From 8cd400d3c4a5a9eb9bd8b0392260200bd23e6548 Mon Sep 17 00:00:00 2001
From: Stephen Smalley <sds@tycho.nsa.gov>
Date: Thu, 16 Jan 2014 12:59:29 -0500
Subject: [PATCH] Move tlcd_sock policy over to manta.

Change-Id: I7d5a5f964133177e7d466b9759fcf6300fec345d
Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>
---
 drmserver.te | 10 +---------
 1 file changed, 1 insertion(+), 9 deletions(-)

diff --git a/drmserver.te b/drmserver.te
index 2fbb6613e..584fd65b9 100644
--- a/drmserver.te
+++ b/drmserver.te
@@ -25,16 +25,8 @@ allow drmserver { app_data_file asec_apk_file }:file { read write getattr };
 allow drmserver sdcard_type:file { read write getattr };
 r_dir_file(drmserver, efs_file)
 
-type drmserver_socket, file_type;
-
-# /data/app/tlcd_sock socket file.
-# Clearly, /data/app is the most logical place to create a socket.  Not.
-allow drmserver apk_data_file:dir rw_dir_perms;
-type_transition drmserver apk_data_file:sock_file drmserver_socket;
-allow drmserver drmserver_socket:sock_file create_file_perms;
+# Connect to tee service.
 allow drmserver tee:unix_stream_socket connectto;
-# Delete old socket file if present.
-allow drmserver apk_data_file:sock_file unlink;
 
 # After taking a video, drmserver looks at the video file.
 r_dir_file(drmserver, media_rw_data_file)
-- 
GitLab