logd: permit app access to clear logs

I/auditd(19949): type=1400 audit(0.0:71): avc: denied { write } for comm="logcat" name="logd" dev="tmpfs" ino=5924 scontext=u:r:untrusted_app:s0 tcontext=u:object_r:logd_socket:s0 tclass=sock_file Bug: 17323719 Change-Id: Id8399195196ffad884eef98030d544c68ed0596f
2014-09-01 11:07:26 -07:00 · 2014-09-01 11:07:26 -07:00 · 60f0be84c0
commit 60f0be84c0
parent 09eae90890
1 changed files with 1 additions and 0 deletions
--- a/app.te
+++ b/app.te
@ -168,6 +168,7 @@ allow appdomain domain:process getattr;

 # logd access
 read_logd(appdomain)
+control_logd(appdomain)
 # application inherit logd write socket (urge is to deprecate this long term)
 allow appdomain zygote:unix_dgram_socket write;