New device-specific sepolicy file for 'perfprofd'

Bug: http://b/19483574

Change-Id: I669ad73f0287521ece5d21ae30486137062782e0
diff --git a/sepolicy/perfprofd.te b/sepolicy/perfprofd.te
new file mode 100644
index 0000000..4296d4d
--- /dev/null
+++ b/sepolicy/perfprofd.te
@@ -0,0 +1,6 @@
+userdebug_or_eng(`
+  # perfprofd disables mpdecision temporarily via setprop ctl.stop,
+  # then re-enables afterwards with setprop ctl.start
+  allow perfprofd ctl_mpdecision:property_service set;
+  unix_socket_connect(perfprofd, property, init)
+')
diff --git a/sepolicy/property.te b/sepolicy/property.te
index 07b30c7..96db1b6 100644
--- a/sepolicy/property.te
+++ b/sepolicy/property.te
@@ -1,2 +1,3 @@
  type qcom_ims_prop, property_type;
  type qcom_netmgrd_prop, property_type;
+ type ctl_mpdecision, property_type;
diff --git a/sepolicy/property_contexts b/sepolicy/property_contexts
index d7d0d0f..d5cb855 100644
--- a/sepolicy/property_contexts
+++ b/sepolicy/property_contexts
@@ -1,2 +1,3 @@
 sys.ims.        u:object_r:qcom_ims_prop:s0
 net.r_rmnet     u:object_r:qcom_netmgrd_prop:s0
+ctl.mpdecision  u:object_r:ctl_mpdecision:s0