NekoSakura/android_device_mediatek_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[ALPS04763248] Remove unused sepolicies

Browse Source 
[Detail]
Remove unused sepolicies of thermalindicator.

MTK-Commit-Id: 3a0b1cc66e7e651ee0f0307654389e25c4e721d9

Change-Id: I535e42ae60b0170f621452aca19419283a7fa3fe
CR-Id: ALPS04763248
Feature: [Android Default] SELinux, SEAndroid, and SE-MTK
This commit is contained in:
Caroline Yang 2020-01-18 10:19:24 +08:00
parent a61938f39c
commit 61181c335d
8 changed files with 0 additions and 100 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
non_plat/thermalindicator.te
View File

@ -1,3 +0,0 @@
# Date : WK16.33
# Purpose: Allow to access ged for gralloc_extra functions
allow thermalindicator proc_ged:file rw_file_perms;

1
plat_private/file_contexts
View File

@ -20,7 +20,6 @@
/system/bin/netdiag u:object_r:netdiag_exec:s0 /system/bin/netdiag u:object_r:netdiag_exec:s0
/system/bin/loghidlsysservice u:object_r:loghidlsysservice_exec:s0 /system/bin/loghidlsysservice u:object_r:loghidlsysservice_exec:s0
/system/bin/cmddumper u:object_r:cmddumper_exec:s0 /system/bin/cmddumper u:object_r:cmddumper_exec:s0
/system/bin/thermalindicator u:object_r:thermalindicator_exec:s0
/system/bin/em_svr u:object_r:em_svr_exec:s0 /system/bin/em_svr u:object_r:em_svr_exec:s0
/system/bin/aee_aed u:object_r:aee_aed_exec:s0 /system/bin/aee_aed u:object_r:aee_aed_exec:s0
/system/bin/aee_aed64 u:object_r:aee_aed_exec:s0 /system/bin/aee_aed64 u:object_r:aee_aed_exec:s0

40
plat_private/thermalindicator.te
View File

@ -1,40 +0,0 @@
# =============================================================================
# MTK Policy Rule
# =============================================================================
# New added for move to /system
type thermalindicator_exec, system_file_type, exec_type, file_type;
typeattribute thermalindicator coredomain;
init_daemon_domain(thermalindicator)
allow thermalindicator gpu_device:chr_file { getattr read write ioctl open };
allow thermalindicator surfaceflinger:fd use;
allow thermalindicator surfaceflinger:binder call;
allow thermalindicator surfaceflinger:binder transfer;
allow thermalindicator surfaceflinger_service:service_manager find;
allow thermalindicator servicemanager:binder call;
allow thermalindicator property_socket:sock_file write;
allow thermalindicator init:unix_stream_socket connectto;
allow surfaceflinger thermalindicator:fd use;
allow surfaceflinger thermalindicator:binder call;
allow surfaceflinger thermalindicator:binder transfer;
allow surfaceflinger thermalindicator:file { getattr read open };
allow surfaceflinger thermalindicator:dir search;
allow servicemanager thermalindicator:dir search;
allow servicemanager thermalindicator:file { read open };
allow servicemanager thermalindicator:process { getattr };
# For /proc/[pid]/cmdline accessing
typeattribute thermalindicator mlstrustedsubject;
allow thermalindicator proc:dir {search getattr};
allow thermalindicator shell:dir search;
allow thermalindicator platform_app:dir search;
allow thermalindicator platform_app:file {open read getattr};
allow thermalindicator untrusted_app:dir search;
allow thermalindicator untrusted_app:file {open read getattr};
allow thermalindicator mediaserver:dir search;
allow thermalindicator mediaserver:file {open read getattr};

7
plat_public/thermalindicator.te
View File

@ -1,7 +0,0 @@
# =============================================================================
# Policy File of /system/bin/thermalindicator Executable File
# =============================================================================
# Type Declaration
# =============================================================================
type thermalindicator, domain;

1
prebuilts/api/26.0/plat_private/file_contexts
View File

@ -14,7 +14,6 @@
/system/bin/cmddumper u:object_r:cmddumper_exec:s0 /system/bin/cmddumper u:object_r:cmddumper_exec:s0
/system/bin/netdiag u:object_r:netdiag_exec:s0 /system/bin/netdiag u:object_r:netdiag_exec:s0
/system/bin/mobile_log_d u:object_r:mobile_log_d_exec:s0 /system/bin/mobile_log_d u:object_r:mobile_log_d_exec:s0
/system/bin/thermalindicator u:object_r:thermalindicator_exec:s0
/system/bin/em_svr u:object_r:em_svr_exec:s0 /system/bin/em_svr u:object_r:em_svr_exec:s0
/system/bin/aee_aed u:object_r:aee_aed_exec:s0 /system/bin/aee_aed u:object_r:aee_aed_exec:s0
/system/bin/aee_aed64 u:object_r:aee_aed_exec:s0 /system/bin/aee_aed64 u:object_r:aee_aed_exec:s0

40
prebuilts/api/26.0/plat_private/thermalindicator.te
View File

@ -1,40 +0,0 @@
# =============================================================================
# MTK Policy Rule
# =============================================================================
# New added for move to /system
type thermalindicator_exec, exec_type, file_type;
typeattribute thermalindicator coredomain;
init_daemon_domain(thermalindicator)
allow thermalindicator gpu_device:chr_file { getattr read write ioctl open };
allow thermalindicator surfaceflinger:fd use;
allow thermalindicator surfaceflinger:binder call;
allow thermalindicator surfaceflinger:binder transfer;
allow thermalindicator surfaceflinger_service:service_manager find;
allow thermalindicator servicemanager:binder call;
allow thermalindicator property_socket:sock_file write;
allow thermalindicator init:unix_stream_socket connectto;
allow surfaceflinger thermalindicator:fd use;
allow surfaceflinger thermalindicator:binder call;
allow surfaceflinger thermalindicator:binder transfer;
allow surfaceflinger thermalindicator:file { getattr read open };
allow surfaceflinger thermalindicator:dir search;
allow servicemanager thermalindicator:dir search;
allow servicemanager thermalindicator:file { read open };
allow servicemanager thermalindicator:process { getattr };
# For /proc/[pid]/cmdline accessing
typeattribute thermalindicator mlstrustedsubject;
allow thermalindicator proc:dir {search getattr};
allow thermalindicator shell:dir search;
allow thermalindicator platform_app:dir search;
allow thermalindicator platform_app:file {open read getattr};
allow thermalindicator untrusted_app:dir search;
allow thermalindicator untrusted_app:file {open read getattr};
allow thermalindicator mediaserver:dir search;
allow thermalindicator mediaserver:file {open read getattr};

7
prebuilts/api/26.0/plat_public/thermalindicator.te
View File

@ -1,7 +0,0 @@
# =============================================================================
# Policy File of /system/bin/thermalindicator Executable File
# =============================================================================
# Type Declaration
# =============================================================================
type thermalindicator, domain;

1
private/compat/26.0/26.0.cil
View File

@ -223,7 +223,6 @@
(typeattributeset bufferhubd_26_0 (bufferhubd)) (typeattributeset bufferhubd_26_0 (bufferhubd))
(typeattributeset sysfs_devices_system_cpu_26_0 (sysfs_devices_system_cpu)) (typeattributeset sysfs_devices_system_cpu_26_0 (sysfs_devices_system_cpu))
(typeattributeset untrusted_app_26_0 (untrusted_app)) (typeattributeset untrusted_app_26_0 (untrusted_app))
(typeattributeset thermalindicator_26_0 (thermalindicator))
(typeattributeset shared_relro_26_0 (shared_relro)) (typeattributeset shared_relro_26_0 (shared_relro))
(typeattributeset hal_wifi_hwservice_26_0 (hal_wifi_hwservice)) (typeattributeset hal_wifi_hwservice_26_0 (hal_wifi_hwservice))
(typeattributeset alarm_device_26_0 (alarm_device)) (typeattributeset alarm_device_26_0 (alarm_device))