Hi,
In Android-M, below change in bionic was introduced https://android-review.googlesource.com/122131 Which caused lot of SELinux denials to be logged regarding module_request (similar to below one) for 32bit systems, There is quite a lot of module_request denials when any 32bit executable is executed. type=1400 audit(946685139.719:12): avc: denied { module_request } for pid=1970 comm="tzdatacheck" kmod="personality-8" scontext=u:r:tzdatacheck:s0 tcontext=u:r:kernel:s0 tclass=system permissive=1 The issue is discussed here http://marc.info/?t=144190478400004&r=1&w=2 For kernel version < 4.0, is there any resolution available for resolving these denials with out having to backport the removal of execution domain patches from kernel 4.0? Is adding a dontaudit for kernel module_request good option? In our system disabling modules (CONFIG_MODULES=n) is currently not an option. Regards, Vishal -- -- unsubscribe: [email protected] website: http://groups.google.com/group/android-porting --- You received this message because you are subscribed to the Google Groups "android-porting" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
