sepolicy: qti: Support both context prefixes in oplusreserve partition

Also apply some minor clean-ups while at it.

Change-Id: I7676bf126099222ef56b2f639aba1ab62f662361

sepolicy/qti/vendor/attributes

@@ -0,0 +1,3 @@
+# Reserve
+attribute oplus_reserve_file_type;
+attribute oplus_reserve_radio_file_type;

sepolicy/qti/vendor/file.te

@@ -45,19 +45,28 @@ type vendor_sysfs_cb, fs_type, sysfs_type;
 type vendor_proc_oplus_pogo_keyboard, fs_type, proc_type;
 
 # Reserve
-type oplus_reserve_connectivity_file, file_type;
 type oplus_reserve_connectivity_felicalock, file_type;
-type oplus_reserve_file, file_type;
+type oplus_reserve_connectivity_file, file_type;
+type oplus_reserve_file, file_type, oplus_reserve_file_type;
 type oplus_reserve_media_camera, file_type;
 type oplus_reserve_media_dropbox, file_type;
 type oplus_reserve_media_engineermode, file_type;
 type oplus_reserve_media_file, file_type;
 type oplus_reserve_media_log, file_type;
-type oplus_reserve_radio_file, file_type;
+type oplus_reserve_radio_file, file_type, oplus_reserve_radio_file_type;
 type oplus_reserve_system_config, file_type;
 type oplus_reserve_system_file, file_type;
 type oplus_reserve_system_flag, file_type;
 type oplus_reserve_system_ssv, file_type;
+type oppo_reserve_file, file_type, oplus_reserve_file_type;
+type oppo_reserve_media_camera, file_type;
+type oppo_reserve_media_coloros, file_type;
+type oppo_reserve_media_dropbox, file_type;
+type oppo_reserve_media_file, file_type;
+type oppo_reserve_media_log, file_type;
+type oppo_reserve_radio_file, file_type, oplus_reserve_radio_file_type;
+type oppo_reserve_system_config, file_type;
+type oppo_reserve_system_file, file_type;
 
 # Secure
 type vendor_proc_oppo_secure_common_file, fs_type, proc_type;

sepolicy/qti/vendor/file_contexts

@@ -133,6 +133,7 @@
 /mnt/vendor/oplusreserve/connectivity/nfclock(/.*)?                 u:object_r:oplus_reserve_connectivity_felicalock:s0
 /mnt/vendor/oplusreserve/media(/.*)?                                u:object_r:oplus_reserve_media_file:s0
 /mnt/vendor/oplusreserve/media/Camera(/.*)?                         u:object_r:oplus_reserve_media_camera:s0
+/mnt/vendor/oplusreserve/media/ColorOS(/.*)?                        u:object_r:oppo_reserve_media_coloros:s0
 /mnt/vendor/oplusreserve/media/dropbox(/.*)?                        u:object_r:oplus_reserve_media_dropbox:s0
 /mnt/vendor/oplusreserve/media/engineermode(/.*)?                   u:object_r:oplus_reserve_media_engineermode:s0
 /mnt/vendor/oplusreserve/media/log(/.*)?                            u:object_r:oplus_reserve_media_log:s0

sepolicy/qti/vendor/hal_oplus_esim_aidl.te

@@ -11,11 +11,11 @@ allow hal_oplus_esim_aidl esim_en_device:chr_file rw_file_perms;
 allow hal_oplus_esim_aidl esim_gpio_device:chr_file rw_file_perms;
 
 allow hal_oplus_esim_aidl mnt_vendor_file:dir search;
-r_dir_file(hal_oplus_esim_aidl, oplus_reserve_file)
-rw_dir_file(hal_oplus_esim_aidl, oplus_reserve_radio_file)
+allow hal_oplus_esim_aidl oplus_reserve_file_type:dir search;
+rw_dir_file(hal_oplus_esim_aidl, oplus_reserve_radio_file_type)
 
 allow hal_oplus_esim_aidl block_device:dir search;
-allow hal_oplus_esim_aidl vendor_reserve_partition:blk_file {read write open};
+allow hal_oplus_esim_aidl vendor_reserve_partition:blk_file rw_file_perms;
 
 allow hal_oplus_esim_aidl self:qipcrtr_socket create_socket_perms_no_ioctl;
 

sepolicy/qti/vendor/rild.te

@@ -1,6 +1,6 @@
 allow rild mnt_vendor_file:dir search;
-allow rild oplus_reserve_file:dir search;
-rw_dir_file(rild, oplus_reserve_radio_file)
+allow rild oplus_reserve_file_type:dir search;
+rw_dir_file(rild, oplus_reserve_radio_file_type)
 
 allow rild vendor_proc_display:file r_file_perms;