From a7430966ea1937c74f4c843cad4d27673d01de4b Mon Sep 17 00:00:00 2001
From: Wayne Lin <waynewhlin@google.com>
Date: Wed, 7 Feb 2024 08:52:09 +0800
Subject: [PATCH] gps: add sepolicy to coredump node

Bug: 319766739
Test: build pass and verify pass
Change-Id: I7cf289865540533b9d65a2c2c21d1ea4e9f391a2
---
 gps/lsi/sepolicy/genfs_contexts      | 2 ++
 gps/lsi/sepolicy/gnssd.te            | 1 +
 gps/lsi/sepolicy/hal_gnss_default.te | 1 +
 3 files changed, 4 insertions(+)
 create mode 100644 gps/lsi/sepolicy/genfs_contexts

diff --git a/gps/lsi/sepolicy/genfs_contexts b/gps/lsi/sepolicy/genfs_contexts
new file mode 100644
index 0000000..d19427c
--- /dev/null
+++ b/gps/lsi/sepolicy/genfs_contexts
@@ -0,0 +1,2 @@
+# gps coredump node
+genfscon sysfs /devices/platform/gnssif/coredump                                                                     u:object_r:sysfs_gps:s0
diff --git a/gps/lsi/sepolicy/gnssd.te b/gps/lsi/sepolicy/gnssd.te
index 487bcbb..8450253 100644
--- a/gps/lsi/sepolicy/gnssd.te
+++ b/gps/lsi/sepolicy/gnssd.te
@@ -24,3 +24,4 @@ net_domain(gnssd);
 get_prop(gnssd, bootanim_system_prop)
 
 allow gnssd sysfs_soc:file r_file_perms;
+allow gnssd sysfs_gps:file rw_file_perms;
diff --git a/gps/lsi/sepolicy/hal_gnss_default.te b/gps/lsi/sepolicy/hal_gnss_default.te
index 515a923..54a08f9 100644
--- a/gps/lsi/sepolicy/hal_gnss_default.te
+++ b/gps/lsi/sepolicy/hal_gnss_default.te
@@ -3,6 +3,7 @@ allow hal_gnss_default gnssd:unix_stream_socket connectto;
 allow hal_gnss_default vendor_gps_file:dir create_dir_perms;
 allow hal_gnss_default vendor_gps_file:file create_file_perms;
 allow hal_gnss_default vendor_gps_file:fifo_file create_file_perms;
+allow hal_gnss_default sysfs_gps:file rw_file_perms;
 binder_call(hal_gnss_default, gnssd);
 
 #Read GPS property