Sync zuma-sepolicy to legacy folder

Duplicate from zuma-sepolicy 7f3e2b9 Test: make selinux_policy Bug: 296187211 Change-Id: If686fbdcf058849479019e8b37bb1d57a0215ed6 Signed-off-by: Wilson Sung <wilsonsung@google.com>
2023-08-21 16:25:59 +08:00 · 2023-08-21 16:25:59 +08:00 · 355f0df8fd
commit 355f0df8fd
parent a5c98e6cb0
205 changed files with 1314 additions and 997 deletions
--- a/widevine/file.te
+++ b/widevine/file.te
@ -1,3 +0,0 @@
-# Widevine DRM
-type mediadrm_vendor_data_file, file_type, data_file_type;
-
--- a/widevine/file_contexts
+++ b/widevine/file_contexts
@ -1,5 +0,0 @@
-/vendor/bin/hw/android\.hardware\.drm-service\.widevine          u:object_r:hal_drm_widevine_exec:s0
-/vendor/bin/hw/android\.hardware\.drm-service\.clearkey          u:object_r:hal_drm_clearkey_exec:s0
-
-# Data
-/data/vendor/mediadrm(/.*)?                                      u:object_r:mediadrm_vendor_data_file:s0
--- a/widevine/hal_drm_clearkey.te
+++ b/widevine/hal_drm_clearkey.te
@ -1,5 +0,0 @@
-type hal_drm_clearkey, domain;
-type hal_drm_clearkey_exec, vendor_file_type, exec_type, file_type;
-init_daemon_domain(hal_drm_clearkey)
-
-hal_server_domain(hal_drm_clearkey, hal_drm)
--- a/widevine/hal_drm_widevine.te
+++ b/widevine/hal_drm_widevine.te
@ -1,12 +0,0 @@
-type hal_drm_widevine, domain;
-type hal_drm_widevine_exec, vendor_file_type, exec_type, file_type;
-init_daemon_domain(hal_drm_widevine)
-
-hal_server_domain(hal_drm_widevine, hal_drm)
-
-# L3
-allow hal_drm_widevine mediadrm_vendor_data_file:file create_file_perms;
-allow hal_drm_widevine mediadrm_vendor_data_file:dir create_dir_perms;
-
-# L1
-allow hal_drm_widevine dmabuf_system_heap_device:chr_file r_file_perms;
--- a/widevine/service_contexts
+++ b/widevine/service_contexts
@ -1 +0,0 @@
-android.hardware.drm.IDrmFactory/widevine    u:object_r:hal_drm_service:s0
				`@ -1 +0,0 @@`
				`android.hardware.drm.IDrmFactory/widevine u:object_r:hal_drm_service:s0`