priv_app: suppress denials to proc_net avc: denied { read } for comm="UserFacing3" name="arp" dev="proc" ino=4026532043 scontext=u:r:priv_app:s0:c512,c768 tcontext=u:object_r:proc_net:s0 tclass=file permissive=0 app=com.google.android.googlequicksearchbox Bug: 132376360 Test: m selinux_policy Change-Id: I6ebe8b6806268f31885026a81ebea0ed15b532d2

commit: e319c0367377c3d4ce0c9ff5c178b3a80c0a8f17 [log] [tgz]
author: Tri Vo <trong@google.com> Thu May 09 16:14:04 2019 -0700
committer: Tri Vo <trong@google.com> Thu May 09 16:14:45 2019 -0700
tree: 583af906147306301750932534bd0417249d2b91
parent: 83dfb0884284349ec0793f941af0c8bdb0e0b095 [diff] [blame]
diff --git a/private/priv_app.te b/private/priv_app.te
index ab3847b..35ad8c2 100644
--- a/private/priv_app.te
+++ b/private/priv_app.te

@@ -173,6 +173,7 @@
 dontaudit priv_app proc:file read;
 dontaudit priv_app proc_interrupts:file read;
 dontaudit priv_app proc_modules:file read;
+dontaudit priv_app proc_net:file read;
 dontaudit priv_app proc_stat:file read;
 dontaudit priv_app proc_version:file read;
 dontaudit priv_app sysfs:dir read;
commit	e319c0367377c3d4ce0c9ff5c178b3a80c0a8f17	[log] [tgz]
author	Tri Vo <trong@google.com>	Thu May 09 16:14:04 2019 -0700
committer	Tri Vo <trong@google.com>	Thu May 09 16:14:45 2019 -0700
tree	583af906147306301750932534bd0417249d2b91
parent	83dfb0884284349ec0793f941af0c8bdb0e0b095 [diff] [blame]