suppress netd sys_module denial
Netd triggers sys_module denials, but the kernel has
CONFIG_MODULES=n. This denial is harmless, and is likely a result
of a permission check before verifying whether the kernel even has
module support.
Suppress these denials.
Change-Id: I8b2a7e3a1cdd7ae2f064ba952c110e0e2ead7fcc
diff --git a/sepolicy/netd.te b/sepolicy/netd.te
new file mode 100644
index 0000000..86fe108
--- /dev/null
+++ b/sepolicy/netd.te
@@ -0,0 +1,2 @@
+# Triggers a sys_module denial, but kernel has CONFIG_MODULES=n.
+dontaudit netd self:capability sys_module;