From 378ba145987c0d3273b7828bf770234d64623cf4 Mon Sep 17 00:00:00 2001
From: ChengYou Ho <chengyouho@google.com>
Date: Thu, 15 Jun 2023 09:33:37 +0000
Subject: [PATCH] Sepolicy: allow vendor_misc_writer to get sota_prop

libc    : Access denied finding property "persist.vendor.nfc.factoryota.state"
avc:  denied  { read } for  comm="misc_writer" name="u:object_r:sota_prop:s0"
dev="tmpfs" ino=317 scontext=u:r:vendor_misc_writer:s0
tcontext=u:object_r:sota_prop:s0 tclass=file permissive=0

Bug: 285803498
Bug: 271950369
Change-Id: I9e5809eba48899751345c3067f116549d8f57029
---
 misc_writer/misc_writer.mk        | 4 ++++
 misc_writer/vendor_misc_writer.te | 1 +
 2 files changed, 5 insertions(+)
 create mode 100644 misc_writer/misc_writer.mk
 create mode 100644 misc_writer/vendor_misc_writer.te

diff --git a/misc_writer/misc_writer.mk b/misc_writer/misc_writer.mk
new file mode 100644
index 0000000..7cb6c9a
--- /dev/null
+++ b/misc_writer/misc_writer.mk
@@ -0,0 +1,4 @@
+BOARD_VENDOR_SEPOLICY_DIRS += device/google/gs-common/misc_writer
+
+PRODUCT_PACKAGES += \
+    misc_writer
diff --git a/misc_writer/vendor_misc_writer.te b/misc_writer/vendor_misc_writer.te
new file mode 100644
index 0000000..dd47f02
--- /dev/null
+++ b/misc_writer/vendor_misc_writer.te
@@ -0,0 +1 @@
+get_prop(vendor_misc_writer, sota_prop)