diff options
| author | Steve Kondik <shade@chemlab.org> | 2014-05-11 02:57:57 -0700 |
|---|---|---|
| committer | Steve Kondik <shade@chemlab.org> | 2014-05-11 03:49:18 -0700 |
| commit | fdf1aff5ad1bc5f22e05d26c301a93c443c36c3c (patch) | |
| tree | 3a9f95fee3fb45d5a47090e3f0ce988af462ccbf /sepolicy | |
| parent | 674bebbd6d3e79dd110e7fc415f464d220e91bee (diff) | |
| download | vendor_replicant-fdf1aff5ad1bc5f22e05d26c301a93c443c36c3c.tar.gz vendor_replicant-fdf1aff5ad1bc5f22e05d26c301a93c443c36c3c.tar.bz2 vendor_replicant-fdf1aff5ad1bc5f22e05d26c301a93c443c36c3c.zip | |
cm: policy for ipv6 tethering
* Enable use of radish via netd for ipv6 tethering
Change-Id: Ifa0e85686fc70f59c089ca40a78cea9935820185
Diffstat (limited to 'sepolicy')
| -rw-r--r-- | sepolicy/file_contexts | 2 | ||||
| -rw-r--r-- | sepolicy/netd.te | 4 | ||||
| -rw-r--r-- | sepolicy/sepolicy.mk | 1 |
3 files changed, 7 insertions, 0 deletions
diff --git a/sepolicy/file_contexts b/sepolicy/file_contexts index 78b3ee18..e23df31f 100644 --- a/sepolicy/file_contexts +++ b/sepolicy/file_contexts @@ -6,3 +6,5 @@ /sys/devices/system/cpu.*/cpufreq(/.*)? -- u:object_r:sysfs_devices_system_cpu:s0 /sys/block/mmcblk0/queue/scheduler -- u:object_r:sysfs_writable:s0 +/data/hostapd(/.*)? u:object_r:wifi_data_file:s0 +/data/misc/radio(/.*)? u:object_r:radio_data_file:s0 diff --git a/sepolicy/netd.te b/sepolicy/netd.te new file mode 100644 index 00000000..4ad0b3ed --- /dev/null +++ b/sepolicy/netd.te @@ -0,0 +1,4 @@ +allow netd self:capability { setuid sys_module setgid }; +allow netd self:packet_socket create_socket_perms; +allow netd radio_data_file:dir rw_dir_perms; +allow netd radio_data_file:file create_file_perms; diff --git a/sepolicy/sepolicy.mk b/sepolicy/sepolicy.mk index 0508bf63..b50ec1d7 100644 --- a/sepolicy/sepolicy.mk +++ b/sepolicy/sepolicy.mk @@ -13,6 +13,7 @@ BOARD_SEPOLICY_UNION += \ genfs_contexts \ seapp_contexts \ installd.te \ + netd.te \ ueventd.te \ vold.te \ mac_permissions.xml |