Gitiles
Code Review Sign In
gerrit-public.fairphone.software / device / qcom / sepolicy / e6fe86a3b9ef35541a09447b6abb614f4cee32d5 / . / common / netd.te
blob: ed60ec02988470366e1a56f59ac9d527e3a4480a [file] [log] [blame]
Subash Abhinov Kasiviswanathan2c3fed32014-03-12 17:13:13 -0600[diff] [blame]1#Policies for IPv6 tethering
2allow netd netd:capability { setgid setuid };
Biswajit Paul64f83f62014-10-13 14:36:16 -0700[diff] [blame]3dontaudit netd self:capability sys_module;
Bryse Flowers31f25fc2016-05-21 19:00:49 -0700[diff] [blame]4binder_use(netd);
5allow netd qtitetherservice_service:service_manager find;
Ravi Kumar Siddojigari91ffd842014-10-15 17:38:15 +0530[diff] [blame]6
Biswajit Paul2d35d982017-02-01 17:40:10 -0800[diff] [blame]7allow netd netd:packet_socket create_socket_perms_no_ioctl;
Avijit Kanti Das441bad42015-05-12 14:07:41 -0700[diff] [blame]8
Ravi Kumar Siddojigaric7def122017-06-13 00:49:19 +0530[diff] [blame]9#unix_socket_connect(netd, cnd, cnd)
Manu Prasad6b869a82014-12-05 18:53:01 +0530[diff] [blame]10
11allow netd wfdservice:fd use;
Ravi Kumar Siddojigaric7def122017-06-13 00:49:19 +0530[diff] [blame]12#allow netd wfdservice:tcp_socket rw_socket_perms;
Deepak Kushwahf9d0b752017-07-26 15:14:12 +0530[diff] [blame]13hal_client_domain(netd, wifidisplayhalservice);
Ravinder Konkabbe60732015-05-27 17:18:26 +0530[diff] [blame]14
15# allow to read /data/misc/ipa/tether_stats file
16allow netd ipacm_data_file:dir r_dir_perms;
17allow netd ipacm_data_file:file r_file_perms;
Hamad Kadmany567ffc72015-08-27 15:36:39 +0300[diff] [blame]18
Ashwanth Goliad2c7ef2016-06-03 12:55:06 +0530[diff] [blame]19#allow netd to use privileged sock ioctls
20allowxperm netd self: { unix_stream_socket } ioctl priv_sock_ioctls;
21
Hamad Kadmany567ffc72015-08-27 15:36:39 +0300[diff] [blame]22# needed for netd to start FST Manager via system property
23allow netd netd_prop:property_service set;
Sravanthi Palakonda7e92d042015-11-06 16:56:06 +0530[diff] [blame]24
25allow netd self:capability fsetid;
Ravi Kumar Siddojigaric7def122017-06-13 00:49:19 +0530[diff] [blame]26#allow netd hostapd:unix_dgram_socket sendto;
Sravanthi Palakonda7e92d042015-11-06 16:56:06 +0530[diff] [blame]27
28# Allow netd to chmod dir /data/misc/dhcp
29allow netd dhcp_data_file:dir create_dir_perms;
30
31type_transition netd wifi_data_file:dir wpa_socket "sockets";
32allow netd wpa_socket:dir create_dir_perms;
Ravi Kumar Siddojigaric7def122017-06-13 00:49:19 +0530[diff] [blame]33#allow netd wpa_socket:sock_file create_file_perms;