From d419ed8fb7ad8ef7fa02d9841f1a52115285904b Mon Sep 17 00:00:00 2001
From: Nick Kralevich <nnk@google.com>
Date: Thu, 16 Feb 2017 09:16:40 -0800
Subject: [PATCH] Remove crash_dump from sys_ptrace neverallow exception

CAP_SYS_PTRACE is no longer used by crash_dump. There's no reason to
exclude it from the neverallow compile time assertion.

Test: policy compiles.
Change-Id: Ib2dced19091406553c16e6ce538cfb68bbc1e5aa
---
 private/domain.te | 1 -
 1 file changed, 1 deletion(-)

diff --git a/private/domain.te b/private/domain.te
index b1171f442..6f8814e40 100644
--- a/private/domain.te
+++ b/private/domain.te
@@ -8,7 +8,6 @@ allow domain crash_dump:process sigchld;
 neverallow {
   domain
   -vold
-  -crash_dump
   -dumpstate
   -storaged
   -system_server
-- 
GitLab