From 9e64f5e9353b53a79502350d7595f4c20a58e378 Mon Sep 17 00:00:00 2001 From: Lili Lin Date: Sat, 18 Jan 2020 10:04:31 +0800 Subject: [PATCH] [ALPS03878175] Remove system_writes_vendor_properties_violators system_writes_vendor_properties_violators is only workaround, and will cause *TS test fail, so remove the workaround and corresponding rules that cause build fail. MTK-Commit-Id: f637c1416b591c821bc9c18fd3dbf3aa5f9038af Change-Id: If09922120de0742ec47d7c0522168d4e78a4e74f CR-Id: ALPS03878175 Feature: [Android Default] SELinux, SEAndroid, and SE-MTK --- non_plat/cameraserver.te | 7 ------- non_plat/dumpstate.te | 1 - non_plat/mediadrmserver.te | 7 ------- non_plat/mediaserver.te | 7 ------- non_plat/radio.te | 7 ------- non_plat/system_app.te | 1 - non_plat/system_server.te | 7 ------- 7 files changed, 37 deletions(-) diff --git a/non_plat/cameraserver.te b/non_plat/cameraserver.te index 43e068c..3af0721 100644 --- a/non_plat/cameraserver.te +++ b/non_plat/cameraserver.te @@ -340,13 +340,6 @@ allow cameraserver debugfs_ion:dir search; # Purpose: Allow to access cmdq driver # allow cameraserver mtk_cmdq_device:chr_file { read ioctl open }; -# Date : WK17.28 -# Operation : MT6757 SQC -# Purpose : Change thermal config -# typeattribute cameraserver system_writes_vendor_properties_violators; -# allow cameraserver mtk_thermal_config_prop:file { getattr open read }; - - # Date : WK17.44 # Operation : Migration # Purpose : DIP Driver diff --git a/non_plat/dumpstate.te b/non_plat/dumpstate.te index aa9e5e5..886a947 100644 --- a/non_plat/dumpstate.te +++ b/non_plat/dumpstate.te @@ -3,7 +3,6 @@ # ============================================== # Purpose: aee_dumpstate set surfaceflinger property -typeattribute dumpstate system_writes_vendor_properties_violators; set_prop(dumpstate, debug_bq_dump_prop); # Purpose: access dev/aed0 diff --git a/non_plat/mediadrmserver.te b/non_plat/mediadrmserver.te index 066a632..0af74b7 100644 --- a/non_plat/mediadrmserver.te +++ b/non_plat/mediadrmserver.te @@ -7,10 +7,3 @@ allow mediadrmserver proc_ged:file {open read write ioctl getattr}; - - -# Date : WK17.28 -# Operation : MT6757 SQC -# Purpose : Change thermal config -allow mediaserver mtk_thermal_config_prop:file { getattr open read }; -allow mediaserver mtk_thermal_config_prop:property_service set; diff --git a/non_plat/mediaserver.te b/non_plat/mediaserver.te index 8495c85..f231955 100644 --- a/non_plat/mediaserver.te +++ b/non_plat/mediaserver.te @@ -295,13 +295,6 @@ allow mediaserver camera_owe_device:chr_file rw_file_perms; # Purpose: Allow to access cmdq driver allow mediaserver mtk_cmdq_device:chr_file { read ioctl open }; -# Date : WK17.12 -# Operation : MT6799 SQC -# Purpose : Change thermal config -typeattribute mediaserver system_writes_vendor_properties_violators; -allow mediaserver mtk_thermal_config_prop:file { getattr open read }; - - # Date : WK17.43 # Operation : Migration # Purpose : DISP access diff --git a/non_plat/radio.te b/non_plat/radio.te index 2bb02cd..bba31d4 100644 --- a/non_plat/radio.te +++ b/non_plat/radio.te @@ -11,8 +11,6 @@ allow radio sysfs_keypad_file:file { w_file_perms }; # Purpose : for engineermode WFD IOT property allow radio surfaceflinger:fifo_file { rw_file_perms }; -typeattribute radio system_writes_vendor_properties_violators; - # Date : 2016/06/11 # Operation : IT # Purpose : for engineermode Usb PHY Tuning @@ -145,10 +143,6 @@ get_prop(radio, wmt_prop) # Purpose: Allow radio to get tel_switch_prop get_prop(radio, tel_switch_prop) -#Date: W1817 -#Purpose: allow rild access property of vendor_radio_prop -set_prop(radio, vendor_radio_prop) - # Date : 2018/05/03 # Operation: P migration # Purpose: allow EM to set modem reset delay property @@ -178,7 +172,6 @@ allow radio sysfs_spm:dir { search }; # Date : 2018/06/15 # Purpose : Allow EM access AAL settings -set_prop(radio, mtk_aal_prop) get_prop(radio, mtk_aal_prop) # Date : 2018/06/15 diff --git a/non_plat/system_app.te b/non_plat/system_app.te index 934df42..a7e9def 100644 --- a/non_plat/system_app.te +++ b/non_plat/system_app.te @@ -13,7 +13,6 @@ hal_client_domain(system_app, mtk_hal_lbs) #Dat: 2017/02/14 #Purpose: allow set telephony Sensitive property -typeattribute system_app system_writes_vendor_properties_violators; get_prop(system_app, mtk_telephony_sensitive_prop) diff --git a/non_plat/system_server.te b/non_plat/system_server.te index d82145f..6401df8 100644 --- a/non_plat/system_server.te +++ b/non_plat/system_server.te @@ -80,13 +80,6 @@ allow system_server ttyS_device:chr_file rw_file_perms; allow system_server proc_mtktz:dir search; allow system_server proc_mtktz:file r_file_perms; -# Date : WK16.46 -# Operation: PowerManager set persist.meta.connecttype property -# Purpose: Reboot target to meta mode, -# and set persist.meta.connecttype as "wifi" or "usb". -typeattribute system_server system_writes_vendor_properties_violators; -allow system_server meta_connecttype_prop:property_service set; - # Date:W17.02 # Operation : audio hal developing # Purpose : audio hal interface permission