From fcdb653e5934b725de5060fb16876f194957b8e5 Mon Sep 17 00:00:00 2001
From: RGIB <gibellini.roberto@gmail.com>
Date: Sun, 26 Jun 2016 21:01:24 +0200
Subject: kona : selinux update

Change-Id: I61cc4370503cdfb473df5bed1abf444db9afbdcd
---
 selinux/file_contexts   | 2 ++
 selinux/macloader.te    | 4 +++-
 selinux/qc_kickstart.te | 1 +
 selinux/rild.te         | 1 +
 4 files changed, 7 insertions(+), 1 deletion(-)

(limited to 'selinux')

diff --git a/selinux/file_contexts b/selinux/file_contexts
index a1d9f80..6fbb578 100644
--- a/selinux/file_contexts
+++ b/selinux/file_contexts
@@ -23,6 +23,8 @@
 /data/misc/radio(/.*)?		u:object_r:radio_data_file:s0
 /data/.socket_stream		u:object_r:radio_data_file:s0
 /data/cfw(/.*)?			u:object_r:camera_data_file:s0
+/data/.cid.info			u:object_r:wifi_data_file:s0
+/efs/wifi/.mac.info             u:object_r:wifi_data_file:s0
 
 /dev/__cbd_msg_			u:object_r:radio_device:s0
 /dev/ttySAC0			u:object_r:serial_device:s0
diff --git a/selinux/macloader.te b/selinux/macloader.te
index 48e1e96..bd26206 100644
--- a/selinux/macloader.te
+++ b/selinux/macloader.te
@@ -1,2 +1,4 @@
 allow macloader efs_file:file { read open getattr };
-allow macloader efs_file:dir search;
\ No newline at end of file
+allow macloader efs_file:dir search;
+allow macloader wifi_data_file:file write;
+allow macloader wifi_data_file:file unlink;
diff --git a/selinux/qc_kickstart.te b/selinux/qc_kickstart.te
index 1f37dc8..2e26345 100644
--- a/selinux/qc_kickstart.te
+++ b/selinux/qc_kickstart.te
@@ -14,3 +14,4 @@ allow qc_kickstart qc_kickstart_exec:file execute_no_trans;
 allow qc_kickstart tombstone_data_file:dir search;
 allow qc_kickstart userdata_block_device:blk_file write;
 allow qc_kickstart vfat:dir search;
+allow qc_kickstart unlabeled:dir search;
diff --git a/selinux/rild.te b/selinux/rild.te
index f6e3d6c..d999b16 100644
--- a/selinux/rild.te
+++ b/selinux/rild.te
@@ -15,3 +15,4 @@ allow rild devpts:chr_file { read write getattr };
 allow rild init:unix_stream_socket { read write listen accept getopt };
 allow rild radio_data_file:file { read getattr open };
 allow rild socket_device:dir remove_name;
+allow rild socket_device:sock_file unlink;
-- 
cgit v1.1