From 2cb1b31f903f2d2747f3fd05b872d9823838af1d Mon Sep 17 00:00:00 2001
From: Stephen Smalley <sds@tycho.nsa.gov>
Date: Tue, 3 Apr 2012 15:30:28 -0400
Subject: [PATCH] Allow adbd to access the qemu device and label /dev/eac
 correctly.

---
 adbd.te       | 1 +
 file_contexts | 1 +
 2 files changed, 2 insertions(+)

diff --git a/adbd.te b/adbd.te
index cc2920b34..d3f9905df 100644
--- a/adbd.te
+++ b/adbd.te
@@ -2,6 +2,7 @@
 # it lives in the rootfs and has no unique file type.
 type adbd, domain, mlstrustedsubject;
 allow adbd adb_device:chr_file rw_file_perms;
+allow adbd qemu_device:chr_file rw_file_perms;
 allow adbd self:capability { net_raw setgid setuid dac_override sys_boot sys_admin };
 allow adbd rootfs:file entrypoint;
 allow adbd init:process sigchld;
diff --git a/file_contexts b/file_contexts
index 1f9781c96..c610df37c 100644
--- a/file_contexts
+++ b/file_contexts
@@ -23,6 +23,7 @@
 /dev/console		u:object_r:console_device:s0
 /dev/cpuctl(/.*)?	u:object_r:cpuctl_device:s0
 /dev/device-mapper	u:object_r:dm_device:s0
+/dev/eac		u:object_r:audio_device:s0
 /dev/full		u:object_r:full_device:s0
 /dev/graphics(/.*)?	u:object_r:graphics_device:s0
 /dev/input(/.*)		u:object_r:input_device:s0
-- 
GitLab