Merge "Ignore crash_dump access to mapped files" into main

commit: ac52fde18da82a638762baf6a12093d278b53aaa [log] [tgz]
author: Thiébaud Weksteen <tweek@google.com> Mon Sep 16 23:21:23 2024 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Mon Sep 16 23:21:23 2024 +0000
tree: cd0cd452932d7d308d4a03c44e55e71948ac5ec6
parent: 3e5e1613a2f2ab2a413dc21274f707599fff564e [diff]
parent: b9cd9999a3f3acad6aded1c47b73715a906972f7 [diff]
diff --git a/private/crash_dump.te b/private/crash_dump.te
index 45d5722..b2d3bd5 100644
--- a/private/crash_dump.te
+++ b/private/crash_dump.te

@@ -106,8 +106,15 @@
   core_data_file_type
   vendor_file_type
 }:dir search;
-dontaudit crash_dump system_data_file:{ lnk_file file } read;
-dontaudit crash_dump property_type:file read;
+# Crash dump might try to read files that are mapped into the crashed process's
+# memory space to extract useful binary information such as the ELF header. See
+# system/core/debuggerd/libdebuggerd/tombstone_proto.cpp:dump_mappings.
+# Ignore these accesses.
+dontaudit crash_dump {
+  app_data_file_type
+  property_type
+  system_data_file
+}:{ lnk_file file } { read open };
 
 get_prop(crash_dump, misctrl_prop)
commit	ac52fde18da82a638762baf6a12093d278b53aaa	[log] [tgz]
author	Thiébaud Weksteen <tweek@google.com>	Mon Sep 16 23:21:23 2024 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Mon Sep 16 23:21:23 2024 +0000
tree	cd0cd452932d7d308d4a03c44e55e71948ac5ec6
parent	3e5e1613a2f2ab2a413dc21274f707599fff564e [diff]
parent	b9cd9999a3f3acad6aded1c47b73715a906972f7 [diff]