Allow dumpstate to write into privileged apps private files Bug: 123006652 Bug: 111441001 Fix: 123006652 Test: Wrote a test app using BugreportManager, checked denials in logcat Change-Id: Id1c4b1d166bc70aec833c3d644e8aea6ae94c35a

commit: 1ab6affc5c51aee55cfacf3dc2d46a4e102ffc7a [log] [tgz]
author: Nikita Ioffe <ioffe@google.com> Fri Jan 18 16:02:57 2019 +0000
committer: Nikita Ioffe <ioffe@google.com> Wed Jan 23 23:13:23 2019 +0000
tree: 6703072f7da8a6a7fa269c562000ce42ad6dfae2
parent: b1f34ddaf7a817d6cf17d3f2e2f69e05f56efb7f [diff]
diff --git a/public/dumpstate.te b/public/dumpstate.te
index 39ef87d..0991bed 100644
--- a/public/dumpstate.te
+++ b/public/dumpstate.te

@@ -41,6 +41,9 @@
 # TODO: scope this down.
 allow dumpstate system_data_file:file r_file_perms;
 
+# Allow dumpstate to append into privileged apps private files.
+allow dumpstate privapp_data_file:file append;
+
 # Read dmesg
 allow dumpstate self:global_capability2_class_set syslog;
 allow dumpstate kernel:system syslog_read;
commit	1ab6affc5c51aee55cfacf3dc2d46a4e102ffc7a	[log] [tgz]
author	Nikita Ioffe <ioffe@google.com>	Fri Jan 18 16:02:57 2019 +0000
committer	Nikita Ioffe <ioffe@google.com>	Wed Jan 23 23:13:23 2019 +0000
tree	6703072f7da8a6a7fa269c562000ce42ad6dfae2
parent	b1f34ddaf7a817d6cf17d3f2e2f69e05f56efb7f [diff]