Add SELinux policies for traced readonly properties Added a traced config property context for all traced sysprops that are readonly. Added the ro.traced.hypervisor system property to this context. Test: build Android Bug: 391958400 Change-Id: I145d882eb54268d88b0c4a107c26cc746365e22c

commit: 6729dcfe462e82f2916e8921476dd5ef90730547 [log] [tgz]
author: Jahdiel Alvarez <jahdiel@google.com> Fri Jan 31 14:38:05 2025 -0800
committer: Jahdiel Alvarez <jahdiel@google.com> Thu Feb 06 15:01:35 2025 -0800
tree: 75d0dfacb11358f513cfae32ed10ede9f6f4bf5b
parent: 4e263e758cbb20cb7404de8cae7b21a5906e9130 [diff] [blame]
diff --git a/private/property_contexts b/private/property_contexts
index 0f86c75..0ed1781 100644
--- a/private/property_contexts
+++ b/private/property_contexts

@@ -89,6 +89,7 @@
 persist.traced.enable   u:object_r:traced_enabled_prop:s0
 traced.lazy.            u:object_r:traced_lazy_prop:s0
 traced_relay.relay_port u:object_r:traced_relay_relay_port_prop:s0
+ro.traced.              u:object_r:traced_config_prop:s0
 persist.heapprofd.enable u:object_r:heapprofd_enabled_prop:s0
 persist.traced_perf.enable u:object_r:traced_perf_enabled_prop:s0
 uprobestats.start_with_config u:object_r:uprobestats_start_with_config_prop:s0
commit	6729dcfe462e82f2916e8921476dd5ef90730547	[log] [tgz]
author	Jahdiel Alvarez <jahdiel@google.com>	Fri Jan 31 14:38:05 2025 -0800
committer	Jahdiel Alvarez <jahdiel@google.com>	Thu Feb 06 15:01:35 2025 -0800
tree	75d0dfacb11358f513cfae32ed10ede9f6f4bf5b
parent	4e263e758cbb20cb7404de8cae7b21a5906e9130 [diff] [blame]