From 00a1789c793ff775b6f6d762a09e65fce6da937b Mon Sep 17 00:00:00 2001
From: Jin Qian <jinqian@google.com>
Date: Wed, 12 Apr 2017 17:38:11 -0700
Subject: [PATCH] Allow GMSCore to call dumpsys storaged

Test: trigger dumpsys storaged from GMScore
Bug: 37284569
Change-Id: Ie734ce5487a69f8cc29dd73d470229fe81cd1176
---
 private/priv_app.te | 4 ++++
 private/storaged.te | 5 +++++
 2 files changed, 9 insertions(+)

diff --git a/private/priv_app.te b/private/priv_app.te
index 38ce673a1..da7581ceb 100644
--- a/private/priv_app.te
+++ b/private/priv_app.te
@@ -91,6 +91,10 @@ allowxperm priv_app self:udp_socket ioctl SIOCGIFHWADDR;
 binder_call(priv_app, update_engine)
 allow priv_app update_engine_service:service_manager find;
 
+# Allow GMS core to communicate with dumpsys storaged.
+binder_call(priv_app, storaged)
+allow priv_app storaged_service:service_manager find;
+
 # Allow Phone to read/write cached ringtones (opened by system).
 allow priv_app ringtone_file:file { getattr read write };
 
diff --git a/private/storaged.te b/private/storaged.te
index 698999f51..96433b308 100644
--- a/private/storaged.te
+++ b/private/storaged.te
@@ -25,6 +25,11 @@ userdebug_or_eng(`
 allow storaged shell:fd use;
 allow storaged shell:fifo_file write;
 
+# Needed for GMScore to call dumpsys storaged
+allow storaged priv_app:fd use;
+allow storaged app_data_file:file write;
+allow storaged permission_service:service_manager find;
+
 # Binder permissions
 add_service(storaged, storaged_service)
 
-- 
GitLab