diff --git a/non_plat/device.te b/non_plat/device.te
index 2e6ceab..4c3dbd0 100644
--- a/non_plat/device.te
+++ b/non_plat/device.te
@@ -233,6 +233,7 @@ type mdp_device, dev_type;
 type mrdump_device, dev_type;
 type kb_block_device,dev_type;
 type dkb_block_device,dev_type;
+type mtk_radio_device, dev_type;
 
 ##########################
 # Sensor common Devices Start
diff --git a/non_plat/file_contexts b/non_plat/file_contexts
index 4a47925..b437d2d 100644
--- a/non_plat/file_contexts
+++ b/non_plat/file_contexts
@@ -377,6 +377,7 @@
 /dev/nebula-ipc-dev0 u:object_r:tee_device:s0
 /dev/mbim u:object_r:mbim_device:s0
 /dev/alarm(/.*)? u:object_r:alarm_device:s0
+/dev/radio(/.*)? u:object_r:mtk_radio_device:s0
 ##########################
 # Sensor common Devices Start
 #
@@ -680,10 +681,8 @@
 /vendor/bin/hw/android\.hardware\.drm@[0-9]+\.[0-9]+-service\.clearkey           u:object_r:hal_drm_clearkey_exec:s0
 /vendor/bin/hw/android\.hardware\.drm@[0-9]+\.[0-9]+-service-lazy\.clearkey      u:object_r:hal_drm_clearkey_exec:s0
 
-
 # Date : 2019/10/28
 # Purpose : move these contexts from plat_private/file_contexts
 /(system\/vendor|vendor)/bin/aee_aedv u:object_r:aee_aedv_exec:s0
 /(system\/vendor|vendor)/bin/aee_aedv64 u:object_r:aee_aedv_exec:s0
 /vendor/bin/aeev  u:object_r:aee_aedv_exec:s0
-