te_macros: drop unused macros
boolean and setenforce macros are not used in base policy
and cannot be used in any policy, since they violate
neverallow rules.
Remove these from the policy.
Change-Id: Icc0780eaf06e95af36306031e1f615b05cb79869
Signed-off-by: William Roberts <william.c.roberts@intel.com>
diff --git a/te_macros b/te_macros
index 9600b52..ec97b3f 100644
--- a/te_macros
+++ b/te_macros
@@ -233,22 +233,6 @@
')
#####################################
-# selinux_setenforce(domain)
-# Allow domain to set SELinux to enforcing.
-define(`selinux_setenforce', `
-allow $1 selinuxfs:file rw_file_perms;
-allow $1 kernel:security setenforce;
-')
-
-#####################################
-# selinux_setbool(domain)
-# Allow domain to set SELinux booleans.
-define(`selinux_setbool', `
-allow $1 selinuxfs:file rw_file_perms;
-allow $1 kernel:security setbool;
-')
-
-#####################################
# create_pty(domain)
# Allow domain to create and use a pty, isolated from any other domain ptys.
define(`create_pty', `