diff options
| author | nailyk-fr <nailyk_git@nailyk.fr> | 2017-02-09 12:46:00 +0100 |
|---|---|---|
| committer | nailyk-fr <nailyk_git@nailyk.fr> | 2017-02-21 20:15:18 +0100 |
| commit | b286cc9e9453297e668ce342e39bf48a1afd9f92 (patch) | |
| tree | d3898687d10d1b2466a1ae9ba9d6a78be0a130e3 | |
| parent | cdb21d2ec2a55a6b4d37b5249d47e4ab7ce95a0e (diff) | |
shinano-common: Adjust idd perms
Change-Id: If920b5e5265aca89020bd000904d586cd879cc85
| -rw-r--r-- | rootdir/init.qcom.rc | 22 | ||||
| -rw-r--r-- | sepolicy/file_contexts | 5 | ||||
| -rw-r--r-- | sepolicy/idd.te | 9 |
3 files changed, 24 insertions, 12 deletions
diff --git a/rootdir/init.qcom.rc b/rootdir/init.qcom.rc index 46d165b..4e8cf01 100644 --- a/rootdir/init.qcom.rc +++ b/rootdir/init.qcom.rc @@ -532,15 +532,14 @@ service iddd /system/bin/iddd -v class main user idd group idd log inet trimarea credmgr_client system - writepid /dev/cpuset/system-background/tasks on property:gsm.nitz.time=* start scdnotifier_nitz # Start suntrold service suntrold /system/bin/suntrold - user root - group root + user system + group system oneshot class main @@ -572,13 +571,12 @@ service bugreport /system/bin/dumpstate -d -p -B \ # Secure Config Transfer service service sct_service /system/bin/sct_service user root - class main disabled # Trim Area QMI service service ta_qmi_service /system/bin/ta_qmi_service user ta_qmi - group ta_qmi trimarea system root net_raw + group ta_qmi trimarea system root net_raw wakelock disabled # Modem Log QMI service @@ -605,6 +603,12 @@ service scdnotifier_nitz /system/bin/scdnotifier nitz on property:sys.listeners.registered=true start wvkbd_installer +service wvkbd_installer /system/bin/wvkbd + user system + group system + oneshot + disabled + # Thermal Manager service service thermanager /system/bin/thermanager /system/etc/thermanager.xml class main @@ -656,17 +660,11 @@ service audiod /system/bin/audiod service tad_static /sbin/tad_static /dev/block/bootdevice/by-name/TA 0,16 class trimarea user tad - group trimarea root + group tad trimarea root socket tad stream 0660 system trimarea # tad_static is in rootfs, normal file_context does not work seclabel u:r:tad:s0 -service updatemiscta /system/bin/updatemiscta - class main - user updatemiscta - group trimarea - oneshot - # Redefined Service service audioserver /system/bin/audioserver class main diff --git a/sepolicy/file_contexts b/sepolicy/file_contexts index 7b54068..69b759b 100644 --- a/sepolicy/file_contexts +++ b/sepolicy/file_contexts @@ -26,3 +26,8 @@ /dev/socket/secd_ebl_sock u:object_r:secd_socket:s0 /data/credmgr u:object_r:secd_data_file:s0 /data/credmgr(/.*) u:object_r:secd_data_file:s0 + +/system/bin/scd u:object_r:scd_exec:s0 +/system/bin/scdnotifier u:object_r:scd_exec:s0 + +/system/bin/wvkbd u:object_r:wv_exec:s0 diff --git a/sepolicy/idd.te b/sepolicy/idd.te index 218bc0c..a840e9b 100644 --- a/sepolicy/idd.te +++ b/sepolicy/idd.te @@ -13,3 +13,12 @@ type_transition iddd system_data_file:file iddd_file; type credmgr, domain; type credmgr_exec, exec_type, file_type; init_daemon_domain(credmgr); + + +type scd, domain; +type scd_exec, exec_type, file_type; +init_daemon_domain(scd) + +type wv,domain; +type wv_exec, exec_type, file_type; +init_daemon_domain(wv) |