From 6eceb7c147dbb62d0ec94335002e4a4118fb1863 Mon Sep 17 00:00:00 2001
From: "bo.shang" <bo.shang@mediatek.com>
Date: Sat, 18 Jan 2020 10:19:53 +0800
Subject: [PATCH] [ALPS04761154] Remove risk selinux permission

Remove create folder in data selinux permission

MTK-Commit-Id: d6a218ddee9f5bcde67381631e400a8c3d5a4497

Change-Id: I031aa0ba9463796a11e6ba68774595ad2ff40ce4
CR-Id: ALPS04761154
Feature: Network Log Tool
---
 plat_private/modemdbfilter_client.te | 3 ---
 plat_private/netdiag.te              | 2 --
 2 files changed, 5 deletions(-)

diff --git a/plat_private/modemdbfilter_client.te b/plat_private/modemdbfilter_client.te
index c63b2b8..4c123a8 100755
--- a/plat_private/modemdbfilter_client.te
+++ b/plat_private/modemdbfilter_client.te
@@ -17,6 +17,3 @@ hal_client_domain(modemdbfilter_client, mtk_hal_md_dbfilter)
 # ==============================================
 allow modemdbfilter_client mddb_filter_data_file:dir { create_dir_perms relabelto };
 allow modemdbfilter_client mddb_filter_data_file:file { create_file_perms };
-allow modemdbfilter_client system_data_file:dir { create_dir_perms relabelfrom };
-allow modemdbfilter_client file_contexts_file:file { r_file_perms };
-
diff --git a/plat_private/netdiag.te b/plat_private/netdiag.te
index 834dcf8..c2499bb 100755
--- a/plat_private/netdiag.te
+++ b/plat_private/netdiag.te
@@ -99,5 +99,3 @@ get_prop(netdiag, apexd_prop)
 # Q save log into /data/debuglogger
 allow netdiag debuglog_data_file:dir {relabelto create_dir_perms};
 allow netdiag debuglog_data_file:file create_file_perms;
-allow netdiag system_data_file:dir { create_dir_perms relabelfrom };
-allow netdiag file_contexts_file:file { r_file_perms };