sepolicy: add drm v1.1 to file context

add new rules to allow copy of data between old certificate path
and new cerificate path

Change-Id: I6094a2467066a0f50e292d67bae84e7ca02160cd

vendor/common/file.te

@@ -102,7 +102,7 @@ type bt_firmware_file, file_type, contextmount_type, vendor_file_type;
 type vendor_mdmhelperdata_data_file, file_type, data_file_type;
 
 #widevine data file
-type vendor_mediadrm_data_file, file_type, data_file_type;
+type mediadrm_vendor_data_file, file_type, data_file_type;
 
 #data sysfs files
 type sysfs_data, fs_type, sysfs_type;

vendor/common/file_contexts

@@ -129,7 +129,7 @@
 /vendor/bin/hw/android\.hardware\.gnss@1\.0-service-qti              u:object_r:hal_gnss_qti_exec:s0
 /vendor/bin/hw/android\.hardware\.gnss@1\.1-service-qti              u:object_r:hal_gnss_qti_exec:s0
 /vendor/bin/hw/android\.hardware\.bluetooth@1\.0-service-qti         u:object_r:hal_bluetooth_default_exec:s0
-/(vendor|system/vendor)/bin/hw/android\.hardware\.drm@1\.0-service.widevine   	u:object_r:hal_drm_widevine_exec:s0
+/(vendor|system/vendor)/bin/hw/android\.hardware\.drm@1\.1-service.widevine   	u:object_r:hal_drm_widevine_exec:s0
 /(vendor|system/vendor)/bin/hw/vendor\.qti\.hardware\.display\.allocator@1\.0-service   u:object_r:hal_graphics_allocator_default_exec:s0
 /(vendor|system/vendor)/bin/hw/vendor\.qti\.hardware\.tui_comm@1\.0-service-qti u:object_r:hal_tui_comm_qti_exec:s0
 /(vendor|system/vendor)/bin/hw/vendor\.qti\.hardware\.qdutils_disp@1\.0-service-qti u:object_r:hal_qdutils_disp_qti_exec:s0
@@ -332,7 +332,7 @@
 /sys/devices(/platform)?/soc/[a-f0-9]+.ufshc/clkscale_enable        u:object_r:sysfs_scsi_host:s0
 /sys/devices(/platform)?/soc/[a-f0-9]+/host0/scsi_host/host0(/.*)?  u:object_r:sysfs_scsi_host:s0
 /data/vendor/media(/.*)?                                            u:object_r:vendor_media_data_file:s0
-/data/vendor/mediadrm(/.*)?                                         u:object_r:vendor_mediadrm_data_file:s0
+/data/vendor/mediadrm(/.*)?                                         u:object_r:mediadrm_vendor_data_file:s0
 /data/vendor/nnhal(/.*)?                                            u:object_r:hal_neuralnetworks_data_file:s0
 
 /sys/devices(/platform)?/soc/[a-z0-9\.:]+,[a-z0-9\-\_]+/subsys[0-9]+/name u:object_r:sysfs_ssr:s0

vendor/common/hal_drm_widevine.te

@@ -41,5 +41,5 @@ vndbinder_use(hal_drm_widevine);
 allow hal_drm_widevine qdisplay_service:service_manager { find };
 #binder_call(hal_drm_widevine, hal_graphics_composer)
 hal_client_domain(hal_drm_widevine, hal_graphics_composer);
-allow hal_drm_widevine vendor_mediadrm_data_file:dir create_dir_perms;
-allow hal_drm_widevine vendor_mediadrm_data_file:file create_file_perms;
+allow hal_drm_widevine mediadrm_vendor_data_file:dir create_dir_perms;
+allow hal_drm_widevine mediadrm_vendor_data_file:file create_file_perms;