Merge "priv_app: Remove permissions for config_gz"

2020-01-27 22:44:13 +00:00 · 2020-01-27 22:44:13 +00:00 · 9baf6d6609
commit 9baf6d6609
parent 5f11b2e0ed 5ab5e8ad20
1 changed files with 0 additions and 7 deletions
--- a/private/priv_app.te
+++ b/private/priv_app.te
@ -89,13 +89,6 @@ r_dir_file(priv_app, sysfs_zram)

 r_dir_file(priv_app, rootfs)

-# Allow GMS core to open kernel config for OTA matching through libvintf
-allow priv_app config_gz:file { open read getattr };
-# b/142672293: No other priv-app should need this allow rule now that GMS core runs in its own domain.
-userdebug_or_eng(`
-  auditallow priv_app config_gz:file { open read getattr };
-')
-
 # access the mac address
 allowxperm priv_app self:udp_socket ioctl SIOCGIFHWADDR;