From 58ec46687de7da0bda310a27a5ef6d71d24603bd Mon Sep 17 00:00:00 2001
From: RGIB <gibellini.roberto@gmail.com>
Date: Wed, 25 May 2016 02:07:46 +0200
Subject: kona : ril selinux update

Change-Id: I5254474d5c922ed2f2d4b44e928305b6a69be8d3
---
 selinux/at_distributor.te | 6 +++++-
 selinux/cpboot-daemon.te  | 3 ++-
 selinux/file_contexts     | 3 ++-
 selinux/geomagneticd.te   | 1 +
 4 files changed, 10 insertions(+), 3 deletions(-)

(limited to 'selinux')

diff --git a/selinux/at_distributor.te b/selinux/at_distributor.te
index 16ad482..2a289ca 100644
--- a/selinux/at_distributor.te
+++ b/selinux/at_distributor.te
@@ -19,4 +19,8 @@ allow at_distributor self:capability { setuid fowner chown fsetid };
 allow at_distributor efs_file:dir search;
 allow at_distributor radio_data_file:dir { search add_name write };
 allow at_distributor efs_file:dir { search getattr };
-allow at_distributor radio_data_file:file setattr;
\ No newline at end of file
+allow at_distributor radio_data_file:file setattr;
+allow at_distributor servicemanager:binder call;
+allow at_distributor shell_exec:file { read execute open };
+allow at_distributor system_file:file execute_no_trans;
+allow at_distributor zygote_exec:file { read getattr open execute execute_no_trans };
diff --git a/selinux/cpboot-daemon.te b/selinux/cpboot-daemon.te
index 26b877c..e865807 100644
--- a/selinux/cpboot-daemon.te
+++ b/selinux/cpboot-daemon.te
@@ -18,4 +18,5 @@ allow cpboot-daemon radio_prop:property_service set;
 allow cpboot-daemon self:capability { setuid dac_override };
 allow cpboot-daemon sysfs:file write;
 allow cpboot-daemon userdata_block_device:blk_file { read open };
-allow cpboot-daemon efs_file:dir search;
\ No newline at end of file
+allow cpboot-daemon efs_file:dir search;
+allow cpboot-daemon sysfs_wake_lock:file { open append };
diff --git a/selinux/file_contexts b/selinux/file_contexts
index 8dc1eab..b9b57ac 100644
--- a/selinux/file_contexts
+++ b/selinux/file_contexts
@@ -7,7 +7,8 @@
 /system/bin/geomagneticd	u:object_r:geomagneticd_exec:s0
 
 /efs/bluetooth(/.*)?		u:object_r:bluetooth_data_file:s0
-/data/system/yas(/.*)?		u:object_r:gps_data_file:s0
+/data/system/yas.cfg		u:object_r:gps_data_file:s0
+/data/system/yas-backup.cfg	u:object_r:gps_data_file:s0
 /data/system/gps(/.*)?		u:object_r:gps_data_file:s0
 /data/misc/radio(/.*)?		u:object_r:radio_data_file:s0
 /data/.socket_stream		u:object_r:radio_data_file:s0
diff --git a/selinux/geomagneticd.te b/selinux/geomagneticd.te
index 8b477ad..de18064 100644
--- a/selinux/geomagneticd.te
+++ b/selinux/geomagneticd.te
@@ -11,5 +11,6 @@ allow geomagneticd sysfs:file write;
 allow geomagneticd input_device:dir search;
 allow geomagneticd gps_data_file:dir { write remove_name add_name };
 allow geomagneticd gps_data_file:file { write rename create open setattr };
+allow geomagneticd self:capability dac_override;
 # load SHIM libraries
 allow init geomagneticd:process noatsecure;
\ No newline at end of file
-- 
cgit v1.1