From c2653ae86d0904f45f5e52b8747a02d6b413c1f1 Mon Sep 17 00:00:00 2001
From: Tom Cherry <tomcherry@google.com>
Date: Thu, 25 Jan 2018 11:40:58 -0800
Subject: [PATCH] Neverallow vendor_init from accessing stats_data_file

The exception for vendor_init in this neverallow was never needed.

Bug: 62875318
Test: Build walleye, bullhead
Change-Id: Iac2b57df30b376492851d7520994e0400a87f1e1
---
 private/statsd.te | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/private/statsd.te b/private/statsd.te
index 0203bcdeb..073c38b40 100644
--- a/private/statsd.te
+++ b/private/statsd.te
@@ -89,7 +89,7 @@ neverallow {
 # Only statsd and the other root services in limited circumstances.
 # can get to the files in /data/misc/stats-data, /data/misc/stats-service.
 # Other services are prohibitted from accessing the file.
-neverallow { domain -statsd -init -vold -vendor_init } stats_data_file:file *;
+neverallow { domain -statsd -init -vold } stats_data_file:file *;
 
 # Limited access to the directory itself.
-neverallow { domain -statsd -init -vold -vendor_init } stats_data_file:dir *;
+neverallow { domain -statsd -init -vold } stats_data_file:dir *;
-- 
GitLab