Remove proc label access from kernel domain. Bug: 65643247 Test: sailfish boots, can take pictures, use browser without denials form kernel domain. Change-Id: I4fc0555f0b65fc5537e0b2765142b384ed0560c8

commit: bc1c5453be89ba200aa135e963a7e4eb3bb7fa67 [log] [tgz]
author: Tri Vo <trong@google.com> Mon Oct 09 13:19:29 2017 -0700
committer: Tri Vo <trong@google.com> Mon Oct 09 13:19:31 2017 -0700
tree: 6444d86822b3e5799f31c13def37f0acda1addf0
parent: dcee57b8c2822e673da94e30966a524d6f8f6eec [diff]
diff --git a/public/kernel.te b/public/kernel.te
index 64111b0..74c77a9 100644
--- a/public/kernel.te
+++ b/public/kernel.te

@@ -5,7 +5,6 @@
 
 # Root fs.
 r_dir_file(kernel, rootfs)
-r_dir_file(kernel, proc)
 allow kernel proc_cmdline:file r_file_perms;
 
 # Get SELinux enforcing status.
commit	bc1c5453be89ba200aa135e963a7e4eb3bb7fa67	[log] [tgz]
author	Tri Vo <trong@google.com>	Mon Oct 09 13:19:29 2017 -0700
committer	Tri Vo <trong@google.com>	Mon Oct 09 13:19:31 2017 -0700
tree	6444d86822b3e5799f31c13def37f0acda1addf0
parent	dcee57b8c2822e673da94e30966a524d6f8f6eec [diff]