From 318e0c9cef16d5588cbafcd87c6a348b1fc446cd Mon Sep 17 00:00:00 2001
From: "jaejyn.shin" <jaejyn.shin@lge.com>
Date: Thu, 10 Apr 2014 13:32:54 +0900
Subject: [PATCH] pstore file system labeling

pstore(persistent store) have been applied since kernel 3.5
We need to label the pstore-fs in order to use Android with kernel 3.5 or upper version.
My kernel version is 3.10 and I got the below denial log when I ran the "df" command on the adb shell.

type=1400 msg=audit(1388540540.220:18): avc: denied { getattr } for pid=7296 comm="df" name="/" dev="pstore" ino=7703 scontext=u:r:init:s0 tcontext=u:object_r:unlabeled:s0 tclass=filesystem

And the below log is also shown during booting

type=1400 msg=audit(1388539193.750:4): avc: denied { mount } for pid=2844 comm="mount" name="/" dev="pstore" ino=11393 scontext=u:r:init_shell:s0 tcontext=u:object_r:unlabeled:s0 tclass=filesystem

Change-Id: Iaba543d44565c4f20a77a95b9573a628bbd3fd34
---
 file.te        | 1 +
 genfs_contexts | 1 +
 2 files changed, 2 insertions(+)

diff --git a/file.te b/file.te
index 5dd6c9cbd..0ddf50f1f 100644
--- a/file.te
+++ b/file.te
@@ -31,6 +31,7 @@ type mqueue, fs_type;
 type sdcard_internal, sdcard_type, fs_type, mlstrustedobject;
 type sdcard_external, sdcard_type, fs_type, mlstrustedobject;
 type debugfs, fs_type, mlstrustedobject;
+type pstorefs, fs_type;
 
 # File types
 type unlabeled, file_type;
diff --git a/genfs_contexts b/genfs_contexts
index f247cec0c..07208f943 100644
--- a/genfs_contexts
+++ b/genfs_contexts
@@ -28,3 +28,4 @@ genfscon inotifyfs / u:object_r:inotify:s0
 genfscon vfat / u:object_r:sdcard_external:s0
 genfscon debugfs / u:object_r:debugfs:s0
 genfscon fuse / u:object_r:sdcard_internal:s0
+genfscon pstore / u:object_r:pstorefs:s0
-- 
GitLab