Fix /sys denials. Labeled files linked from /sys/class/{rtc, net}. Fixes these denials: avc: denied { read } for pid=6413 comm="system_server" name="hctosys" dev="sysfs" ino=10068 scontext=u:r:system_server:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 avc: denied { write } for pid=4785 comm="Binder:4785_2" name="mtu" dev="sysfs" ino=9213 scontext=u:r:netd:s0 tcontext=u:object_r:sysfs:s0 tclass=file permissive=0 Test: files labeled as expected; emulator boots without above denials. Change-Id: I8fd8cc993ede0ddfd4404c0647a60da4867ef128

commit: 82ca9a743a66603ed2848a4d8baef87091749ff4 [log] [tgz]
author: Tri Vo <trong@google.com> Wed Jan 24 12:39:45 2018 -0800
committer: Tri Vo <trong@google.com> Wed Jan 24 12:39:47 2018 -0800
tree: 24eba6eb17ed201b137fb6f6b4e8b5de625b5060
parent: 30a532a1bf10ee41ed49f4b95d79abd3cca1c4dd [diff]
diff --git a/target/board/generic/sepolicy/genfs_contexts b/target/board/generic/sepolicy/genfs_contexts
index 3b077a6..91cedf1 100644
--- a/target/board/generic/sepolicy/genfs_contexts
+++ b/target/board/generic/sepolicy/genfs_contexts

@@ -6,3 +6,12 @@
 # We expect /sys/class/power_supply/* and everything it links to to be labeled
 # as sysfs_batteryinfo.
 genfscon sysfs /devices/platform/GFSH0001:00/power_supply u:object_r:sysfs_batteryinfo:s0
+
+# /sys/class/rtc
+genfscon sysfs /devices/pnp0/00:00/rtc u:object_r:sysfs_rtc:s0
+genfscon sysfs /devices/platform/GFSH0007:00/rtc u:object_r:sysfs_rtc:s0
+
+# /sys/class/net
+genfscon sysfs /devices/pci0000:00/0000:00:08.0/virtio5/net u:object_r:sysfs_net:s0
+genfscon sysfs /devices/virtual/mac80211_hwsim/hwsim0/net u:object_r:sysfs_net:s0
+genfscon sysfs /devices/virtual/mac80211_hwsim/hwsim1/net u:object_r:sysfs_net:s0
commit	82ca9a743a66603ed2848a4d8baef87091749ff4	[log] [tgz]
author	Tri Vo <trong@google.com>	Wed Jan 24 12:39:45 2018 -0800
committer	Tri Vo <trong@google.com>	Wed Jan 24 12:39:47 2018 -0800
tree	24eba6eb17ed201b137fb6f6b4e8b5de625b5060
parent	30a532a1bf10ee41ed49f4b95d79abd3cca1c4dd [diff]