SELinux policy for Bluetooth properties.
Properties under bluetooth. and persist.service.bdroid. are
considered Bluetooth-related properties.
Change-Id: Iee937d9a1184c2494deec46f9ed7090c643acda7
diff --git a/bluetooth.te b/bluetooth.te
index c6ff619..a7b9a4e 100644
--- a/bluetooth.te
+++ b/bluetooth.te
@@ -30,5 +30,8 @@
# Talk to init over the property socket.
unix_socket_connect(bluetooth, property, init)
+# Property Service
+allow bluetooth bluetooth_prop:property_service set;
+
# proc access.
allow bluetooth proc_bluetooth_writable:file rw_file_perms;
diff --git a/property.te b/property.te
index adebc6a..69dff91 100644
--- a/property.te
+++ b/property.te
@@ -9,3 +9,4 @@
type ctl_rildaemon_prop, property_type;
type audio_prop, property_type;
type security_prop, property_type;
+type bluetooth_prop, property_type;
diff --git a/property_contexts b/property_contexts
index 7b0ce04..e32cddd 100644
--- a/property_contexts
+++ b/property_contexts
@@ -23,6 +23,7 @@
service. u:object_r:system_prop:s0
wlan. u:object_r:system_prop:s0
dhcp. u:object_r:system_prop:s0
+bluetooth. u:object_r:bluetooth_prop:s0
debug. u:object_r:shell_prop:s0
log. u:object_r:shell_prop:s0
@@ -32,6 +33,7 @@
persist.audio. u:object_r:audio_prop:s0
persist.sys. u:object_r:system_prop:s0
persist.service. u:object_r:system_prop:s0
+persist.service.bdroid. u:object_r:bluetooth_prop:s0
persist.security. u:object_r:system_prop:s0
# mmac persistent properties
