From 1f690c6ac9286860667c7dfcb4d4b80b59cf34f7 Mon Sep 17 00:00:00 2001
From: Nick Kralevich <nnk@google.com>
Date: Sat, 23 Apr 2016 11:19:19 -0700
Subject: [PATCH] Remove duplicate neverallow rules.

These neverallow rules are exact duplicates of neverallow
rules which occur earlier in the file.

Change-Id: I75e3d84109f26374257741425f8de638a15f2741
---
 untrusted_app.te | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/untrusted_app.te b/untrusted_app.te
index 9e9bddc1f..1c17e3091 100644
--- a/untrusted_app.te
+++ b/untrusted_app.te
@@ -144,10 +144,6 @@ neverallow untrusted_app sysfs_mac_address:file no_rw_file_perms;
 neverallow untrusted_app { cache_file cache_recovery_file }:dir ~{ r_dir_perms };
 neverallow untrusted_app { cache_file cache_recovery_file }:file ~{ read getattr };
 
-# Do not allow untrusted_app to set system properties.
-neverallow untrusted_app property_socket:sock_file write;
-neverallow untrusted_app property_type:property_service set;
-
 # Do not allow untrusted_app to create/unlink files outside of its sandbox,
 # internal storage or sdcard.
 # World accessible data locations allow application to fill the device
-- 
GitLab