diff --git a/sepolicy/base/public/hap_domain.te b/sepolicy/base/public/hap_domain.te
index f643801371f21b139201e8dd88664a5d28f1c973..4c142179ed40239d307e3b7cd51cfb1657e50ee3 100644
--- a/sepolicy/base/public/hap_domain.te
+++ b/sepolicy/base/public/hap_domain.te
@@ -56,8 +56,9 @@ allow hap_domain self:process execmem;
 
 allow hap_domain data_app_el1_file:dir { add_name create  open read search setattr write };
 allow hap_domain data_app_el1_file:file { getattr map open read };
-allow hap_domain data_app_el2_file:dir { add_name search read write create open remove_name getattr setattr rmdir };
-allow hap_domain data_app_el2_file:file { create read write open lock ioctl unlink map setattr getattr rename };
+
+allow hap_domain data_app_el2_file:dir { add_name search read write create open remove_name getattr setattr rmdir append };
+allow hap_domain data_app_el2_file:file { create read write open lock ioctl unlink map setattr getattr rename append };
 allow hap_domain data_app_el3_file:dir { add_name search read write create open remove_name getattr setattr rmdir };
 allow hap_domain data_app_el3_file:file { create read write open lock unlink map setattr getattr rename };
 allow hap_domain data_app_el4_file:dir { add_name search read write create open remove_name getattr setattr rmdir };