Android source tree to generate policy statements by taking in dmesg and logcat denial logs.
adb shell su -c dmesg | grep denied | audit2allow
for example:
1、grep "avc: *denied" log.txt > denied.txt
audit2allow -i denied.txt
2、android$ cat ../../log/zdebug5.txt | grep "avc: *denied" | audit2allow
#============= adbd ==============
allow adbd kernel:system module_request;
#============= apexd ==============
allow apexd device:file { open write };