Merge "dexoptanalyzer: suppress access(2) denial" into oc-dr1-dev
am: 7b065f82a7
Change-Id: I82e82541eac5abd668fdc4b94324bc17d753a768
This commit is contained in:
Jeff Vander Stoep
android-build-merger
commit
eebc36eb3a
1 changed files with 4 additions and 0 deletions
|
|
@ -21,6 +21,10 @@ allow dexoptanalyzer installd:fd use;
|
|||
# package manager.
|
||||
allow dexoptanalyzer app_data_file:dir { getattr search };
|
||||
allow dexoptanalyzer app_data_file:file r_file_perms;
|
||||
# dexoptanalyzer calls access(2) with W_OK flag on app data. We can use the
|
||||
# "dontaudit...audit_access" policy line to suppress the audit access without
|
||||
# suppressing denial on actual access.
|
||||
dontaudit dexoptanalyzer app_data_file:dir audit_access;
|
||||
|
||||
# Allow testing /data/user/0 which symlinks to /data/data
|
||||
allow dexoptanalyzer system_data_file:lnk_file { getattr };
|
||||
|
|
|
|||
Loading…
Reference in a new issue