Google Git
Sign in
android / platform / external / sepolicy / c29b2fc
commitc29b2fc4236873d6addb67d12c109390d03e2590[log] [tgz]
authorNick Kralevich <nnk@google.com>Wed Jan 13 16:37:20 2016 -0800
committerNick Kralevich <nnk@google.com>Wed Jan 13 16:37:20 2016 -0800
treec3e3c15fe531e3053f3758c84c2ba77dc3318165
parent2fb38fc87e4e43371de0f9e9a2cdb3e82ec0669c [diff]
drop dhcp auditallow

toolbox_exec is executed by dhcpcd-run-hooks.

Addresses the following auditallow log spam:

  avc: granted { read open } for comm="dhcpcd-run-hook" path="/system/bin/toybox" dev="dm-0" ino=650 scontext=u:r:dhcp:s0 tcontext=u:object_r:toolbox_exec:s0 tclass=file
  avc: granted { read } for comm="setprop" name="toybox" dev="dm-0" ino=650 scontext=u:r:dhcp:s0 tcontext=u:object_r:toolbox_exec:s0 tclass=file
  avc: granted { execute } for comm="dhcpcd-run-hook" name="toybox" dev="dm-0" ino=650 scontext=u:r:dhcp:s0 tcontext=u:object_r:toolbox_exec:s0 tclass=file
  avc: granted { execute_no_trans } for comm="dhcpcd-run-hook" path="/system/bin/toybox" dev="dm-0" ino=650 scontext=u:r:dhcp:s0 tcontext=u:object_r:toolbox_exec:s0 tclass=file
  avc: granted { read execute } for comm="setprop" path="/system/bin/toybox" dev="dm-0" ino=639 scontext=u:r:dhcp:s0 tcontext=u:object_r:toolbox_exec:s0 tclass=file

Change-Id: Ib83c291961a5573397830032a67a2f6861ae2e71
1 file changed
tree: c3e3c15fe531e3053f3758c84c2ba77dc3318165
  1. tools/
  2. access_vectors
  3. adbd.te
  4. Android.mk
  5. app.te
  6. atrace.te
  7. attributes
  8. binderservicedomain.te
  9. blkid.te
  10. blkid_untrusted.te
  11. bluetooth.te
  12. bluetoothdomain.te
  13. bootanim.te
  14. clatd.te
  15. CleanSpec.mk
  16. debuggerd.te
  17. device.te
  18. dex2oat.te
  19. dhcp.te
  20. dnsmasq.te
  21. domain.te
  22. domain_deprecated.te
  23. drmserver.te
  24. dumpstate.te
  25. file.te
  26. file_contexts
  27. file_contexts_asan
  28. fingerprintd.te
  29. fs_use
  30. fsck.te
  31. fsck_untrusted.te
  32. gatekeeperd.te
  33. genfs_contexts
  34. global_macros
  35. gpsd.te
  36. hci_attach.te
  37. healthd.te
  38. hostapd.te
  39. idmap.te
  40. init.te
  41. initial_sid_contexts
  42. initial_sids
  43. inputflinger.te
  44. install_recovery.te
  45. installd.te
  46. ioctl_macros
  47. isolated_app.te
  48. kernel.te
  49. keys.conf
  50. keystore.te
  51. lmkd.te
  52. logd.te
  53. mac_permissions.xml
  54. mdnsd.te
  55. mediaserver.te
  56. mls
  57. mls_macros
  58. MODULE_LICENSE_PUBLIC_DOMAIN
  59. mtp.te
  60. net.te
  61. netd.te
  62. neverallow_macros
  63. nfc.te
  64. NOTICE
  65. perfprofd.te
  66. platform_app.te
  67. policy_capabilities
  68. port_contexts
  69. ppp.te
  70. priv_app.te
  71. property.te
  72. property_contexts
  73. racoon.te
  74. radio.te
  75. README
  76. recovery.te
  77. rild.te
  78. roles
  79. runas.te
  80. sdcardd.te
  81. seapp_contexts
  82. security_classes
  83. service.te
  84. service_contexts
  85. servicemanager.te
  86. sgdisk.te
  87. shared_relro.te
  88. shell.te
  89. slideshow.te
  90. su.te
  91. surfaceflinger.te
  92. system_app.te
  93. system_server.te
  94. te_macros
  95. tee.te
  96. toolbox.te
  97. tzdatacheck.te
  98. ueventd.te
  99. uncrypt.te
  100. untrusted_app.te
  101. update_engine.te
  102. update_verifier.te
  103. users
  104. vdc.te
  105. vold.te
  106. watchdogd.te
  107. wpa.te
  108. zygote.te