aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJoel Galenson2018-04-20 17:27:21 -0500
committerJoel Galenson2018-04-20 17:33:26 -0500
commit9ec59f6cb92e3a1ab5a0de1f770c3c745facb5df (patch)
tree47c698631c33a0ff7796fe856f159c41159c8d67
parentebddc5993f1b52e72b3606a2eb50cca249d890bd (diff)
downloadsystem-sepolicy-master.tar.gz
system-sepolicy-master.tar.xz
system-sepolicy-master.zip
Remove some priv_app logspam.HEADmaster
avc: denied { search } for name="/" scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:fs_bpf:s0 tclass=dir permissive=0 Bug: 72749888 Test: Boot without seeing the denial. Change-Id: Iaf3559928473c68066e6a42ba71655a683861901
-rw-r--r--private/priv_app.te1
1 files changed, 1 insertions, 0 deletions
diff --git a/private/priv_app.te b/private/priv_app.te
index 3c2e6417..d81f8d58 100644
--- a/private/priv_app.te
+++ b/private/priv_app.te
@@ -143,6 +143,7 @@ unix_socket_connect(priv_app, traced_producer, traced)
143# suppress denials for non-API accesses. 143# suppress denials for non-API accesses.
144dontaudit priv_app exec_type:file getattr; 144dontaudit priv_app exec_type:file getattr;
145dontaudit priv_app device:dir read; 145dontaudit priv_app device:dir read;
146dontaudit priv_app fs_bpf:dir search;
146dontaudit priv_app net_dns_prop:file read; 147dontaudit priv_app net_dns_prop:file read;
147dontaudit priv_app proc:file read; 148dontaudit priv_app proc:file read;
148dontaudit priv_app proc_interrupts:file read; 149dontaudit priv_app proc_interrupts:file read;