logpersist /dev directory permissions
avc: denied { read } for name="/" dev="tmpfs" ino=7541
scontext=u:r:logpersist:s0 tcontext=u:object_r:device:s0 tclass=dir
permissive=0
Bug: 129497117
Test: boot cuttlefish without above denial
Change-Id: Ieb17adf1efadd62fc72a07c938d778e70a1c3bd9
Merged-In: Ieb17adf1efadd62fc72a07c938d778e70a1c3bd9
(cherry picked from commit 91675acdc807f85c5f24bcb5fd36bc19b48dcda6)
diff --git a/shared/sepolicy/logpersist.te b/shared/sepolicy/logpersist.te
index f7fe151..22e6da5 100644
--- a/shared/sepolicy/logpersist.te
+++ b/shared/sepolicy/logpersist.te
@@ -1,5 +1,6 @@
# Output to virtual serial console. Needed because seriallogging daemon
# runs logcat and directs its output to vportXpY or cf_logcat_pipe under
# the /dev filesystem.
+allow logpersist device:dir r_dir_perms;
allow logpersist device:fifo_file ra_file_perms;
allow logpersist virtual_serial_device:chr_file ra_file_perms;