From 659079a8620715434bd97842d9681014ded1a7da Mon Sep 17 00:00:00 2001
From: Tom Cherry <tomcherry@google.com>
Date: Thu, 12 Apr 2018 17:37:12 -0700
Subject: [PATCH] vendor_init permissions for unencrypted_data_file are now
 global

So they can be removed from this device specific policy.

Bug: 77850279
Test: walleye + more restrictions continues to have FBE work
Change-Id: Ib77abd81ae886b40f5a078c379d352a53d865e31
---
 sepolicy/vendor/vendor_init.te | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/sepolicy/vendor/vendor_init.te b/sepolicy/vendor/vendor_init.te
index 549a668f..b5ea70bf 100644
--- a/sepolicy/vendor/vendor_init.te
+++ b/sepolicy/vendor/vendor_init.te
@@ -7,14 +7,9 @@ allow vendor_init {
   ramoops_data_file
   system_data_file
   tombstone_data_file
-  unencrypted_data_file
   wifi_data_file
 }:dir { create search getattr open read setattr ioctl write add_name remove_name rmdir relabelfrom };
 
-allow vendor_init {
-  unencrypted_data_file
-}:file { create getattr open read write setattr relabelfrom unlink };
-
 allow vendor_init debugfs_clk:file w_file_perms;
 allow vendor_init proc_uid_cpupower:file write;
 dontaudit vendor_init kernel:system module_request;