Move device-agnostic netd rules to fwk policy.
These were moved from vendor to fwk policy:
1. sysfs_net type declaration
2. labeling of /sys/devices/virtual/net with sysfs_net
3. netd access to sysfs_net
Bug: 65643247
Merged-In: I8c3a959de20ea121014125175f21988fa66561ea
Change-Id: I8c3a959de20ea121014125175f21988fa66561ea
(cherry picked from commit 90bbeafe2d07a6266acbb830084dae78a9439932)
diff --git a/sepolicy/file.te b/sepolicy/file.te
index 06a2c3f..f67057c 100644
--- a/sepolicy/file.te
+++ b/sepolicy/file.te
@@ -26,7 +26,6 @@
type sysfs_msm_subsys, sysfs_type, fs_type;
type sysfs_msm_subsys_restart, sysfs_type, fs_type;
type sysfs_msm_core, sysfs_type, fs_type;
-type sysfs_net, sysfs_type, fs_type, mlstrustedobject;
type sysfs_perf, sysfs_type, fs_type;
type sysfs_pcie, sysfs_type, fs_type, mlstrustedobject;
type sysfs_power_management, sysfs_type, fs_type;
diff --git a/sepolicy/genfs_contexts b/sepolicy/genfs_contexts
index 949701b..2ac0d81 100644
--- a/sepolicy/genfs_contexts
+++ b/sepolicy/genfs_contexts
@@ -25,7 +25,6 @@
genfscon sysfs /module/msm_thermal u:object_r:sysfs_thermal:s0
genfscon sysfs /class/thermal u:object_r:sysfs_thermal:s0
genfscon sysfs /module/msm_performance u:object_r:sysfs_perf:s0
-genfscon sysfs /devices/virtual/net u:object_r:sysfs_net:s0
genfscon sysfs /module/subsystem_restart u:object_r:sysfs_msm_subsys_restart:s0
genfscon sysfs /bus/msm_subsys u:object_r:sysfs_msm_subsys:s0
genfscon sysfs /devices/soc/ce0000.qcom,venus u:object_r:sysfs_msm_subsys:s0
diff --git a/sepolicy/netd.te b/sepolicy/netd.te
index 6b38b8d..67af26d 100644
--- a/sepolicy/netd.te
+++ b/sepolicy/netd.te
@@ -1,6 +1,3 @@
-allow netd sysfs_net:dir search;
-allow netd sysfs_net:file w_file_perms;
-
# in addition to ioctl commands granted to domain allow netd to use:
allowxperm netd self:udp_socket ioctl { SIOCSIFFLAGS SIOCSIFADDR SIOCGIFHWADDR };
