Adds new policy for init_svc_debug_prop. Used to restrict properties init.svc_debug_pid.* Bug: 138114550 Test: getprop | grep init.svc_debug_pid only shows results on root Change-Id: I0c10699deec4c548a2463a934e96b897ddee1678

commit: 4eca81948385e18aa44af2135e01ef998cb9f3bf [log] [tgz]
author: Daniel Norman <danielnorman@google.com> Thu Jul 25 11:29:17 2019 -0700
committer: Daniel Norman <danielnorman@google.com> Fri Aug 02 10:27:15 2019 -0700
tree: 7b6e6980bc5601c93d14061ae260ad982a5f1086
parent: 2765c29befca9a35a123581b8f7b998cfb327638 [diff]
diff --git a/private/compat/29.0/29.0.ignore.cil b/private/compat/29.0/29.0.ignore.cil
index 83c8eee..5a9706a 100644
--- a/private/compat/29.0/29.0.ignore.cil
+++ b/private/compat/29.0/29.0.ignore.cil

@@ -12,6 +12,7 @@
     device_config_sys_traced_prop
     hal_can_bus_hwservice
     hal_can_controller_hwservice
+    init_svc_debug_prop
     ota_metadata_file
     runtime_apex_dir
     system_ashmem_hwservice

diff --git a/private/property_contexts b/private/property_contexts
index c31940c..254c55a 100644
--- a/private/property_contexts
+++ b/private/property_contexts

@@ -35,6 +35,7 @@
 debug.db.               u:object_r:debuggerd_prop:s0
 dumpstate.              u:object_r:dumpstate_prop:s0
 dumpstate.options       u:object_r:dumpstate_options_prop:s0
+init.svc_debug_pid.     u:object_r:init_svc_debug_prop:s0
 llk.                    u:object_r:llkd_prop:s0
 khungtask.              u:object_r:llkd_prop:s0
 ro.llk.                 u:object_r:llkd_prop:s0
commit	4eca81948385e18aa44af2135e01ef998cb9f3bf	[log] [tgz]
author	Daniel Norman <danielnorman@google.com>	Thu Jul 25 11:29:17 2019 -0700
committer	Daniel Norman <danielnorman@google.com>	Fri Aug 02 10:27:15 2019 -0700
tree	7b6e6980bc5601c93d14061ae260ad982a5f1086
parent	2765c29befca9a35a123581b8f7b998cfb327638 [diff]