Commits

Stephen Smalley committed 0f9a1d3

Sync to seandroid branch.

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>

Comments (0)

Files changed (5)

BoardConfigCommon.mk

 BOARD_SEPOLICY_UNION += \
         file_contexts \
         genfs_contexts \
+        bluetooth.te \
         device.te \
         drmserver.te \
         file.te \

sepolicy/bluetooth.te

+# Kernel bug for Linux < 3.3: sysfs inodes can lose their security context
+# and revert to the base sysfs type.
+allow bluetooth sysfs:file write;

sepolicy/init_shell.te

 allow init_shell sysfs_firmware_writable:file w_file_perms;
+
+# Kernel bug for Linux < 3.3: sysfs inodes can lose their security context
+# and revert to the base sysfs type.
+allow init_shell sysfs:file write;
 allow rild diag_device:chr_file rw_file_perms;
+
+# Kernel bug for Linux < 3.3: sysfs inodes can lose their security context
+# and revert to the base sysfs type.
+allow rild sysfs:file write;

sepolicy/surfaceflinger.te

 allow surfaceflinger sysfs_devices_tegradc:dir r_dir_perms;
 allow surfaceflinger sysfs_devices_tegradc:lnk_file { open getattr read };
 allow surfaceflinger sysfs_devices_system_cpu:dir w_dir_perms;
+
+# Kernel bug for Linux < 3.3: sysfs inodes can lose their security context
+# and revert to the base sysfs type.
+allow surfaceflinger sysfs:file write;