From a6ee1c723c6e9767a7d04c986b7aa03e4337d3c0 Mon Sep 17 00:00:00 2001
From: Cheng Chang <chengcha@google.com>
Date: Thu, 16 May 2024 02:48:28 +0000
Subject: [PATCH] sepolicy: allow gnssd access modem_state

avc:  denied  { read } for  name="modem_state" dev="sysfs" ino=77641 scontext=u:r:gnssd:s0 tcontext=u:object_r:sysfs_modem_state:s0 tclass=file
avc:  denied  { open } for path="/sys/devices/platform/cpif/modem_state" dev="sysfs" ino=77641 scontext=u:r:gnssd:s0 tcontext=u:object_r:sysfs_modem_state:s0 tclass=file
avc:  denied  { getattr } for path="/sys/devices/platform/cpif/modem_state" dev="sysfs" ino=77641 scontext=u:r:gnssd:s0 tcontext=u:object_r:sysfs_modem_state:s0 tclass=file

Bug: 340977648
Test: Verification boot-health at b/340977648#comment2
Test: Verification the function has been called by gnss.
Change-Id: I7b8e53cc4bfe0c2170a4d0346a48c996a5f41dcd
---
 vendor/gnssd.te | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/vendor/gnssd.te b/vendor/gnssd.te
index 8450253..7dd5e19 100644
--- a/vendor/gnssd.te
+++ b/vendor/gnssd.te
@@ -25,3 +25,6 @@ get_prop(gnssd, bootanim_system_prop)
 
 allow gnssd sysfs_soc:file r_file_perms;
 allow gnssd sysfs_gps:file rw_file_perms;
+
+# Read modme state
+allow gnssd sysfs_modem_state:file r_file_perms;
\ No newline at end of file