diff --git a/sepolicy/vendor/file_contexts b/sepolicy/vendor/file_contexts
index 7a1ee50ab343bd7ca1b3a3820dac9cced924a02d..51b7e09f0829a9ae1d59b8448a766914b44afe2a 100644
--- a/sepolicy/vendor/file_contexts
+++ b/sepolicy/vendor/file_contexts
@@ -3,5 +3,10 @@
 /vendor/bin/batterysecret		u:object_r:batterysecret_exec:s0
 /mnt/vendor/persist/subsys(/.*)?                u:object_r:persist_subsys_file:s0
 
+# FOD
+/vendor/bin/hw/vendor\.lineage\.biometrics\.fingerprint\.inscreen@1.0-service\.xiaomi_sm8350            u:object_r:hal_lineage_fod_default_exec:s0
+/sys/devices/platform/soc/soc:qcom,dsi-display-primary/fod_hbm     u:object_r:vendor_sysfs_fod:s0
+/sys/devices/virtual/touch/tp_dev/fod_status                       u:object_r:vendor_sysfs_fod:s0
+
 # Power HAL
 /vendor/bin/hw/android\.hardware\.power@1\.3-service\.xiaomi_sm8350                                     u:object_r:hal_power_default_exec:s0
diff --git a/sepolicy/vendor/hal_lineage_fod_default.te b/sepolicy/vendor/hal_lineage_fod_default.te
new file mode 100644
index 0000000000000000000000000000000000000000..4198197cef33c1f324bd2c48b3fb94c21a6d42c3
--- /dev/null
+++ b/sepolicy/vendor/hal_lineage_fod_default.te
@@ -0,0 +1,9 @@
+type vendor_sysfs_fod, sysfs_type, fs_type;
+
+allow hal_lineage_fod_default vendor_sysfs_fod:file rw_file_perms;
+allow hal_lineage_fod_default vendor_sysfs_graphics:dir r_dir_perms;
+allow hal_lineage_fod_default vendor_sysfs_graphics:file rw_file_perms;
+
+binder_call(hal_lineage_fod_default, hal_fingerprint_default)
+
+hal_client_domain(hal_lineage_fod_default, hal_fingerprint)