From 6bc8ac8bdba5bd5de392155114a45e1547fda670 Mon Sep 17 00:00:00 2001
From: chien-wei hsu <chien-wei.hsu@mediatek.com>
Date: Sat, 18 Jan 2020 10:19:52 +0800
Subject: [PATCH] [ALPS04760982] audiohal: fix High risk SEPolicies of
 mtk_hal_audio

[detail]
remove sysfs file permission,
only request the sysfs_ccci file

MTK-Commit-Id: 0649e6c55c648d65fa9c599d73bfa98e02e918fe

Change-Id: Idab0ac8e4aff9234887f70dc60fe51339d78cd2b
CR-Id: ALPS04760982
Feature: [Module]Audio HAL
---
 non_plat/mtk_hal_audio.te | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/non_plat/mtk_hal_audio.te b/non_plat/mtk_hal_audio.te
index 5627c80..ffd5c7c 100644
--- a/non_plat/mtk_hal_audio.te
+++ b/non_plat/mtk_hal_audio.te
@@ -158,17 +158,13 @@ allow mtk_hal_audio mnt_user_file:lnk_file {read write};
 # Operation : Migration
 # Purpose: read/open sysfs node
 allow mtk_hal_audio sysfs_ccci:file r_file_perms;
+allow mtk_hal_audio sysfs_ccci:dir search;
 
 # Date : WK16.18
 # Operation : Migration
 # Purpose: research root dir "/"
 allow mtk_hal_audio tmpfs:dir search;
 
-# Date : WK16.18
-# Operation : Migration
-# Purpose: access sysfs node
-allow mtk_hal_audio sysfs:file { open read write };
-allow mtk_hal_audio sysfs_ccci:dir search;
 # Purpose: Dump debug info
 allow mtk_hal_audio debugfs_binder:dir search;
 allow mtk_hal_audio kmsg_device:chr_file { open write };