Do not allow access to device:chr_file for system Also labels /dev/mpu and /dev/mpuirq as gps device. mpu is motion processing unit and is resposible for gyroscope functionality. Change-Id: If7f1a5752c550b72fac681566e1052f09e139ff0

commit: 6a64897a4b098e834f7b6679c0c5b85fdbb752b2 [log] [tgz]
author: William Roberts <w.roberts@sta.samsung.com> Fri Jan 18 12:18:09 2013 -0800
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Tue Mar 19 22:27:03 2013 +0000
tree: 314acf472424abd3c633767c44035d6942d7e3a5
parent: 1c8464e1365950538e9e4647a4f220910f79ab1e [diff]
diff --git a/file_contexts b/file_contexts
index b2d253a..3b207c9 100644
--- a/file_contexts
+++ b/file_contexts

@@ -55,6 +55,8 @@
 /dev/log(/.*)?		u:object_r:log_device:s0
 /dev/mem		u:object_r:kmem_device:s0
 /dev/modem.*		u:object_r:radio_device:s0
+/dev/mpu		u:object_r:gps_device:s0
+/dev/mpuirq		u:object_r:gps_device:s0
 /dev/mtd(/.*)?		u:object_r:mtd_device:s0
 /dev/mtd/mtd5		u:object_r:radio_device:s0
 /dev/mtd/mtd5ro		u:object_r:radio_device:s0

diff --git a/system.te b/system.te
index 3ede14a..192b14f 100644
--- a/system.te
+++ b/system.te

@@ -143,7 +143,6 @@
 
 # Access devices.
 allow system device:dir r_dir_perms;
-allow system device:chr_file rw_file_perms;
 allow system device:sock_file rw_file_perms;
 allow system akm_device:chr_file rw_file_perms;
 allow system accelerometer_device:chr_file rw_file_perms;
commit	6a64897a4b098e834f7b6679c0c5b85fdbb752b2	[log] [tgz]
author	William Roberts <w.roberts@sta.samsung.com>	Fri Jan 18 12:18:09 2013 -0800
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Tue Mar 19 22:27:03 2013 +0000
tree	314acf472424abd3c633767c44035d6942d7e3a5
parent	1c8464e1365950538e9e4647a4f220910f79ab1e [diff]