diff options
| author | Stephen Smalley <sds@tycho.nsa.gov> | 2013-12-09 10:23:16 -0500 |
|---|---|---|
| committer | Stephen Smalley <sds@tycho.nsa.gov> | 2013-12-09 10:23:16 -0500 |
| commit | 17bec835d5cf1dfd3fa94df3b0da84a1e731e447 (patch) | |
| tree | c8b81ae9c1cd1bb421e718a428257ac3e0e508a2 | |
| parent | 48a6d3de590714f4e913c6cc3135a455126df91d (diff) | |
| download | system_core-17bec835d5cf1dfd3fa94df3b0da84a1e731e447.zip system_core-17bec835d5cf1dfd3fa94df3b0da84a1e731e447.tar.gz system_core-17bec835d5cf1dfd3fa94df3b0da84a1e731e447.tar.bz2 | |
Do not change ownership on /sys/fs/selinux/enforce.
There is no longer any reason to permit system UID to set enforcing mode.
Change-Id: Ie28beed1ca2b215c71f2847e2390cee1af1713c3
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
| -rw-r--r-- | rootdir/init.rc | 3 |
1 files changed, 0 insertions, 3 deletions
diff --git a/rootdir/init.rc b/rootdir/init.rc index 109f15b..d1822cf 100644 --- a/rootdir/init.rc +++ b/rootdir/init.rc @@ -356,9 +356,6 @@ on boot chown system system /sys/kernel/ipv4/tcp_rmem_max chown root radio /proc/cmdline -# Set these so we can remotely update SELinux policy - chown system system /sys/fs/selinux/enforce - # Define TCP buffer sizes for various networks # ReadMin, ReadInitial, ReadMax, WriteMin, WriteInitial, WriteMax, setprop net.tcp.buffersize.default 4096,87380,110208,4096,16384,110208 |