From e752b23df936271a20a2da6f5818067535a2e7be Mon Sep 17 00:00:00 2001
From: mark <mcampbellsmith@gmail.com>
Date: Fri, 16 Aug 2013 22:37:42 +1000
Subject: i9305: Add selinux policies

Change-Id: I69d96e7084c7b0871c9d2cd318db05b461912a43
---
 rootdir/fstab.smdk4x12 |  2 +-
 rootdir/init.target.rc | 13 ++++++++++++-
 2 files changed, 13 insertions(+), 2 deletions(-)

(limited to 'rootdir')

diff --git a/rootdir/fstab.smdk4x12 b/rootdir/fstab.smdk4x12
index f600b4c..69749bd 100644
--- a/rootdir/fstab.smdk4x12
+++ b/rootdir/fstab.smdk4x12
@@ -8,7 +8,7 @@
 /dev/block/mmcblk0p3     /efs              ext4      noatime,nosuid,nodev,journal_async_commit,errors=panic    wait,check
 /dev/block/mmcblk0p12    /cache            ext4      noatime,nosuid,nodev,journal_async_commit,errors=panic    wait,check
 /dev/block/mmcblk0p11    /tombstones       ext4      noatime,nosuid,nodev,journal_async_commit,errors=panic    wait,check
-/dev/block/mmcblk0p10    /firmware         vfat      ro,shortname=lower,fmask=0133,dmask=0022    wait
+/dev/block/mmcblk0p10    /firmware         vfat      ro,shortname=lower,fmask=0133,dmask=0022,context=u:object_r:radio_efs_file:s0    wait
 /dev/block/mmcblk0p16    /data             ext4      noatime,nosuid,nodev,discard,noauto_da_alloc,journal_async_commit,errors=panic    wait,check,encryptable=footer
 
 # vold-managed volumes ("block device" is actually a sysfs devpath)
diff --git a/rootdir/init.target.rc b/rootdir/init.target.rc
index a94f606..f0eeac4 100644
--- a/rootdir/init.target.rc
+++ b/rootdir/init.target.rc
@@ -42,6 +42,14 @@ on post-fs-data
     # an ack packet comes out of order
     write /proc/sys/net/netfilter/nf_conntrack_tcp_be_liberal 1
 
+# Restorecon
+    restorecon /efs/bluetooth/bt_addr
+    restorecon /efs/FactoryApp/keystr
+    restorecon /efs/FactoryApp/factorymode
+    restorecon /efs/FactoryApp/serial_no
+    restorecon /efs/imei/mps_code.dat
+    restorecon /efs/wifi/.mac.info
+
     # for AT distributor
     chown system radio /sys/module/cpuidle_exynos4/parameters/enable_mask
     chmod 0664 /sys/module/cpuidle_exynos4/parameters/enable_mask
@@ -91,11 +99,13 @@ service SMD-daemon /system/bin/smdexe
 service qc_kickstart /system/bin/qcks s
     class core
     user root
+    seclabel u:r:kickstart:s0
     group radio cache inet misc audio sdcard_rw log
 
 service secril-daemon /system/bin/sec-ril
     class main
     user root
+    seclabel u:r:secril-daemon:s0
     group radio cache inet misc audio sdcard_rw qcom_diag log
 
 #For EncryptionMode - remove disabled, Modify class main
@@ -106,7 +116,8 @@ service qmiproxy /system/bin/qmiproxy
 
 service qmuxd /system/bin/qmuxd
     class main
-    user root
+    user system
+    seclabel u:r:qmux:s0
     group radio log audio bluetooth gps log
 
 #start GNSS/Sensor interface daemon
-- 
cgit v1.1