Merge "Don't audit audit_access denials to /dev/binder"

This commit is contained in:
Nick Kralevich 2019-03-26 19:51:01 +00:00 committed by Gerrit Code Review
commit f3e8dce5d4

View file

@ -643,6 +643,11 @@ full_treble_only(`
-binder_in_vendor_violators # TODO(b/35870313): Remove once all violations are gone
} binder_device:chr_file rw_file_perms;
')
# libcutils can probe for /dev/binder permissions with access(). Ignore
# generated denials. See b/129073672 for details.
dontaudit domain binder_device:chr_file audit_access;
full_treble_only(`
neverallow {
domain