allow priv_app self:process ptrace The changes to ptrace in https://android-review.googlesource.com/#/c/175786/ (removing it from app.te and only adding it to isolated_app and untrusted_app) broke WebView crash handling in cases where privileged apps (like gmscore) use WebView. The only way to fix this would be to allow priv_app to self-ptrace as well. :/ Bug: 27697529 Change-Id: Ib9a3810dddc9f4213b6260133cbae23f669ae8dc

commit: abead06f60370dfe4adcca7eac6420045fb402e0 [log] [tgz]
author: Nick Kralevich <nnk@google.com> Wed Mar 16 12:55:42 2016 -0700
committer: Nick Kralevich <nnk@google.com> Wed Mar 16 12:59:46 2016 -0700
tree: 5b0c94c395e05ea3cad3f215668b4befe73b0c3b
parent: 1c50994e1b9e10754134c195e741628932ee2d72 [diff]
diff --git a/priv_app.te b/priv_app.te
index e2645c7..67e91cd 100644
--- a/priv_app.te
+++ b/priv_app.te

@@ -8,6 +8,9 @@
 # Access bluetooth.
 bluetooth_domain(priv_app)
 
+# webview crash handling depends on self ptrace (b/27697529, b/20150694, b/19277529#comment7)
+allow priv_app self:process ptrace;
+
 # Some apps ship with shared libraries and binaries that they write out
 # to their sandbox directory and then execute.
 allow priv_app app_data_file:file rx_file_perms;
commit	abead06f60370dfe4adcca7eac6420045fb402e0	[log] [tgz]
author	Nick Kralevich <nnk@google.com>	Wed Mar 16 12:55:42 2016 -0700
committer	Nick Kralevich <nnk@google.com>	Wed Mar 16 12:59:46 2016 -0700
tree	5b0c94c395e05ea3cad3f215668b4befe73b0c3b
parent	1c50994e1b9e10754134c195e741628932ee2d72 [diff]