commit 2725edc6586f5ddedd5aaa913ef69c560f36c001
author Tri Vo <trong@google.com> Thu Nov 29 12:38:50 2018 -0800
committer Tri Vo <trong@google.com> Thu Nov 29 19:01:48 2018 -0800
tree e88a1501ea96071d8df25c173fc351bd1f0efb47
parent 9cded32f6ae2040051e7717e68be956e8c0b1ff4

Wider neverallow rules for coredomain /dev access.

"iio_device", "radio_device" must not be accessed by coredomain on all
devices. And "tee_device" must not be accessed by coredomain on Treble
devices.

Bug: 110962171
Test: m selinux_policy
Test: mmma system/sepolicy
Change-Id: I27029b6579b41109c01c35c6ab5a992413f2de5c