Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

This project is archived. Its data is read-only.

Commit dc699fb1 authored Feb 12, 2015 by Emerson Pinter Committed by Gerrit Code Review Mar 17, 2015

sepolicy: Permissions for userinit

Change-Id: Icaf9d191841a6214925729e40d84a61a2ebf2296

parent 8df987a3

sepolicy/file_contexts

+1 −0

Original line number	Diff line number	Diff line
		@@ -12,6 +12,7 @@
		/system/bin/sysinit u:object_r:sysinit_exec:s0

		/system/etc/init.d/90userinit u:object_r:userinit_exec:s0
		/data/local/userinit.sh u:object_r:userinit_data_exec:s0

		# For minivold in recovery
		/sbin/minivold u:object_r:vold_exec:s0

sepolicy/sysinit.te

+10 −0

Original line number	Diff line number	Diff line
		@@ -9,3 +9,13 @@ allow sysinit shell_exec:file { rx_file_perms };
		allow sysinit system_file:file { rx_file_perms };
		allow sysinit self:process setcurrent;

		userdebug_or_eng(`
		allow sysinit userinit_data_exec:file { r_file_perms relabelto };
		allow sysinit property_socket:sock_file write;
		allow sysinit init:unix_stream_socket connectto;
		allow sysinit userinit_prop:property_service set;
		allow sysinit sysfs:file rw_file_perms;
		allow sysinit sysfs_devices_system_cpu:file write;
		allow sysinit self:capability dac_override;
		allow sysinit userinit_exec:file { rx_file_perms };
		')

sepolicy/userinit.te

+1 −0

Original line number	Diff line number	Diff line
		type userinit_exec, exec_type, file_type;
		type userinit_data_exec, file_type;

		allow userinit_exec userinit_prop:property_service set;