Allow dumpstate to read /data/system/shutdown-checkpoints/ Bug: 260366497 Bug: 264600011 Test: Take bugreport and check dmesg for avc error Test: Reboot and check shutdown-checkpoints Change-Id: Ifcc7de30ee64e18f78af147cd3da39d7c6dc6f5f

commit: 35541e183f9825121c442224daa0fcb68c29431b [log] [tgz]
author: Woody Lin <woodylin@google.com> Mon Feb 06 16:32:45 2023 +0800
committer: Woody Lin <woodylin@google.com> Thu Feb 16 14:23:33 2023 +0800
tree: 3f472642f9821350315ec4f1f9fa00e2bcb05682
parent: 9bc9a63b68ad79b0f33f9df37b741bf7a146d5d2 [diff] [blame]
diff --git a/private/system_server.te b/private/system_server.te
index a39eaa2..e9a6bba 100644
--- a/private/system_server.te
+++ b/private/system_server.te

@@ -1487,6 +1487,10 @@
 allow system_server self:perf_event { open write cpu kernel };
 neverallow system_server self:perf_event ~{ open write cpu kernel };
 
+# Allow writing files under /data/system/shutdown-checkpoints/
+allow system_server shutdown_checkpoints_system_data_file:dir create_dir_perms;
+allow system_server shutdown_checkpoints_system_data_file:file create_file_perms;
+
 # Do not allow any domain other than init or system server to set the property
 neverallow { domain -init -system_server } socket_hook_prop:property_service set;
commit	35541e183f9825121c442224daa0fcb68c29431b	[log] [tgz]
author	Woody Lin <woodylin@google.com>	Mon Feb 06 16:32:45 2023 +0800
committer	Woody Lin <woodylin@google.com>	Thu Feb 16 14:23:33 2023 +0800
tree	3f472642f9821350315ec4f1f9fa00e2bcb05682
parent	9bc9a63b68ad79b0f33f9df37b741bf7a146d5d2 [diff] [blame]