Sepolicy: Give system server fd rights to perfprofd So that perfprofd can send larger packets to dropbox. Follow-up of commit 3fa95acb1e3219652aa0f8d2a9269a9a785ef3b2. (cherry picked from commit c9df843773e5dfe9d3c4a299e743c1c779a89337) Bug: 73175642 Test: m Test: manual Merged-In: I88d1f83962243589909ff1ce3d02195e7c494256 Change-Id: I88d1f83962243589909ff1ce3d02195e7c494256

commit: 0193620bece18ebda89c2c39eb4369b0116a0fdf [log] [tgz]
author: Andreas Gampe <agampe@google.com> Mon Mar 19 13:31:38 2018 -0700
committer: Andreas Gampe <agampe@google.com> Thu Mar 22 21:10:39 2018 -0700
tree: b9b1eafc436e80d9e2ec468e16504a55927f606a
parent: cb9ac32bedd2ab63dc8191c6f7564be122fa8527 [diff]
diff --git a/private/system_server.te b/private/system_server.te
index 9a52bb6..b0aa9b5 100644
--- a/private/system_server.te
+++ b/private/system_server.te

@@ -381,6 +381,12 @@
 allow system_server perfetto_traces_data_file:file read;
 allow system_server perfetto:fd use;
 
+# Allow dropbox to read /data/misc/perfprofd. Only the fd is sent over binder.
+userdebug_or_eng(`
+  allow system_server perfprofd_data_file:file read;
+  allow system_server perfprofd:fd use;
+')
+
 # Manage /data/backup.
 allow system_server backup_data_file:dir create_dir_perms;
 allow system_server backup_data_file:file create_file_perms;
commit	0193620bece18ebda89c2c39eb4369b0116a0fdf	[log] [tgz]
author	Andreas Gampe <agampe@google.com>	Mon Mar 19 13:31:38 2018 -0700
committer	Andreas Gampe <agampe@google.com>	Thu Mar 22 21:10:39 2018 -0700
tree	b9b1eafc436e80d9e2ec468e16504a55927f606a
parent	cb9ac32bedd2ab63dc8191c6f7564be122fa8527 [diff]