e1389977e0
Bug: 190511750 Test: boot microdroid Change-Id: I4aa4a56e9be5103d70469c3508110a973f3e4f12
31 lines
992 B
Text
31 lines
992 B
Text
type statsd, domain, mlstrustedsubject;
|
|
|
|
type statsd_exec, system_file_type, exec_type, file_type;
|
|
binder_use(statsd)
|
|
|
|
# Allow statsd to scan through /proc/pid for all processes.
|
|
r_dir_file(statsd, domain)
|
|
|
|
# Allow executing files on system, such as running a shell or running:
|
|
# /system/bin/toolbox
|
|
# /system/bin/logcat
|
|
# /system/bin/dumpsys
|
|
allow statsd devpts:chr_file { getattr ioctl read write };
|
|
allow statsd shell_exec:file rx_file_perms;
|
|
allow statsd system_file:file execute_no_trans;
|
|
allow statsd toolbox_exec:file rx_file_perms;
|
|
|
|
# Allow statsd to interact with keystore to pull atoms
|
|
allow statsd keystore_service:service_manager find;
|
|
binder_call(statsd, keystore)
|
|
|
|
# Allow logd access.
|
|
read_logd(statsd)
|
|
control_logd(statsd)
|
|
|
|
# Allow 'adb shell cmd' to upload configs and download output.
|
|
allow statsd adbd:fd use;
|
|
allow statsd adbd:unix_stream_socket { getattr read write };
|
|
allow statsd shell:fifo_file { getattr read write };
|
|
|
|
unix_socket_send(statsd, statsdw, statsd)
|