perfetto: allow traced_probes to execute atrace
This CL adds the SELinux permissions required to execute
atrace and get userspace tracing events from system services.
This is to enable tracing of events coming from surfaceflinger,
audio HAL, etc.
atrace, when executed, sets a bunch of debug.atrace. properties
and sends an IPC via binder/hwbinder to tell the services to
reload that property.
Change-Id: I2b0a66dcb519cb296e1d0e6e3f15a425dc809089
Bug: 73340039
diff --git a/private/traced_probes.te b/private/traced_probes.te
index 22746e7..1d83411 100644
--- a/private/traced_probes.te
+++ b/private/traced_probes.te
@@ -35,6 +35,27 @@
# Allow traced_probes to list the system partition.
allow traced_probes system_file:dir { open read };
+# ----- Begin of policies for exec(atrace) -----
+# Allow traced_probes to run atrace. atrace pokes at system services to enable
+# their userspace TRACE macros.
+
+allow traced_probes atrace_exec:file rx_file_perms;
+
+# This is needed for: path="/system/bin/linker64"
+# scontext=u:r:atrace:s0 tcontext=u:r:traced_probes:s0 tclass=fd
+allow atrace traced_probes:fd use;
+
+# atrace sets debug.atrace.* properties to tell services to enable their
+# userspace tracing.
+set_prop(traced_probes, debug_prop)
+
+# And then sends them an IPC to tell them to re-read that property.
+binder_use(traced_probes)
+allow traced_probes healthd:binder call;
+allow traced_probes surfaceflinger:binder call;
+get_prop(traced_probes, hwservicemanager_prop)
+# ----- End of policies for exec(atrace) -----
+
###
### Neverallow rules
###