tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge "Don't audit audit_access denials to /dev/binder"

Browse source
This commit is contained in:
Nick Kralevich 2019-03-26 19:51:01 +00:00 committed by Gerrit Code Review
commit f3e8dce5d4
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
public/domain.te
View file

@ -643,6 +643,11 @@ full_treble_only(`
-binder_in_vendor_violators # TODO(b/35870313): Remove once all violations are gone -binder_in_vendor_violators # TODO(b/35870313): Remove once all violations are gone
} binder_device:chr_file rw_file_perms; } binder_device:chr_file rw_file_perms;
') ')
# libcutils can probe for /dev/binder permissions with access(). Ignore
# generated denials. See b/129073672 for details.
dontaudit domain binder_device:chr_file audit_access;
full_treble_only(` full_treble_only(`
neverallow { neverallow {
domain domain