allow hal_fingerprint_default self:netlink_socket create_socket_perms_no_ioctl;

# Allow binder communication with hal_perf_default
binder_call(hal_fingerprint_default, hal_perf_default)

# Allow hal_fingerprint_default to find hal_perf_hwservice
allow hal_fingerprint_default hal_perf_hwservice:hwservice_manager find;

# Allow hal_fingerprint_default to read and write to fingerprintd_device
allow hal_fingerprint_default fingerprintd_device:chr_file rw_file_perms;

# Allow hal_fingerprint_default to read and write to qdsp_device
allow hal_fingerprint_default qdsp_device:chr_file rw_file_perms;

# Allow hal_fingerprint_default to read and write to tee_device
allow hal_fingerprint_default tee_device:chr_file rw_file_perms;

# Allow hal_fingerprint_default to read and write to proc_touchpanel
allow hal_fingerprint_default proc_touchpanel:dir search;
allow hal_fingerprint_default proc_touchpanel:file rw_file_perms;

# Allow hal_fingerprint_default access to sysfs nodes
allow hal_fingerprint_default sysfs_fod:file rw_file_perms;
allow hal_fingerprint_default sysfs_aod:file r_file_perms;