Track execmem denials in bug_map instead of dontaudit Bug: 65201432 Test: n/a Change-Id: Iae7bebc5b0f688a78624861816413d2f683e14c7 Merged-In: Iae7bebc5b0f688a78624861816413d2f683e14c7 (cherry picked from commit c27dd13eec7c02b6ed3d0223863095f6b4640aa8)

commit: 3a8d99f33754cbde6a4f8367454bd1e402121c7f [log] [tgz]
author: Tri Vo <trong@google.com> Tue Apr 09 18:04:15 2019 -0700
committer: Tri Vo <trong@google.com> Wed May 08 15:46:42 2019 -0700
tree: 312a3f33db773f075d507f18360a0a6ca2208027
parent: de0af201cff65345b9d241e7a015cfb239d2c98b [diff]
diff --git a/shared/sepolicy/bug_map b/shared/sepolicy/bug_map
index fa0ecea..4e66296 100644
--- a/shared/sepolicy/bug_map
+++ b/shared/sepolicy/bug_map

@@ -1,2 +1,3 @@
 installd device file 128336318
 storaged device file 128336318
+system_server system_server process 65201432

diff --git a/shared/sepolicy/system_server.te b/shared/sepolicy/system_server.te
index c4b3729..703eeb5 100644
--- a/shared/sepolicy/system_server.te
+++ b/shared/sepolicy/system_server.te

@@ -5,4 +5,3 @@
 # (system/sepolicy) contains a corresponding neverallow which would cause build-time errors if the
 # allow execmem rule were added here.
 permissive system_server;
-dontaudit system_server self:process execmem;
commit	3a8d99f33754cbde6a4f8367454bd1e402121c7f	[log] [tgz]
author	Tri Vo <trong@google.com>	Tue Apr 09 18:04:15 2019 -0700
committer	Tri Vo <trong@google.com>	Wed May 08 15:46:42 2019 -0700
tree	312a3f33db773f075d507f18360a0a6ca2208027
parent	de0af201cff65345b9d241e7a015cfb239d2c98b [diff]