From e6358c91de46809e50419f7a6fb70c9d0f45554f Mon Sep 17 00:00:00 2001
From: Frank Yu <shengfanyu@google.com>
Date: Thu, 22 Aug 2024 11:03:01 +0000
Subject: [PATCH] Move hal_radio_ext_service related policy of grilservice_app
 to gs-common.

Related avc error:

avc:  denied  { find } for pid=2227 uid=10259 name=vendor.google.radio_ext.IRadioExt/default scontext=u:r:grilservice_app:s0:c3,c257,c512,c768 tcontext=u:object_r:hal_radio_ext_service:s0 tclass=service_manager permissive=0

avc:  denied  { call } for  comm="oid.grilservice" scontext=u:r:grilservice_app:s0:c3,c257,c512,c768 tcontext=u:r:hal_radioext_default:s0 tclass=binder permissive=0 app=com.google.android.grilservice

Bug: 361210953
Change-Id: Ibb8a341847b0772668b52bc01f2d087bf1874fe9
Test: Verify with test ROM
Flag: EXEMPT sepolicy refactor
---
 modem/radio_ext/sepolicy/grilservice_app.te | 2 ++
 1 file changed, 2 insertions(+)
 create mode 100644 modem/radio_ext/sepolicy/grilservice_app.te

diff --git a/modem/radio_ext/sepolicy/grilservice_app.te b/modem/radio_ext/sepolicy/grilservice_app.te
new file mode 100644
index 0000000..9bd8c8e
--- /dev/null
+++ b/modem/radio_ext/sepolicy/grilservice_app.te
@@ -0,0 +1,2 @@
+allow grilservice_app hal_radio_ext_service:service_manager find;
+binder_call(grilservice_app, hal_radio_ext)