sepolicy: fix avc denied for logger app

Bug: 205202541
Bug: 205779798
Bug: 207062780
Bug: 206045604
Bug: 207571546
Bug: 207431041
Bug: 208721679

Test: flash forrest build, no avc denied log on logger app

Change-Id: I6be694f727d619ba89eaa4d006c74ba4dc582095

tracking_denials/logger_app.te

@@ -1,43 +0,0 @@
-# b/205202541
-dontaudit logger_app vendor_gps_prop:property_service { set };
-dontaudit logger_app vendor_ssrdump_prop:file { getattr };
-dontaudit logger_app vendor_ssrdump_prop:file { map };
-dontaudit logger_app vendor_ssrdump_prop:file { open };
-dontaudit logger_app vendor_ssrdump_prop:file { read };
-# b/205779798
-dontaudit logger_app radio_vendor_data_file:dir { getattr };
-dontaudit logger_app radio_vendor_data_file:dir { open };
-dontaudit logger_app radio_vendor_data_file:dir { read };
-dontaudit logger_app radio_vendor_data_file:dir { remove_name };
-dontaudit logger_app radio_vendor_data_file:dir { search };
-dontaudit logger_app radio_vendor_data_file:dir { setattr };
-dontaudit logger_app radio_vendor_data_file:dir { write };
-dontaudit logger_app radio_vendor_data_file:file { unlink };
-# b/206045604
-dontaudit logger_app radio_vendor_data_file:dir { add_name };
-dontaudit logger_app radio_vendor_data_file:dir { create };
-dontaudit logger_app radio_vendor_data_file:dir { rmdir };
-dontaudit logger_app radio_vendor_data_file:file { create };
-dontaudit logger_app radio_vendor_data_file:file { getattr };
-dontaudit logger_app radio_vendor_data_file:file { setattr };
-dontaudit logger_app radio_vendor_data_file:file { write open };
-dontaudit logger_app vendor_gps_file:dir { search };
-# b/207062780
-dontaudit logger_app vendor_gps_file:dir { getattr };
-dontaudit logger_app vendor_gps_file:dir { open };
-dontaudit logger_app vendor_gps_file:dir { read };
-# b/207431041
-dontaudit logger_app sysfs_vendor_sched:dir { search };
-# b/207571546
-dontaudit logger_app vendor_gps_file:dir { remove_name };
-dontaudit logger_app vendor_gps_file:dir { write };
-dontaudit logger_app vendor_gps_file:file { unlink };
-# b/208721679
-dontaudit logger_app vendor_default_prop:file { getattr };
-dontaudit logger_app vendor_default_prop:file { map };
-dontaudit logger_app vendor_default_prop:file { open };
-dontaudit logger_app vendor_modem_prop:file { getattr };
-dontaudit logger_app vendor_modem_prop:file { map };
-dontaudit logger_app vendor_modem_prop:file { open };
-dontaudit logger_app vendor_modem_prop:file { read };
-dontaudit logger_app vendor_modem_prop:property_service { set };

whitechapel_pro/logger_app.te

@@ -0,0 +1,29 @@
+userdebug_or_eng(`
+  allow logger_app radio_vendor_data_file:file create_file_perms;
+  allow logger_app radio_vendor_data_file:dir create_dir_perms;
+  allow logger_app vendor_slog_file:file {r_file_perms unlink};
+  allow logger_app vendor_gps_file:file create_file_perms;
+  allow logger_app vendor_gps_file:dir create_dir_perms;
+  allow logger_app sysfs_sscoredump_level:file r_file_perms;
+  r_dir_file(logger_app, ramdump_vendor_data_file)
+  r_dir_file(logger_app, sscoredump_vendor_data_coredump_file)
+  r_dir_file(logger_app, sscoredump_vendor_data_crashinfo_file)
+
+  get_prop(logger_app, usb_control_prop)
+  set_prop(logger_app, vendor_logger_prop)
+  set_prop(logger_app, vendor_modem_prop)
+  set_prop(logger_app, vendor_gps_prop)
+  set_prop(logger_app, vendor_audio_prop)
+  set_prop(logger_app, vendor_tcpdump_log_prop)
+  set_prop(logger_app, vendor_ramdump_prop)
+  set_prop(logger_app, vendor_ssrdump_prop)
+  set_prop(logger_app, vendor_rild_prop)
+  set_prop(logger_app, logpersistd_logging_prop)
+  set_prop(logger_app, logd_prop)
+  set_prop(logger_app, vendor_usb_config_prop)
+  set_prop(logger_app, vendor_wifi_sniffer_prop)
+
+  dontaudit logger_app default_prop:file r_file_perms;
+  dontaudit logger_app sysfs_vendor_sched:dir search;
+  dontaudit logger_app sysfs_vendor_sched:file write;
+')