| commit | 5dab9134411e7e757d6559f1dbb47726ed19cf27 | [log] [tgz] |
|---|---|---|
| author | Tri Vo <trong@google.com> | Fri Nov 10 16:55:32 2017 -0800 |
| committer | Tri Vo <trong@google.com> | Thu Jan 18 21:56:00 2018 +0000 |
| tree | 61be6fdde6189bd2eced7722d39918088b350f3a | |
| parent | 3ac8456fed0be0139e356bf0ea14feb07f9098db [diff] |
neverallow shell access to 'device' type Bug: 65643247 Test: builds, the change doesn't affect runtime behavior. Change-Id: I621a8006db7074f124cb16a12662c768bb31e465
diff --git a/private/domain.te b/private/domain.te index c022564..6fef279 100644 --- a/private/domain.te +++ b/private/domain.te
@@ -49,7 +49,6 @@ coredomain -fsck -init - -shell -ueventd -vendor_init } device:{ blk_file file } no_rw_file_perms;