From bb3cef4488b86ea815bc9b35c528f62e47377f5d Mon Sep 17 00:00:00 2001
From: dcashman <dcashman@google.com>
Date: Fri, 6 Mar 2015 10:14:13 -0800
Subject: [PATCH] Record observed bluetooth service access.

Bug: 18106000
Change-Id: I80b574f73d53439dd710ccdb8f05cc2f9e9a10b4
---
 bluetooth.te     | 16 ++++++++++++++++
 untrusted_app.te |  1 +
 2 files changed, 17 insertions(+)

diff --git a/bluetooth.te b/bluetooth.te
index 4d9b4abf6..a91f6b2b5 100644
--- a/bluetooth.te
+++ b/bluetooth.te
@@ -56,6 +56,22 @@ allow bluetooth surfaceflinger_service:service_manager find;
 allow bluetooth system_server_service:service_manager find;
 allow bluetooth tmp_system_server_service:service_manager find;
 
+service_manager_local_audit_domain(bluetooth)
+auditallow bluetooth {
+    tmp_system_server_service
+    -activity_service
+    -appops_service
+    -audio_service
+    -bluetooth_manager_service
+    -connectivity_service
+    -display_service
+    -dropbox_service
+    -media_session_service
+    -network_management_service
+    -power_service
+    -registry_service
+}:service_manager find;
+
 # already open bugreport file descriptors may be shared with
 # the bluetooth process, from a file in
 # /data/data/com.android.shell/files/bugreports/bugreport-*.
diff --git a/untrusted_app.te b/untrusted_app.te
index abcba7884..e880571eb 100644
--- a/untrusted_app.te
+++ b/untrusted_app.te
@@ -125,6 +125,7 @@ auditallow untrusted_app {
     -registry_service
     -search_service
     -sensorservice_service
+    -statusbar_service
     -textservices_service
     -trust_service
     -uimode_service
-- 
GitLab