From 22f86690729915800938ba2ed8b7f8620526e7a2 Mon Sep 17 00:00:00 2001
From: felkachang <felkachang@google.com>
Date: Tue, 4 Dec 2018 04:14:15 +0800
Subject: [PATCH] Track isolated_app app_data_file SELinux denial.

The isolated service that do nothing except for both AIDL's basic
skeleton and service binding. It still got the SELinux denied.
This should fix presubmit test.

01-01 00:00:29.196  6121  6121 I auditd  : type=1400 audit(0.0:6):
avc: denied { getattr } for comm="convert.service"
path="/data/data/com.android.externalstorage" dev="sda35" ino=655437
scontext=u:r:isolated_app:s0:c0,c256,c512,c768
tcontext=u:object_r:app_data_file:s0:c512,c768 tclass=dir permissive=0

Test: ag/5681059 ag/5660144
Bug: 120394782
Change-Id: I7838def96da30b88d510dab860ed9779a0d4d5ed
---
 private/bug_map | 1 +
 1 file changed, 1 insertion(+)

diff --git a/private/bug_map b/private/bug_map
index becbd97f4..97477044f 100644
--- a/private/bug_map
+++ b/private/bug_map
@@ -12,6 +12,7 @@ init shell_data_file lnk_file 77873135
 init shell_data_file sock_file 77873135
 init system_data_file chr_file 77873135
 isolated_app privapp_data_file dir 119596573
+isolated_app app_data_file dir 120394782
 mediaextractor app_data_file file 77923736
 mediaextractor radio_data_file file 77923736
 mediaprovider cache_file blk_file 77925342
-- 
GitLab