commit 08a25e6709bb82d4a43e7b0e3503b17c477f6d91
author Wonsik Kim <wonsik@google.com> Wed Mar 03 22:47:02 2021 +0000
committer Wonsik Kim <wonsik@google.com> Wed Mar 03 22:47:02 2021 +0000
tree 2b5f14cd0ae77d383f6c6973546facdc139752f1
parent 31251aa6ec164cfcc85e8720c33e4354a183b74b

Revert "Selinux policy for bootreceiver tracing instance"

Revert submission 1572240-kernel_bootreceiver

Reason for revert: DroidMonitor: Potential culprit for Bug 181778620 - verifying through Forrest before revert submission. This is part of the standard investigation process, and does not mean your CL will be reverted.
Reverted Changes:
Ic1c49a695:init.rc: set up a tracing instance for BootReceive...
I828666ec3:Selinux policy for bootreceiver tracing instance

Change-Id: I9a8da7ae501a4b7c3d6cb5bf365458cfd1bef906

private/compat/30.0/30.0.ignore.cil

diff --git a/private/compat/30.0/30.0.ignore.cil b/private/compat/30.0/30.0.ignore.cil
index 835f901..3793195 100644
--- a/private/compat/30.0/30.0.ignore.cil
+++ b/private/compat/30.0/30.0.ignore.cil
@@ -22,7 +22,6 @@
     ctl_snapuserd_prop
     debugfs_kprobes
     debugfs_mm_events_tracing
-    debugfs_bootreceiver_tracing
     device_config_profcollect_native_boot_prop
     device_config_connectivity_prop
     device_config_swcodec_native_prop

private/genfs_contexts

diff --git a/private/genfs_contexts b/private/genfs_contexts
index 79b0313..21a1ae9 100644
--- a/private/genfs_contexts
+++ b/private/genfs_contexts
@@ -177,8 +177,6 @@
 
 genfscon debugfs /tracing/instances                   u:object_r:debugfs_tracing_instances:s0
 genfscon tracefs /instances                           u:object_r:debugfs_tracing_instances:s0
-genfscon debugfs /tracing/instances/bootreceiver      u:object_r:debugfs_bootreceiver_tracing:s0
-genfscon tracefs /instances/bootreceiver              u:object_r:debugfs_bootreceiver_tracing:s0
 genfscon debugfs /tracing/instances/mm_events         u:object_r:debugfs_mm_events_tracing:s0
 genfscon tracefs /instances/mm_events                 u:object_r:debugfs_mm_events_tracing:s0
 genfscon debugfs /tracing/instances/wifi              u:object_r:debugfs_wifi_tracing:s0

private/init.te

diff --git a/private/init.te b/private/init.te
index 4e8289a..348673b 100644
--- a/private/init.te
+++ b/private/init.te
@@ -83,6 +83,3 @@
 
 # Only init can set keystore.boot_level
 neverallow { -init } keystore_listen_prop:property_service set;
-
-# Allow accessing /sys/kernel/tracing/instances/bootreceiver to set up tracing.
-allow init debugfs_bootreceiver_tracing:file w_file_perms;

private/system_server.te

diff --git a/private/system_server.te b/private/system_server.te
index 8bee1bf..c0c7c16 100644
--- a/private/system_server.te
+++ b/private/system_server.te
@@ -1021,10 +1021,6 @@
 allow system_server debugfs_wifi_tracing:dir search;
 allow system_server debugfs_wifi_tracing:file rw_file_perms;
 
-# Allow BootReceiver to watch trace error_report events.
-allow system_server debugfs_bootreceiver_tracing:dir search;
-allow system_server debugfs_bootreceiver_tracing:file r_file_perms;
-
 # Allow system_server to read tracepoint ids in order to attach BPF programs to them.
 allow system_server debugfs_tracing:file r_file_perms;
 

public/file.te

diff --git a/public/file.te b/public/file.te
index 243148f..4e17f12 100644
--- a/public/file.te
+++ b/public/file.te
@@ -557,9 +557,6 @@
 # vndservice_contexts file
 type vndservice_contexts_file, file_type;
 
-# /sys/kernel/tracing/instances/bootreceiver for monitoring kernel memory corruptions.
-type debugfs_bootreceiver_tracing, fs_type, debugfs_type;
-
 # Allow files to be created in their appropriate filesystems.
 allow fs_type self:filesystem associate;
 allow cgroup tmpfs:filesystem associate;