SELinux: Remove readfem, readmac
Signed-off-by: Deokgyu Yang <secugyu@gmail.com> Change-Id: Idecc1a6e33dc91c8a6e6242067ecf2bd8d92ec2f
This commit is contained in:
parent
8cc38fc81e
commit
6d5ad29b1e
3 changed files with 0 additions and 42 deletions
|
@ -39,8 +39,6 @@
|
||||||
|
|
||||||
# Binaries
|
# Binaries
|
||||||
/system/bin/chargeonlymode u:object_r:charger_exec:s0
|
/system/bin/chargeonlymode u:object_r:charger_exec:s0
|
||||||
/(vendor|system/vendor)/bin/readfem u:object_r:readfem_exec:s0
|
|
||||||
/(vendor|system/vendor)/bin/readmac u:object_r:readmac_exec:s0
|
|
||||||
|
|
||||||
# HALs
|
# HALs
|
||||||
/(vendor|system/vendor)/bin/hw/android\.hardware\.drm@1\.1-service\.clearkey u:object_r:hal_drm_clearkey_exec:s0
|
/(vendor|system/vendor)/bin/hw/android\.hardware\.drm@1\.1-service\.clearkey u:object_r:hal_drm_clearkey_exec:s0
|
||||||
|
|
|
@ -1,22 +0,0 @@
|
||||||
type readfem, domain;
|
|
||||||
type readfem_exec, exec_type, vendor_file_type, file_type;
|
|
||||||
|
|
||||||
# Allow for transition from init domain to readfem
|
|
||||||
init_daemon_domain(readfem)
|
|
||||||
|
|
||||||
# Allow readfem to communicate with qmuxd via qmux_radio socket
|
|
||||||
qmux_socket(readfem)
|
|
||||||
|
|
||||||
# Allow reading files in /persist, mainly /persist/ff_flag
|
|
||||||
allow readfem mnt_vendor_file:dir rw_dir_perms;
|
|
||||||
allow readfem mnt_vendor_file:file create_file_perms;
|
|
||||||
|
|
||||||
# Allow writing to /sys/module/cnss_common/parameters/bdwlan_file
|
|
||||||
allow readfem sysfs_cnss_common:dir search;
|
|
||||||
allow readfem sysfs_cnss_common:file rw_file_perms;
|
|
||||||
|
|
||||||
allow readfem self:socket create_socket_perms;
|
|
||||||
allowxperm readfem self:socket ioctl msm_sock_ipc_ioctls;
|
|
||||||
|
|
||||||
allow readfem diag_device:chr_file rw_file_perms;
|
|
||||||
allow readfem sysfs:file r_file_perms;
|
|
|
@ -1,18 +0,0 @@
|
||||||
type readmac, domain;
|
|
||||||
type readmac_exec, exec_type, vendor_file_type, file_type;
|
|
||||||
|
|
||||||
# Allow for transition from init domain to readmac
|
|
||||||
init_daemon_domain(readmac)
|
|
||||||
|
|
||||||
# Allow readmac to communicate with qmuxd via qmux_radio socket
|
|
||||||
qmux_socket(readmac)
|
|
||||||
|
|
||||||
# Allow readmac to fully access wlan_mac.bin persist file
|
|
||||||
allow readmac mnt_vendor_file:dir rw_dir_perms;
|
|
||||||
allow readmac mnt_vendor_file:file create_file_perms;
|
|
||||||
|
|
||||||
allow readmac self:socket create_socket_perms;
|
|
||||||
allowxperm readmac self:socket ioctl msm_sock_ipc_ioctls;
|
|
||||||
|
|
||||||
allow readmac diag_device:chr_file rw_file_perms;
|
|
||||||
allow readmac sysfs:file r_file_perms;
|
|
Loading…
Reference in a new issue