suppress su behavior when running lsof Relevant error logs show up when dumpstate do lsof using su identity: RunCommand("LIST OF OPEN FILES", {"lsof"}, CommandOptions::AS_ROOT); This is an intended behavior and the log is useless for debugging so I suppress them. Bug: 225767289 Test: do bugreport with no su related avc errors Change-Id: I0f322cfc8a461da9ffb17f7493c6bbdc58cce7b6

commit: 643d2439c219a05f19d703e301d4c8ac88a87664 [log] [tgz]
author: Adam Shih <adamshih@google.com> Wed Mar 23 10:52:00 2022 +0800
committer: Adam Shih <adamshih@google.com> Wed Mar 23 10:52:00 2022 +0800
tree: 577281b853779e78e4693c8ed6684396ecaad589
parent: b299b79473feee34f61b0b892f42ceafd23bb43a [diff]
diff --git a/public/su.te b/public/su.te
index be02672..8328140 100644
--- a/public/su.te
+++ b/public/su.te

@@ -22,6 +22,7 @@
   dontaudit su kernel:security *;
   dontaudit su { kernel file_type }:system *;
   dontaudit su self:memprotect *;
+  dontaudit su domain:anon_inode *;
   dontaudit su domain:{ process process2 } *;
   dontaudit su domain:fd *;
   dontaudit su domain:dir *;
commit	643d2439c219a05f19d703e301d4c8ac88a87664	[log] [tgz]
author	Adam Shih <adamshih@google.com>	Wed Mar 23 10:52:00 2022 +0800
committer	Adam Shih <adamshih@google.com>	Wed Mar 23 10:52:00 2022 +0800
tree	577281b853779e78e4693c8ed6684396ecaad589
parent	b299b79473feee34f61b0b892f42ceafd23bb43a [diff]