diff --git a/sepolicy/vendor/file.te b/sepolicy/vendor/file.te
index fda899c..8ef995a 100644
--- a/sepolicy/vendor/file.te
+++ b/sepolicy/vendor/file.te
@@ -1,6 +1,7 @@
 # Fingerprint
 type vendor_fingerprint_data_file, data_file_type, file_type;
 type vendor_fingerprint_device, dev_type;
+type sysfs_fingerprint, fs_type, sysfs_type;
 
 # Health
 type vendor_sysfs_ac_supply, fs_type, sysfs_type;
diff --git a/sepolicy/vendor/genfs_contexts b/sepolicy/vendor/genfs_contexts
index 2708c6f..d05f166 100644
--- a/sepolicy/vendor/genfs_contexts
+++ b/sepolicy/vendor/genfs_contexts
@@ -1,3 +1,6 @@
+# Fingerprint
+genfscon sysfs /devices/platform/11012000.spi2/spi_master/spi2/spi2.0/authen_fd                                                 u:object_r:sysfs_fingerprint:s0
+
 # Health
 genfscon sysfs /devices/platform/mt_charger/power_supply/ac                                                                     u:object_r:vendor_sysfs_ac_supply:s0
 genfscon sysfs /devices/platform/mt_charger/power_supply/usb                                                                    u:object_r:vendor_sysfs_usb_supply:s0
diff --git a/sepolicy/vendor/hal_fingerprint_default.te b/sepolicy/vendor/hal_fingerprint_default.te
index bc2e94b..a652b6e 100644
--- a/sepolicy/vendor/hal_fingerprint_default.te
+++ b/sepolicy/vendor/hal_fingerprint_default.te
@@ -1,5 +1,7 @@
 # Allow fingerprint HAL to read and write fingerprint node
 allow hal_fingerprint_default vendor_fingerprint_device:chr_file rw_file_perms;
+allow hal_fingerprint_default sysfs_fingerprint:dir r_dir_perms;
+allow hal_fingerprint_default sysfs_fingerprint:file rw_file_perms;
 
 # Allow fingerprint HAL to setup fingerprint database files
 allow hal_fingerprint_default vendor_fingerprint_data_file:dir rw_dir_perms;