diff options
author | Mark Salyzyn <salyzyn@google.com> | 2018-06-14 09:11:14 -0700 |
---|---|---|
committer | Mark Salyzyn <salyzyn@google.com> | 2018-06-15 08:06:25 -0700 |
commit | 5a74f924702b1ecf84870f3554310342bc64b2b5 (patch) | |
tree | f1f27846641042648d24f2fe2409f961614e5845 /sepolicy | |
parent | f593d667d67d1bcaf15427010b7ce4b3de091dd0 (diff) | |
download | hikey-5a74f924702b1ecf84870f3554310342bc64b2b5.tar.gz |
hikey: netd: dontaudit module operations
Since kernel does not allow modules, no need to whine about attempts.
Test: avc is gone for netd
Bug: 109821005
Change-Id: If1353a9490dd76d360d66093c448aa738339e11f
Diffstat (limited to 'sepolicy')
-rw-r--r-- | sepolicy/netd.te | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/sepolicy/netd.te b/sepolicy/netd.te index 86fe1088..54290ce6 100644 --- a/sepolicy/netd.te +++ b/sepolicy/netd.te @@ -1,2 +1,3 @@ # Triggers a sys_module denial, but kernel has CONFIG_MODULES=n. dontaudit netd self:capability sys_module; +dontaudit netd kernel:system module_request; |