| commit | 5a74f924702b1ecf84870f3554310342bc64b2b5 | [log] [tgz] |
|---|---|---|
| author | Mark Salyzyn <salyzyn@google.com> | Thu Jun 14 09:11:14 2018 -0700 |
| committer | Mark Salyzyn <salyzyn@google.com> | Fri Jun 15 08:06:25 2018 -0700 |
| tree | f1f27846641042648d24f2fe2409f961614e5845 | |
| parent | f593d667d67d1bcaf15427010b7ce4b3de091dd0 [diff] |
hikey: netd: dontaudit module operations Since kernel does not allow modules, no need to whine about attempts. Test: avc is gone for netd Bug: 109821005 Change-Id: If1353a9490dd76d360d66093c448aa738339e11f
diff --git a/sepolicy/netd.te b/sepolicy/netd.te index 86fe108..54290ce 100644 --- a/sepolicy/netd.te +++ b/sepolicy/netd.te
@@ -1,2 +1,3 @@ # Triggers a sys_module denial, but kernel has CONFIG_MODULES=n. dontaudit netd self:capability sys_module; +dontaudit netd kernel:system module_request;