From ddf98fa8cf11000f91329945abc23ee791adfe69 Mon Sep 17 00:00:00 2001
From: Geremy Condra <gcondra@google.com>
Date: Thu, 31 Oct 2013 11:17:23 -0700
Subject: Neverallow access to the kmem device from userspace.

Change-Id: If26baa947ff462f5bb09b75918a4130097de5ef4
---
 netd.te | 3 ---
 1 file changed, 3 deletions(-)

(limited to 'netd.te')

diff --git a/netd.te b/netd.te
index d8d65c9..d60e377 100644
--- a/netd.te
+++ b/netd.te
@@ -64,9 +64,6 @@ allow netd device:sock_file write;
 # Block device access.
 neverallow netd dev_type:blk_file { read write };
 
-# Kernel memory access.
-neverallow netd kmem_device:chr_file { read write };
-
 # Setting SELinux enforcing status or booleans.
 neverallow netd kernel:security { setenforce setbool };
 
-- 
cgit v1.2.3