From e63aed4ff175fa322e9a776d526e9fbe2d67127f Mon Sep 17 00:00:00 2001
From: clarencelol <clarencekuiek@icloud.com>
Date: Mon, 25 Oct 2021 20:33:08 +0800
Subject: [PATCH] sdm660-common: sepolicy: Goodbye neverallows

* Drop some neverallows along the way

Signed-off-by: clarencelol <clarencekuiek@icloud.com>
Signed-off-by: pix106 <sbordenave@gmail.com>
---
 sepolicy/vendor/cameraserver.te   | 1 -
 sepolicy/vendor/qti_init_shell.te | 2 --
 2 files changed, 3 deletions(-)

diff --git a/sepolicy/vendor/cameraserver.te b/sepolicy/vendor/cameraserver.te
index 9589c77f..c343eaa6 100644
--- a/sepolicy/vendor/cameraserver.te
+++ b/sepolicy/vendor/cameraserver.te
@@ -1,6 +1,5 @@
 binder_call(cameraserver, mediacodec);
 get_prop(cameraserver, vendor_persist_camera_prop)
 get_prop(cameraserver, vendor_video_prop)
-set_prop(cameraserver, camera_prop)
 set_prop(cameraserver, system_prop)
 binder_call(cameraserver, mediacodec)
diff --git a/sepolicy/vendor/qti_init_shell.te b/sepolicy/vendor/qti_init_shell.te
index 749ccf2a..67e6b631 100644
--- a/sepolicy/vendor/qti_init_shell.te
+++ b/sepolicy/vendor/qti_init_shell.te
@@ -8,8 +8,6 @@ allow qti_init_shell ctl_stop_prop:property_service set;
 allow qti_init_shell self:perf_event cpu;
 allow qti_init_shell sysfs:file { setattr write };
 allow qti_init_shell qti_init_shell:perf_event { cpu };
-allow qti_init_shell vendor_default_prop:property_service { set };
-allow qti_init_shell system_prop:property_service { set };
 
 dontaudit qti_init_shell system_prop:property_service set;
 dontaudit qti_init_shell self:capability { dac_override dac_read_search };