08d4c8fa6e
This commit adds fake 31.0 prebuilt. The prebuilt is based on AOSP policy, but slightly modified so the set of types and attributes is a subset of real 31.0 prebuilt (sc-dev policy). Steps taken to make the fake prebuilt: 1) build plat_sepolicy.cil both on AOSP and sc-dev, with lunch target aosp_arm64-eng. 2) diff both outputs to find out which types and attributes don't exist. 3) remove all relevant files and statements. As a result, the following types are removed. artd artd_exec artd_service power_stats_service transformer_service virtualizationservice virtualizationservice_data_file virtualizationservice_exec Bug: 189161483 Test: N/A, will do after adding 31.0 mapping files. Change-Id: Ia957fc32b1838dae730d9dd7bd917d684d4a24cf Merged-In: Ia4ea2999f4bc8ae80f13e51d99fba3e98e293447
27 lines
908 B
Text
27 lines
908 B
Text
typeattribute statsd coredomain;
|
|
|
|
init_daemon_domain(statsd)
|
|
|
|
# Allow to exec the perfetto cmdline client and pass it the trace config on
|
|
# stdint through a pipe. It allows statsd to capture traces and hand them
|
|
# to Android dropbox.
|
|
allow statsd perfetto_exec:file rx_file_perms;
|
|
domain_auto_trans(statsd, perfetto_exec, perfetto)
|
|
|
|
# Grant statsd with permissions to register the services.
|
|
allow statsd {
|
|
statscompanion_service
|
|
}:service_manager find;
|
|
|
|
# Allow incidentd to obtain the statsd incident section.
|
|
allow statsd incidentd:fifo_file write;
|
|
|
|
# Allow StatsCompanionService to pipe data to statsd.
|
|
allow statsd system_server:fifo_file { read getattr };
|
|
|
|
# Allow statsd to retrieve SF statistics over binder
|
|
binder_call(statsd, surfaceflinger);
|
|
|
|
# Allow statsd to read its system properties
|
|
get_prop(statsd, device_config_statsd_native_prop)
|
|
get_prop(statsd, device_config_statsd_native_boot_prop)
|