Remove selinux denial

Don't audit directory writes to sysfs since they cannot succees and therefore cannot be a security issue Bug: 35303861 Test: Make sure denial is no longer shown Change-Id: I1f31d35aa01e28e3eb7371b1a75fc4090ea40464

Remove selinux denial
e9cb7638 · Paul Lawrence · 6ebcfe47 · e9cb7638
Commit e9cb7638 authored 8 years ago by Paul Lawrence
--- a/private/init.te
+++ b/private/init.te
@@ -17,3 +17,8 @@ domain_trans(init, init_exec, watchdogd)
 userdebug_or_eng(`
  domain_auto_trans(init, logcat_exec, logpersist)
 ')
+# Creating files on sysfs is impossible so this isn't a threat
+# Sometimes we have to write to non-existent files to avoid conditional
+# init behavior. See b/35303861 for an example.
+dontaudit init sysfs:dir write;