priv_app: Remove rules for system_update_service We added an auditallow for these permissions on 11/26/2019, and have not seen any recent logs for this in go/sedenials. No other priv-app should rely on this now that gmscore is running in its own domain. Bug: 142672293 Test: TH Change-Id: Ic2f68b3af861e0c00e2dea731c4d6b3255ab5175

commit: a40840daa8b3c057b1ad00f6c4e25fe228ba1698 [log] [tgz]
author: Ashwini Oruganti <ashfall@google.com> Thu Jan 09 13:13:08 2020 -0800
committer: Ashwini Oruganti <ashfall@google.com> Fri Jan 10 11:17:00 2020 -0800
tree: d14b0cfaf0ee2529b0f8d94409636f8d62689850
parent: 6df27928ddf7e750e90fcac9d9b6ccce0d99439f [diff]
diff --git a/private/priv_app.te b/private/priv_app.te
index 7e5f961..02b7b82 100644
--- a/private/priv_app.te
+++ b/private/priv_app.te

@@ -122,14 +122,6 @@
 # access the mac address
 allowxperm priv_app self:udp_socket ioctl SIOCGIFHWADDR;
 
-# Allow GMS core to access system_update_service (e.g. to publish pending
-# system update info).
-allow priv_app system_update_service:service_manager find;
-# b/142672293: No other priv-app should need this allow rule now that GMS core runs in its own domain.
-userdebug_or_eng(`
-  auditallow priv_app system_update_service:service_manager find;
-')
-
 # Allow com.android.vending to communicate with statsd.
 binder_call(priv_app, statsd)
commit	a40840daa8b3c057b1ad00f6c4e25fe228ba1698	[log] [tgz]
author	Ashwini Oruganti <ashfall@google.com>	Thu Jan 09 13:13:08 2020 -0800
committer	Ashwini Oruganti <ashfall@google.com>	Fri Jan 10 11:17:00 2020 -0800
tree	d14b0cfaf0ee2529b0f8d94409636f8d62689850
parent	6df27928ddf7e750e90fcac9d9b6ccce0d99439f [diff]