SELinux: Remove readfem, readmac
Signed-off-by: Deokgyu Yang <secugyu@gmail.com> Change-Id: Idecc1a6e33dc91c8a6e6242067ecf2bd8d92ec2f
This commit is contained in:
parent
8cc38fc81e
commit
6d5ad29b1e
3 changed files with 0 additions and 42 deletions
|
@ -39,8 +39,6 @@
|
|||
|
||||
# Binaries
|
||||
/system/bin/chargeonlymode u:object_r:charger_exec:s0
|
||||
/(vendor|system/vendor)/bin/readfem u:object_r:readfem_exec:s0
|
||||
/(vendor|system/vendor)/bin/readmac u:object_r:readmac_exec:s0
|
||||
|
||||
# HALs
|
||||
/(vendor|system/vendor)/bin/hw/android\.hardware\.drm@1\.1-service\.clearkey u:object_r:hal_drm_clearkey_exec:s0
|
||||
|
|
|
@ -1,22 +0,0 @@
|
|||
type readfem, domain;
|
||||
type readfem_exec, exec_type, vendor_file_type, file_type;
|
||||
|
||||
# Allow for transition from init domain to readfem
|
||||
init_daemon_domain(readfem)
|
||||
|
||||
# Allow readfem to communicate with qmuxd via qmux_radio socket
|
||||
qmux_socket(readfem)
|
||||
|
||||
# Allow reading files in /persist, mainly /persist/ff_flag
|
||||
allow readfem mnt_vendor_file:dir rw_dir_perms;
|
||||
allow readfem mnt_vendor_file:file create_file_perms;
|
||||
|
||||
# Allow writing to /sys/module/cnss_common/parameters/bdwlan_file
|
||||
allow readfem sysfs_cnss_common:dir search;
|
||||
allow readfem sysfs_cnss_common:file rw_file_perms;
|
||||
|
||||
allow readfem self:socket create_socket_perms;
|
||||
allowxperm readfem self:socket ioctl msm_sock_ipc_ioctls;
|
||||
|
||||
allow readfem diag_device:chr_file rw_file_perms;
|
||||
allow readfem sysfs:file r_file_perms;
|
|
@ -1,18 +0,0 @@
|
|||
type readmac, domain;
|
||||
type readmac_exec, exec_type, vendor_file_type, file_type;
|
||||
|
||||
# Allow for transition from init domain to readmac
|
||||
init_daemon_domain(readmac)
|
||||
|
||||
# Allow readmac to communicate with qmuxd via qmux_radio socket
|
||||
qmux_socket(readmac)
|
||||
|
||||
# Allow readmac to fully access wlan_mac.bin persist file
|
||||
allow readmac mnt_vendor_file:dir rw_dir_perms;
|
||||
allow readmac mnt_vendor_file:file create_file_perms;
|
||||
|
||||
allow readmac self:socket create_socket_perms;
|
||||
allowxperm readmac self:socket ioctl msm_sock_ipc_ioctls;
|
||||
|
||||
allow readmac diag_device:chr_file rw_file_perms;
|
||||
allow readmac sysfs:file r_file_perms;
|
Loading…
Reference in a new issue