From 54a2cac5a21437e886ac666af4dcc48172d9986c Mon Sep 17 00:00:00 2001
From: Tri Vo <trong@google.com>
Date: Mon, 2 Oct 2017 14:16:29 -0700
Subject: [PATCH] Remove surfaceflinger access to sysfs.

Bug: 65643247
Test: SurfaceFlinger_test passes (except known failures) without selinux
denials
Change-Id: I6ce185f92e5ad64a172da7d7e12167d8da2ebed0
---
 private/surfaceflinger.te | 1 -
 1 file changed, 1 deletion(-)

diff --git a/private/surfaceflinger.te b/private/surfaceflinger.te
index b33035e8e..ed67597e6 100644
--- a/private/surfaceflinger.te
+++ b/private/surfaceflinger.te
@@ -84,7 +84,6 @@ allow surfaceflinger window_service:service_manager find;
 allow surfaceflinger self:capability sys_nice;
 allow surfaceflinger proc_meminfo:file r_file_perms;
 r_dir_file(surfaceflinger, cgroup)
-r_dir_file(surfaceflinger, sysfs_type)
 r_dir_file(surfaceflinger, system_file)
 allow surfaceflinger tmpfs:dir r_dir_perms;
 allow surfaceflinger system_server:fd use;
-- 
GitLab