sepolicy: Allow appdomain to access NPU device driver node

This change is to allow appdomain to access NPU device driver
node.

Change-Id: I5c3270afd105c236a8226d94ac7aa028e4ce1047

generic/vendor/common/app.te

@@ -33,3 +33,6 @@ get_prop(appdomain, vendor_camera_prop)
 
 #Allow all apps to have read access to vendor_adsprpc_prop
 get_prop(appdomain, vendor_adsprpc_prop)
+
+# Allow all apps to open and send ioctl to npu device
+allow appdomain npu_device:chr_file r_file_perms;

generic/vendor/common/device.te

@@ -60,4 +60,5 @@ type synx_device, dev_type;
 type wlan_device, dev_type;
 type xbl_block_device, dev_type;
 type uefi_block_device, dev_type;
-type qce_device, dev_type;
+type qce_device, dev_type;
+type npu_device, dev_type;

generic/vendor/common/file_contexts

@@ -30,6 +30,7 @@
 /dev/kgsl-3d0                                   u:object_r:gpu_device:s0
 /dev/rtc0                                       u:object_r:rtc_device:s0
 /dev/smd.*                                      u:object_r:smd_device:s0
+/dev/msm_npu                                    u:object_r:npu_device:s0
 # TODO: does ttyMSM0 need to be more specific
 /dev/ttyMSM0                                    u:object_r:tty_device:s0
 /dev/ipa                                        u:object_r:ipa_dev:s0