Allow clients read ramdump piped through virtualizationservice When a kernel panic occurs in a debug-enabled VM, a crashdump is created in the VM and then it is flushed to the per-VM host-side file /data/misc/virtualizationservice/<cid>/ramdump. Virtualizationservice then opens the file and sends the FD to the owning client. This change allows the client to read the ramdump via the FD. A client accessing ramdump of other VM is prohibited since opening the ramdump file is not allowed for the client; only virtualizationservice can do it. Furthermore, ramdumping will be enabled only for the debuggable VMs, which means reading it doesn't actually reveal any (true) secret. Bug: 238278104 Test: do the ramdump Change-Id: I50e1fa83b99e8f24c849e278710b38f6ff9a25be

commit: cca5402261b6abff3b4a54cc9895e05d2bb63a5c [log] [tgz]
author: Jiyong Park <jiyong@google.com> Tue Jul 19 16:19:14 2022 +0900
committer: Jiyong Park <jiyong@google.com> Thu Aug 18 14:44:11 2022 +0000
tree: f873f40f733842bb71c92f3e12b71480e1d9c7b7
parent: 8fe0b28bf13f3bdf0119ec084cfcb020fd9b4cbd [diff]
diff --git a/public/te_macros b/public/te_macros
index 58d04b4..76fca0b 100644
--- a/public/te_macros
+++ b/public/te_macros

@@ -202,6 +202,8 @@
 allow $1 virtualizationservice:vsock_socket { getattr read write };
 # Allow client to inspect hypervisor capabilities
 get_prop($1, hypervisor_prop)
+# Allow client to read (but not open) the crashdump provided by virtualizationservice
+allow $1 virtualizationservice_data_file:file { getattr read };
 ')
 
 #####################################
commit	cca5402261b6abff3b4a54cc9895e05d2bb63a5c	[log] [tgz]
author	Jiyong Park <jiyong@google.com>	Tue Jul 19 16:19:14 2022 +0900
committer	Jiyong Park <jiyong@google.com>	Thu Aug 18 14:44:11 2022 +0000
tree	f873f40f733842bb71c92f3e12b71480e1d9c7b7
parent	8fe0b28bf13f3bdf0119ec084cfcb020fd9b4cbd [diff]