Temporarily add auditing of execmod by apps.
am: 708aa90dd2
Change-Id: I4a0fdea7adead3baceb089644ed37a0c479d2e62
This commit is contained in:
Alan Stokes
android-build-merger
commit
a55f637a3d
1 changed files with 4 additions and 0 deletions
|
|
@ -151,6 +151,10 @@ userdebug_or_eng(`
|
|||
}:{ dir file lnk_file } { getattr open read };
|
||||
')
|
||||
|
||||
# Temporary auditing to get data on what apps use execmod.
|
||||
# TODO(b/111544476) Remove this and deny the permission if feasible.
|
||||
auditallow untrusted_app_all { apk_data_file app_data_file asec_public_file }:file execmod;
|
||||
|
||||
# Attempts to write to system_data_file is generally a sign
|
||||
# that apps are attempting to access encrypted storage before
|
||||
# the ACTION_USER_UNLOCKED intent is delivered. Suppress this
|
||||
|
|
|
|||
Loading…
Reference in a new issue