diff options
| author | RGIB <gibellini.roberto@gmail.com> | 2016-05-25 02:07:46 +0200 |
|---|---|---|
| committer | Roberto Gibellini <gibellini.roberto@gmail.com> | 2016-05-24 17:38:40 -0700 |
| commit | 58ec46687de7da0bda310a27a5ef6d71d24603bd (patch) | |
| tree | 4adbc0a89eaaf0ace58e2273ba458e9462b3ee97 | |
| parent | 682ae8f8447f5d9aa3b540603205faa61d796e32 (diff) | |
| download | device_samsung_kona-common-58ec46687de7da0bda310a27a5ef6d71d24603bd.zip device_samsung_kona-common-58ec46687de7da0bda310a27a5ef6d71d24603bd.tar.gz device_samsung_kona-common-58ec46687de7da0bda310a27a5ef6d71d24603bd.tar.bz2 | |
kona : ril selinux update
Change-Id: I5254474d5c922ed2f2d4b44e928305b6a69be8d3
| -rw-r--r-- | selinux/at_distributor.te | 6 | ||||
| -rw-r--r-- | selinux/cpboot-daemon.te | 3 | ||||
| -rw-r--r-- | selinux/file_contexts | 3 | ||||
| -rw-r--r-- | selinux/geomagneticd.te | 1 |
4 files changed, 10 insertions, 3 deletions
diff --git a/selinux/at_distributor.te b/selinux/at_distributor.te index 16ad482..2a289ca 100644 --- a/selinux/at_distributor.te +++ b/selinux/at_distributor.te @@ -19,4 +19,8 @@ allow at_distributor self:capability { setuid fowner chown fsetid }; allow at_distributor efs_file:dir search; allow at_distributor radio_data_file:dir { search add_name write }; allow at_distributor efs_file:dir { search getattr }; -allow at_distributor radio_data_file:file setattr;
\ No newline at end of file +allow at_distributor radio_data_file:file setattr; +allow at_distributor servicemanager:binder call; +allow at_distributor shell_exec:file { read execute open }; +allow at_distributor system_file:file execute_no_trans; +allow at_distributor zygote_exec:file { read getattr open execute execute_no_trans }; diff --git a/selinux/cpboot-daemon.te b/selinux/cpboot-daemon.te index 26b877c..e865807 100644 --- a/selinux/cpboot-daemon.te +++ b/selinux/cpboot-daemon.te @@ -18,4 +18,5 @@ allow cpboot-daemon radio_prop:property_service set; allow cpboot-daemon self:capability { setuid dac_override }; allow cpboot-daemon sysfs:file write; allow cpboot-daemon userdata_block_device:blk_file { read open }; -allow cpboot-daemon efs_file:dir search;
\ No newline at end of file +allow cpboot-daemon efs_file:dir search; +allow cpboot-daemon sysfs_wake_lock:file { open append }; diff --git a/selinux/file_contexts b/selinux/file_contexts index 8dc1eab..b9b57ac 100644 --- a/selinux/file_contexts +++ b/selinux/file_contexts @@ -7,7 +7,8 @@ /system/bin/geomagneticd u:object_r:geomagneticd_exec:s0 /efs/bluetooth(/.*)? u:object_r:bluetooth_data_file:s0 -/data/system/yas(/.*)? u:object_r:gps_data_file:s0 +/data/system/yas.cfg u:object_r:gps_data_file:s0 +/data/system/yas-backup.cfg u:object_r:gps_data_file:s0 /data/system/gps(/.*)? u:object_r:gps_data_file:s0 /data/misc/radio(/.*)? u:object_r:radio_data_file:s0 /data/.socket_stream u:object_r:radio_data_file:s0 diff --git a/selinux/geomagneticd.te b/selinux/geomagneticd.te index 8b477ad..de18064 100644 --- a/selinux/geomagneticd.te +++ b/selinux/geomagneticd.te @@ -11,5 +11,6 @@ allow geomagneticd sysfs:file write; allow geomagneticd input_device:dir search; allow geomagneticd gps_data_file:dir { write remove_name add_name }; allow geomagneticd gps_data_file:file { write rename create open setattr }; +allow geomagneticd self:capability dac_override; # load SHIM libraries allow init geomagneticd:process noatsecure;
\ No newline at end of file |