From 70f8f3297d4b54021a88ea47cbb3637e0edded42 Mon Sep 17 00:00:00 2001
From: Primiano Tucci <primiano@google.com>
Date: Wed, 7 Mar 2018 15:51:49 +0000
Subject: [PATCH] Revert "perfetto: allow traced_probes to execute atrace"

This reverts commit 54a86e2b5cebb91e8f63e62059f5816119eb555c.

Reason for revert: Broke user builds, see go/twqpd

system/sepolicy/private/traced_probes.te:46:ERROR 'unknown type atrace' at token ';' on line 34879:
# scontext=u:r:atrace:s0 tcontext=u:r:traced_probes:s0 tclass=fd
allow atrace traced_probes:fd use;
checkpolicy: error(s) encountered while parsing configuration
out/host/linux-x86/bin/checkpolicy: loading policy configuration from out/target/product/taimen/obj/ETC/sepolicy_neverallows_intermediates/policy.conf

Change-Id: I24440e1928700530b63b70b658c63046cdcdc5de
---
 private/traced_probes.te | 21 ---------------------
 1 file changed, 21 deletions(-)

diff --git a/private/traced_probes.te b/private/traced_probes.te
index 1d8341157..22746e76b 100644
--- a/private/traced_probes.te
+++ b/private/traced_probes.te
@@ -35,27 +35,6 @@ allow traced_probes kmsg_device:chr_file write;
 # Allow traced_probes to list the system partition.
 allow traced_probes system_file:dir { open read };
 
-# ----- Begin of policies for exec(atrace) -----
-# Allow traced_probes to run atrace. atrace pokes at system services to enable
-# their userspace TRACE macros.
-
-allow traced_probes atrace_exec:file rx_file_perms;
-
-# This is needed for: path="/system/bin/linker64"
-# scontext=u:r:atrace:s0 tcontext=u:r:traced_probes:s0 tclass=fd
-allow atrace traced_probes:fd use;
-
-# atrace sets debug.atrace.* properties to tell services to enable their
-# userspace tracing.
-set_prop(traced_probes, debug_prop)
-
-# And then sends them an IPC to tell them to re-read that property.
-binder_use(traced_probes)
-allow traced_probes healthd:binder call;
-allow traced_probes surfaceflinger:binder call;
-get_prop(traced_probes, hwservicemanager_prop)
-# ----- End of policies for exec(atrace) -----
-
 ###
 ### Neverallow rules
 ###
-- 
GitLab