Remove dontaudit rules related to storageproxyd's /data access.

Removing dontaudits for both tracking_denials/tee.te and whitechapel_pro/tee.te results in no new audit log messages related to storageproxyd, so they can both be removed. Bug: 215649571 Test: adb logcat | grep -iE 'storageproxyd' Change-Id: I8dc735bcaf0725c8d4eab4587f7a7fce21f4e25c
2022-07-01 20:24:05 +00:00 · 2022-07-01 20:24:05 +00:00 · 3adb31f004
commit 3adb31f004
parent b37cb131ce
2 changed files with 0 additions and 7 deletions
--- a/tracking_denials/tee.te
+++ b/tracking_denials/tee.te
@ -1,5 +1,2 @@
 # TODO(b/205904330): avoid using setuid, setgid permission
 allow tee tee:capability { setuid setgid };
-# b/215649571
-dontaudit tee gsi_metadata_file:dir { search };
-dontaudit tee metadata_file:dir { search };
--- a/whitechapel_pro/tee.te
+++ b/whitechapel_pro/tee.te
@ -11,7 +11,3 @@ allow tee sg_device:chr_file rw_file_perms;

 # Allow storageproxyd access to gsi_public_metadata_file
 read_fstab(tee)
-
-# storageproxyd starts before /data is mounted. It handles /data not being there
-# gracefully. However, attempts to access /data trigger a denial.
-dontaudit tee unlabeled:dir { search };