Making sys.boot.reason.last restricted sys.boot.reason.last needs to be readable by SysUI to correctly display the reason why authentication is required to unlock the phone. Bug: 299327097 Test: presubmit Change-Id: I9f83ade92858056609bc665ecb6ce9b93eb051e4

commit: 957e8f37a138ed74586f252e1018fede99874087 [log] [tgz]
author: Alexei Nicoara <ancr@google.com> Mon Sep 11 17:43:45 2023 +0100
committer: Alexei Nicoara <ancr@google.com> Mon Sep 11 18:29:24 2023 +0100
tree: 8d0778aa7c8a234344e51cb3f09f439c32828e0e
parent: e32751f7487335eb98cfcbeb3afd34baf9fdb461 [diff]
diff --git a/private/bootstat.te b/private/bootstat.te
index 016292e..99d8c6d 100644
--- a/private/bootstat.te
+++ b/private/bootstat.te

@@ -17,6 +17,7 @@
   -dumpstate
   userdebug_or_eng(`-incidentd')
   -init
+  -platform_app
   -recovery
   -shell
   -system_server

diff --git a/private/platform_app.te b/private/platform_app.te
index 1bd0020..cd95353 100644
--- a/private/platform_app.te
+++ b/private/platform_app.te

@@ -116,6 +116,9 @@
 # allow platform apps to read qemu.hw.mainkeys
 get_prop(platform_app, qemu_hw_prop)
 
+# allow platform apps to read sys.boot.reason.last
+get_prop(platform_app, last_boot_reason_prop)
+
 # allow platform apps to create symbolic link
 allow platform_app app_data_file:lnk_file create_file_perms;
commit	957e8f37a138ed74586f252e1018fede99874087	[log] [tgz]
author	Alexei Nicoara <ancr@google.com>	Mon Sep 11 17:43:45 2023 +0100
committer	Alexei Nicoara <ancr@google.com>	Mon Sep 11 18:29:24 2023 +0100
tree	8d0778aa7c8a234344e51cb3f09f439c32828e0e
parent	e32751f7487335eb98cfcbeb3afd34baf9fdb461 [diff]