Merge "Configure sepolicy for TracingServiceProxy" am: 1f318c8cab

Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/1528451

MUST ONLY BE SUBMITTED BY AUTOMERGER

Change-Id: Ibd10fe6793a1b851f8b29eabff421d3dfbb0f1e7

private/service.te

@@ -8,4 +8,5 @@ type resolver_service,              system_server_service, service_manager_type;
 type stats_service,                 service_manager_type;
 type statscompanion_service,        system_server_service, service_manager_type;
 type statsmanager_service,          system_api_service, system_server_service, service_manager_type;
+type tracingproxy_service,          system_server_service, service_manager_type;
 type uce_service,                   service_manager_type;

private/service_contexts

@@ -259,6 +259,7 @@ time_detector                             u:object_r:timedetector_service:s0
 time_zone_detector                        u:object_r:timezonedetector_service:s0
 timezone                                  u:object_r:timezone_service:s0
 thermalservice                            u:object_r:thermal_service:s0
+tracing.proxy                             u:object_r:tracingproxy_service:s0
 transformer                               u:object_r:transformer_service:s0
 trust                                     u:object_r:trust_service:s0
 tv_input                                  u:object_r:tv_input_service:s0

private/traced.te

@@ -37,6 +37,11 @@ allow traced perfetto_traces_bugreport_data_file:dir rw_dir_perms;
 allow traced traceur_app:fd use;
 allow traced trace_data_file:file { read write };
 
+# Allow perfetto to access the proxy service for notifying Traceur.
+allow traced tracingproxy_service:service_manager find;
+binder_use(traced);
+binder_call(traced, system_server);
+
 # Allow iorapd to pass memfd descriptors to traced, so traced can directly
 # write into the shmem buffer file without doing roundtrips over IPC.
 allow traced iorapd:fd use;