From 6523ef55d88c5c3389603c70042edb86ff66d6fa Mon Sep 17 00:00:00 2001
From: Terry Huang <terrycrhuang@google.com>
Date: Thu, 9 Jan 2025 09:09:28 +0800
Subject: [PATCH] Remove sced sepolicy rule

Bug: 381778782
Test: gts pass
Flag: EXEMPT bugfix

Change-Id: Ia252d9743577a0475940ff4191d337f68474989e
---
 radio/file_contexts                         |  1 -
 radio/sced.te                               | 23 ---------------------
 radio/vendor_telephony_silentlogging_app.te |  1 -
 3 files changed, 25 deletions(-)
 delete mode 100644 radio/sced.te

diff --git a/radio/file_contexts b/radio/file_contexts
index e02a1aa1..6146f4dc 100644
--- a/radio/file_contexts
+++ b/radio/file_contexts
@@ -3,7 +3,6 @@
 /vendor/bin/bipchmgr                                                        u:object_r:bipchmgr_exec:s0
 /vendor/bin/vcd                                                             u:object_r:vcd_exec:s0
 /vendor/bin/dmd                                                             u:object_r:dmd_exec:s0
-/vendor/bin/sced                                                            u:object_r:sced_exec:s0
 /vendor/bin/rfsd                                                            u:object_r:rfsd_exec:s0
 /vendor/bin/modem_logging_control                                           u:object_r:modem_logging_control_exec:s0
 /vendor/bin/modem_ml_svc_sit                                                u:object_r:modem_ml_svc_sit_exec:s0
diff --git a/radio/sced.te b/radio/sced.te
deleted file mode 100644
index 2b08973a..00000000
--- a/radio/sced.te
+++ /dev/null
@@ -1,23 +0,0 @@
-type sced, domain;
-type sced_exec, vendor_file_type, exec_type, file_type;
-
-userdebug_or_eng(`
-  init_daemon_domain(sced)
-  typeattribute sced vendor_executes_system_violators;
-
-  hwbinder_use(sced)
-  binder_call(sced, dmd)
-  binder_call(sced, vendor_telephony_silentlogging_app)
-
-  get_prop(sced, hwservicemanager_prop)
-  allow sced self:packet_socket create_socket_perms_no_ioctl;
-
-  allow sced self:capability net_raw;
-  allow sced shell_exec:file rx_file_perms;
-  allow sced tcpdump_exec:file rx_file_perms;
-  allow sced vendor_shell_exec:file x_file_perms;
-  allow sced vendor_slog_file:dir create_dir_perms;
-  allow sced vendor_slog_file:file create_file_perms;
-  allow sced hidl_base_hwservice:hwservice_manager add;
-  allow sced hal_vendor_oem_hwservice:hwservice_manager { add find };
-')
diff --git a/radio/vendor_telephony_silentlogging_app.te b/radio/vendor_telephony_silentlogging_app.te
index 583f408f..a9497f5d 100644
--- a/radio/vendor_telephony_silentlogging_app.te
+++ b/radio/vendor_telephony_silentlogging_app.te
@@ -10,7 +10,6 @@ allow vendor_telephony_silentlogging_app vendor_slog_file:file create_file_perms
 allow vendor_telephony_silentlogging_app app_api_service:service_manager find;
 allow vendor_telephony_silentlogging_app hal_vendor_oem_hwservice:hwservice_manager find;
 binder_call(vendor_telephony_silentlogging_app, dmd)
-binder_call(vendor_telephony_silentlogging_app, sced)
 
 userdebug_or_eng(`
 # Silent Logging