logd: permit app access to clear logs
I/auditd(19949): type=1400 audit(0.0:71): avc: denied { write } for comm="logcat" name="logd" dev="tmpfs" ino=5924 scontext=u:r:untrusted_app:s0 tcontext=u:object_r:logd_socket:s0 tclass=sock_file
(cherry picked from 60f0be84c0)
Bug: 17323719
Change-Id: Id8399195196ffad884eef98030d544c68ed0596f
This commit is contained in:
Mark Salyzyn
parent
de08be8aa0
commit
bcdff89030
1 changed files with 1 additions and 0 deletions
1
app.te
1
app.te
|
|
@ -177,6 +177,7 @@ allow appdomain domain:process getattr;
|
|||
|
||||
# logd access
|
||||
read_logd(appdomain)
|
||||
control_logd(appdomain)
|
||||
# application inherit logd write socket (urge is to deprecate this long term)
|
||||
allow appdomain zygote:unix_dgram_socket write;
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue