From b7f997f7ca7c1e9cae4e80b0c71b0cfacf62b27f Mon Sep 17 00:00:00 2001
From: Bruno Martins <bgcngm@gmail.com>
Date: Thu, 18 Aug 2016 11:08:38 +0100
Subject: sepolicy: Cleanup permissions

 * Remove unneeded permissions

Change-Id: Ie52577eb3cf06e3adb4be9e40016407e451e604d
---
 sepolicy/init.te   | 17 -----------------
 sepolicy/kernel.te |  1 -
 2 files changed, 18 deletions(-)
 delete mode 100644 sepolicy/init.te
 delete mode 100644 sepolicy/kernel.te

(limited to 'sepolicy')

diff --git a/sepolicy/init.te b/sepolicy/init.te
deleted file mode 100644
index 075823c..0000000
--- a/sepolicy/init.te
+++ /dev/null
@@ -1,17 +0,0 @@
-allow init socket_device:sock_file { create unlink setattr };
-allow init proc_dirty_ratio:file write;
-allow init vfat:dir mounton;
-
-allow init block_device:lnk_file relabelfrom;
-
-allow init { cache_block_device misc_block_device frp_block_device userdata_block_device rpmb_device dip_device recovery_block_device mba_debug_dev modem_efs_partition_device gpt_block_device  persist_block_device }:lnk_file relabelto;
-
-allow init init:socket { create bind read };
-allow init init:capability net_bind_service;
-
-allow init { ssd_device rpmb_device modem_efs_partition_device }:blk_file write;
-
-allow init qti_debugfs:file write;
-
-allow init { tee_device diag_device }:chr_file { write read open ioctl };
-allow init ion_device:chr_file { read open ioctl };
diff --git a/sepolicy/kernel.te b/sepolicy/kernel.te
deleted file mode 100644
index bd8c7b7..0000000
--- a/sepolicy/kernel.te
+++ /dev/null
@@ -1 +0,0 @@
-allow kernel tmpfs:dir search; 
-- 
cgit v1.2.3