Skip to content
Snippets Groups Projects
Commit ec5bcd70 authored by Andreas Gampe's avatar Andreas Gampe
Browse files

Sepolicy: Silence /data/local/tmp access of perfprofd 

Until simpleperf does not optimistically try /data/local/tmp for
tmp storage, silence the denials.

Bug: 70232908
Test: m
Test: manual
Change-Id: Icbc230dbfbfa6493b4e494185c536a10e3b0ae7b
parent 8b562206
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 6 additions and 0 deletions
public/perfprofd.te
+ 6
0
View file @ ec5bcd70
...@@ -56,4 +56,10 @@ userdebug_or_eng(` ...@@ -56,4 +56,10 @@ userdebug_or_eng(`
# needed for simpleperf on some kernels # needed for simpleperf on some kernels
allow perfprofd self:global_capability_class_set ipc_lock; allow perfprofd self:global_capability_class_set ipc_lock;
# simpleperf attempts to put a temp file into /data/local/tmp. Do not allow,
# use the fallback cwd code, do not spam the log. But ensure this is correctly
# removed at some point. b/70232908.
dontaudit perfprofd shell_data_file:dir *;
dontaudit perfprofd shell_data_file:file *;
') ')
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment