From 606cbd7ddc4c04fb904d4e3a2b41a32b35fe81e9 Mon Sep 17 00:00:00 2001
From: Eric Chung <eric.chung@mediatek.com>
Date: Sat, 18 Jan 2020 10:19:59 +0800
Subject: [PATCH] [ALPS04761007] GPU: Fix high risk sepolicy

[Detail]
Remove "allow property set" in mtk_hal_gpu

MTK-Commit-Id: 846c697e7b7766010b31a37371fbbe0babaa8203

Change-Id: I87f87982ea5c0147a60c6120548d4a44dd8c7f29
CR-Id: ALPS04761007
Feature: OpenGL|ES
---
 non_plat/mtk_hal_gpu.te | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/non_plat/mtk_hal_gpu.te b/non_plat/mtk_hal_gpu.te
index 939351d..ab08bdd 100644
--- a/non_plat/mtk_hal_gpu.te
+++ b/non_plat/mtk_hal_gpu.te
@@ -31,11 +31,6 @@ hal_client_domain(mtk_hal_gpu, hal_allocator)
 # Purpose : Allow to use kernel driver
 allow mtk_hal_gpu graphics_device:chr_file rw_file_perms;
 
-# Purpose : Allow property set
-allow mtk_hal_gpu init:unix_stream_socket connectto;
-allow mtk_hal_gpu property_socket:sock_file write;
-
-
 # Purpose : Allow permission to set pq property
 #set_prop(mtk_hal_gpu, mtk_gpu_prop)