Merge changes from topic 'debuggerd_ambient'

* changes: crash_dump: dontaudit CAP_SYS_PTRACE denial. crash_dump: don't allow CAP_SYS_PTRACE or CAP_KILL.

Merge changes from topic 'debuggerd_ambient'
d765766b · Josh Gao · Gerrit Code Review · 46e5a060 · 943d7ed5 · d765766b
Commit d765766b authored 8 years ago by Josh Gao Committed by Gerrit Code Review 8 years ago
--- a/public/crash_dump.te
+++ b/public/crash_dump.te
 type crash_dump, domain;
 type crash_dump_exec, exec_type, file_type;
-allow crash_dump self:capability { sys_ptrace kill };
 allow crash_dump {
  domain
  -init
@@ -9,6 +8,11 @@ allow crash_dump {
  -keystore
  -logd
 }:process { ptrace signal sigchld sigstop sigkill };
+# crash_dump might inherit CAP_SYS_PTRACE from a privileged process,
+# which will result in an audit log even when it's allowed to trace.
+dontaudit crash_dump self:capability { sys_ptrace };
 userdebug_or_eng(`
  allow crash_dump logd:process { ptrace signal sigchld sigstop sigkill };
 ')