Merge "Allow statsd to read file descriptors from any app" into main am: bfcc43e84e
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/3107057 Change-Id: I046583d19a6772fbb4f91e27de56a6280dc27e43 Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
Jeffrey Huang
Automerger Merge Worker
commit
970d43eaab
1 changed files with 5 additions and 2 deletions
|
|
@ -19,8 +19,11 @@ allow statsd incidentd:fifo_file write;
|
|||
# Allow StatsCompanionService to pipe data to statsd.
|
||||
allow statsd system_server:fifo_file { read write getattr };
|
||||
|
||||
# Allow Statsd to pipe data to privileged apps.
|
||||
allow statsd priv_app:fifo_file { read write getattr };
|
||||
# Allow any app to pipe data to statsd.
|
||||
# Access control to all statsd APIs inherit from system_api_service, so
|
||||
# appdomain permissions are granted to avoid listing each individual
|
||||
# service that can access system_api_service.
|
||||
allow statsd appdomain:fifo_file { read write getattr };
|
||||
|
||||
# Allow statsd to retrieve SF statistics over binder
|
||||
binder_call(statsd, surfaceflinger);
|
||||
|
|
|
|||
Loading…
Reference in a new issue