android_device_xiaomi_sdm660-common/sepolicy/vendor/vendor_init.te

#============= vendor_init ==============
typeattribute vendor_init data_between_core_and_vendor_violators;

allow vendor_init {
  media_rw_data_file
  system_data_file
  tombstone_data_file
  camera_data_file
}:dir { create search getattr open read setattr ioctl write add_name remove_name rmdir relabelfrom };

allow vendor_init unlabeled:{ dir file } { getattr relabelfrom };

set_prop(vendor_init, camera_prop)
allow vendor_init media_rw_data_file:file { getattr relabelfrom };

allow vendor_init rootfs:dir { add_name create setattr write };
allow vendor_init persist_debug_prop:property_service set;
allow vendor_init persist_dpm_prop:property_service set;
allow vendor_init qcom_ims_prop:property_service set;
allow vendor_init thermal_engine_prop:property_service set;
allow vendor_init vendor_ssr_prop:property_service set;
allow vendor_init audio_prop:property_service set;
allow vendor_init vendor_fp_prop:property_service set;

allow vendor_init rootfs:dir { add_name write };
allow vendor_init rootfs:lnk_file setattr;
allow vendor_init fingerprint_data_file:dir setattr;
set_prop(vendor_init, camera_prop)
set_prop(vendor_init, vendor_camera_prop)