Merge "Revert "Fix avc denials for powerhal""

tracking_denials/hal_power_default.te

@@ -0,0 +1,32 @@
+# b/260366126
+dontaudit hal_power_default sysfs:file { open };
+dontaudit hal_power_default sysfs:file { write };
+dontaudit hal_power_default sysfs_camera:file { open };
+dontaudit hal_power_default sysfs_camera:file { write };
+dontaudit hal_power_default sysfs_display:file { open };
+dontaudit hal_power_default sysfs_display:file { write };
+dontaudit hal_power_default sysfs_fabric:file { open };
+dontaudit hal_power_default sysfs_fabric:file { write };
+dontaudit hal_power_default vendor_camera_prop:property_service { set };
+# b/260769063
+dontaudit hal_power_default hal_graphics_composer_default:binder { transfer };
+# b/261105028
+dontaudit hal_power_default hal_fingerprint_default:binder { transfer };
+# b/261650934
+dontaudit hal_power_default hal_camera_default:binder { transfer };
+# b/262178497
+dontaudit hal_power_default sysfs_fabric:file { read };
+# b/262315567
+dontaudit hal_power_default sysfs:file { getattr };
+dontaudit hal_power_default sysfs:file { read };
+dontaudit hal_power_default sysfs_display:file { getattr };
+dontaudit hal_power_default sysfs_display:file { read };
+dontaudit hal_power_default sysfs_fabric:file { getattr };
+# b/262633072
+dontaudit hal_power_default hal_power_default:capability { dac_read_search };
+dontaudit hal_power_default sysfs_camera:file { getattr };
+dontaudit hal_power_default sysfs_camera:file { read };
+dontaudit hal_power_default vendor_camera_prop:file { getattr };
+dontaudit hal_power_default vendor_camera_prop:file { map };
+dontaudit hal_power_default vendor_camera_prop:file { open };
+dontaudit hal_power_default vendor_camera_prop:file { read };

tracking_denials/proc_vendor_sched.te

@@ -0,0 +1,2 @@
+# b/260366398
+dontaudit proc_vendor_sched proc:filesystem { associate };

vendor/file.te

@@ -1,10 +1,2 @@
 # persist
 type persist_display_file, file_type, vendor_persist_type;
-
-# Vendor sched files
-userdebug_or_eng(`
-    typeattribute proc_vendor_sched mlstrustedobject;
-')
-
-type sysfs_fabric, sysfs_type, fs_type;
-type sysfs_em_profile, sysfs_type, fs_type;

vendor/genfs_contexts

@@ -38,11 +38,6 @@ genfscon sysfs /devices/platform/19440000.drmdsim/19440000.drmdsim.0/serial_numb
 genfscon sysfs /devices/platform/19470000.drmdecon/dqe0/atc                                               u:object_r:sysfs_display:s0
 genfscon sysfs /module/drm/parameters/vblankoffdelay                                                      u:object_r:sysfs_display:s0
 genfscon sysfs /devices/platform/exynos-drm/tui_status                                                    u:object_r:sysfs_display:s0
-# EM Profile
-genfscon sysfs /kernel/pixel_em/active_profile                            u:object_r:sysfs_em_profile:s0
-
-# GPU
-genfscon sysfs /devices/platform/1f000000.mali/hint_min_freq                   u:object_r:sysfs_gpu:s0
 
 # wake up nodes
 genfscon sysfs /devices/platform/10c80000.hsi2c/i2c-0/6-0008/wakeup/wakeup                                                u:object_r:sysfs_wakeup:s0

vendor/hal_camera_default.te

@@ -1 +0,0 @@
-hal_client_domain(hal_camera_default, hal_power);

vendor/hal_fingerprint_default.te

@@ -1 +0,0 @@
-hal_client_domain(hal_fingerprint_default, hal_power);

vendor/hal_power_default.te

@@ -1,6 +0,0 @@
-allow hal_power_default sysfs_display:file rw_file_perms;
-allow hal_power_default sysfs_gpu:file rw_file_perms;
-allow hal_power_default sysfs_fabric:file rw_file_perms;
-allow hal_power_default sysfs_camera:file rw_file_perms;
-allow hal_power_default sysfs_em_profile:file rw_file_perms;
-set_prop(hal_power_default, vendor_camera_prop);