From b144ebab482891cef32ee84c06dbb0f943823573 Mon Sep 17 00:00:00 2001
From: dcashman <dcashman@google.com>
Date: Fri, 10 Jun 2016 09:04:58 -0700
Subject: [PATCH] Allow access to sysfs usb nodes.

Some legitimate functionality currently requires direct sysfs access
that is not otherwise possible via the android APIs.  Specifically,
isochronous USB transfers require this direct access, without which USB
audio applications would noticibly suffer.

Grant read access to the usb files under /sys/devices to prevent this
regression.

Bug: 28417852
Change-Id: I3424bf3498ffa0eb647a54cc962ab8c54f291728
---
 domain.te | 2 ++
 file.te   | 1 +
 2 files changed, 3 insertions(+)

diff --git a/domain.te b/domain.te
index bed4e67f6..1ac33f1a4 100644
--- a/domain.te
+++ b/domain.te
@@ -110,6 +110,8 @@ r_dir_file(domain, zoneinfo_data_file)
 # Lots of processes access current CPU information
 r_dir_file(domain, sysfs_devices_system_cpu)
 
+r_dir_file(domain, sysfs_usb);
+
 # files under /data.
 allow domain system_data_file:dir { search getattr };
 allow domain system_data_file:lnk_file read;
diff --git a/file.te b/file.te
index d2894ffd9..f0e984d9e 100644
--- a/file.te
+++ b/file.te
@@ -30,6 +30,7 @@ type sysfs_hwrandom, fs_type, sysfs_type;
 type sysfs_nfc_power_writable, fs_type, sysfs_type, mlstrustedobject;
 type sysfs_wake_lock, fs_type, sysfs_type;
 type sysfs_mac_address, fs_type, sysfs_type;
+type sysfs_usb, sysfs_type, file_type, mlstrustedobject;
 type configfs, fs_type;
 # /sys/devices/system/cpu
 type sysfs_devices_system_cpu, fs_type, sysfs_type;