Remove duplicate neverallow rule.

Commit: 7ffb9972 added protection against low memory mapping for all domains, a superset of appdomain. Remove the same, redundant neverallow rule from appdomain. Change-Id: Ia41c02763f6b5a260c56d10adfbab649d9f3f97c

Remove duplicate neverallow rule.
Commit: 7ffb9972 added protection against low memory mapping for all domains, a superset of appdomain. Remove the same, redundant neverallow rule from appdomain. Change-Id: Ia41c02763f6b5a260c56d10adfbab649d9f3f97c
71db4110 · dcashman · 7e5b6d0c · 71db4110
Commit 71db4110 authored 10 years ago by dcashman
--- a/app.te
+++ b/app.te
@@ -241,10 +241,6 @@ neverallow { appdomain -unconfineddomain } { domain -appdomain }:process
 neverallow { appdomain -shell -unconfineddomain } ~appdomain:process
    { transition dyntransition };

-# Map low memory.
-# Note: Take to domain.te and apply to all domains in the future.
-neverallow { appdomain -unconfineddomain } self:memprotect mmap_zero;
-
 # Write to rootfs.
 neverallow { appdomain -unconfineddomain } rootfs:dir_file_class_set
    { create write setattr relabelfrom relabelto append unlink link rename };