28 files changed, 171 insertions, 72 deletions

diff --git a/sepolicy/recovery.te b/sepolicy/recovery.te
index 033ac7a..3be1941 100644
--- a/sepolicy/recovery.te
+++ b/sepolicy/recovery.te
@@ -26,14 +26,26 @@ allow recovery recovery:capability { net_admin };
 allow recovery aml_display_prop:file {open read getattr};
 allow recovery uboot_prop:file {open read getattr};
 
-allow recovery update_data_file:file rw_file_perms;
-allow recovery update_data_file:dir { search read write open };
+allow recovery self:capability2 syslog;
+allow recovery sysfs_fs_ext4_features:dir search;
+allow recovery sysfs_fs_ext4_features:file read;
+
+#allow recovery update_data_file:file rw_file_perms;
+#allow recovery update_data_file:dir { search read write open };
 
 allow recovery graphics_device:dir {search};
 allow recovery graphics_device:chr_file {open read write ioctl};
 
 allow shell rootfs:file { entrypoint execute getattr open read };
 
+allow recovery bcmdl_prop:file { getattr open };
+allow recovery media_prop:file { getattr open };
+allow recovery sysfs_audio_cap:file read;
+allow recovery sysfs_video:file { open read write };
+allow recovery tv_config_prop:file { getattr open };
+allow recovery tv_prop:file { getattr open };
+allow recovery wifi_prop:file { getattr open };
+
 allow shell tmpfs:file {open read getattr};
 allow shell sysfs:file { read open };
 allow shell rootfs:file {execute_no_trans};