From eb482c422a84e48a6bec36cfe8e262eeae470463 Mon Sep 17 00:00:00 2001
From: Nick Kralevich <nnk@google.com>
Date: Fri, 6 Jan 2017 15:09:43 -0800
Subject: [PATCH] platform_app.te: remove obsolete rules.

No audits have been recorded for these rules. Remove them.

Originally added for backwards compatibility in
549ccf77e3fd23bb6c690da7023441c1007c4fd8 as part of the split
between cache_file and cache_recovery_file.

Bug: 25351711
Test: No audit records recorded
Change-Id: I5133028b5fcc99a731aabea90305171dee0edf47
---
 public/platform_app.te | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/public/platform_app.te b/public/platform_app.te
index 64843195b..c7e9a00c2 100644
--- a/public/platform_app.te
+++ b/public/platform_app.te
@@ -26,12 +26,8 @@ allow platform_app media_rw_data_file:dir create_dir_perms;
 allow platform_app media_rw_data_file:file create_file_perms;
 
 # Write to /cache.
-allow platform_app { cache_file cache_recovery_file }:dir create_dir_perms;
-allow platform_app { cache_file cache_recovery_file }:file create_file_perms;
-
-# Likely not needed
-auditallow platform_app cache_recovery_file:dir create_dir_perms;
-auditallow platform_app cache_recovery_file:file create_file_perms;
+allow platform_app cache_file:dir create_dir_perms;
+allow platform_app cache_file:file create_file_perms;
 
 # Direct access to vold-mounted storage under /mnt/media_rw
 # This is a performance optimization that allows platform apps to bypass the FUSE layer
-- 
GitLab