su: don't auditallow service_manager for su
Addresses the following auditallow messages:
avc: granted { find } for service=accessibility scontext=u:r:su:s0 tcontext=u:object_r:accessibility_service:s0 tclass=service_manager
avc: granted { find } for service=activity scontext=u:r:su:s0 tcontext=u:object_r:activity_service:s0 tclass=service_manager
avc: granted { find } for service=package scontext=u:r:su:s0 tcontext=u:object_r:package_service:s0 tclass=service_manager
avc: granted { find } for service=user scontext=u:r:su:s0 tcontext=u:object_r:user_service:s0 tclass=service_manager
avc: granted { find } for service=window scontext=u:r:su:s0 tcontext=u:object_r:window_service:s0 tclass=service_manager
Change-Id: Ie58ad3347e9ef1aacd39670cfec7d095875e237b
diff --git a/su.te b/su.te
index dab5210..58c75f6 100644
--- a/su.te
+++ b/su.te
@@ -49,4 +49,5 @@
dontaudit su keystore:keystore_key *;
dontaudit su domain:debuggerd *;
dontaudit su domain:drmservice *;
+ service_manager_local_audit_domain(su)
')