diff options
| author | Daniel Hillenbrand <codeworkx@cyanogenmod.org> | 2013-08-11 18:23:24 +0200 |
|---|---|---|
| committer | Daniel Hillenbrand <codeworkx@cyanogenmod.org> | 2013-08-11 18:23:24 +0200 |
| commit | b9b5153777024513e267cf93ec2b0f1a92705686 (patch) | |
| tree | 0c1291e9ff421d404b9605e4e94e6002d8986323 | |
| parent | 605a7bbb337434c21a666334ed9e166165503a0c (diff) | |
| download | device_samsung_espressowifi-b9b5153777024513e267cf93ec2b0f1a92705686.zip device_samsung_espressowifi-b9b5153777024513e267cf93ec2b0f1a92705686.tar.gz device_samsung_espressowifi-b9b5153777024513e267cf93ec2b0f1a92705686.tar.bz2 | |
p3100: refine sepolicies
Change-Id: I7a88c22c41e5ec5e5dc74b87509215986f859dbe
| -rw-r--r-- | BoardConfigCommon.mk | 3 | ||||
| -rwxr-xr-x | rootdir/init.espresso.rc | 1 | ||||
| -rw-r--r-- | selinux/domain.te | 3 | ||||
| -rw-r--r-- | selinux/file_contexts | 3 | ||||
| -rw-r--r-- | selinux/wpa_supplicant.te | 2 |
5 files changed, 7 insertions, 5 deletions
diff --git a/BoardConfigCommon.mk b/BoardConfigCommon.mk index a0fc6eb..c25ef57 100644 --- a/BoardConfigCommon.mk +++ b/BoardConfigCommon.mk @@ -99,7 +99,8 @@ BOARD_SEPOLICY_UNION := \ device.te \ domain.te \ pvrsrvinit.te \ - rild.te + rild.te \ + wpa_supplicant.te # Recovery TARGET_RECOVERY_PIXEL_FORMAT := "BGRA_8888" diff --git a/rootdir/init.espresso.rc b/rootdir/init.espresso.rc index 9c8b7d5..ad3872f 100755 --- a/rootdir/init.espresso.rc +++ b/rootdir/init.espresso.rc @@ -63,6 +63,7 @@ on fs restorecon /efs/FactoryApp/keystr restorecon /efs/FactoryApp/serial_no restorecon /efs/imei/mps_code.dat + restorecon /efs/wifi/.mac.info # pvr module insmod /system/lib/modules/pvrsrvkm_sgx540_120.ko diff --git a/selinux/domain.te b/selinux/domain.te index 7cf1def..ebb4d8b 100644 --- a/selinux/domain.te +++ b/selinux/domain.te @@ -1,8 +1,5 @@ ## Pvrsrvinit allow domain powervr_device:chr_file rw_file_perms; -## /dev/rfkill for wpa_supp -allow wpa rfkill_device:chr_file rw_file_perms; - ## Firmwares allow ueventd { firmware_ducati }:file r_file_perms; diff --git a/selinux/file_contexts b/selinux/file_contexts index a64887a..2c0d875 100644 --- a/selinux/file_contexts +++ b/selinux/file_contexts @@ -18,8 +18,9 @@ # GPS /dev/ttyO0 u:object_r:gps_device:s0 -# for wpa_supp +# Wifi /dev/rfkill u:object_r:rfkill_device:s0 +/efs/wifi/.mac.info u:object_r:wifi_data_file:s0 # System binaries /system/vendor/bin/pvrsrvinit u:object_r:pvrsrvinit_exec:s0 diff --git a/selinux/wpa_supplicant.te b/selinux/wpa_supplicant.te new file mode 100644 index 0000000..f93d624 --- /dev/null +++ b/selinux/wpa_supplicant.te @@ -0,0 +1,2 @@ +allow wpa_socket wifi_data_file:sock_file unlink; +allow wpa rfkill_device:chr_file rw_file_perms; |