diff options
Diffstat (limited to 'sepolicy/common/hostapd_nohidl.te')
| -rw-r--r-- | sepolicy/common/hostapd_nohidl.te | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/sepolicy/common/hostapd_nohidl.te b/sepolicy/common/hostapd_nohidl.te index add648a..badad45 100644 --- a/sepolicy/common/hostapd_nohidl.te +++ b/sepolicy/common/hostapd_nohidl.te @@ -6,10 +6,12 @@ net_domain(hostapd_nohidl) allow hostapd_nohidl execns:fd use; +allow hostapd_nohidl hostapd_data_file:file r_file_perms; +allow hostapd_nohidl hostapd_data_file:dir r_dir_perms; allow hostapd_nohidl self:capability { net_admin net_raw }; allow hostapd_nohidl self:netlink_generic_socket { bind create getattr read setopt write }; allow hostapd_nohidl self:netlink_route_socket nlmsg_write; -allow hostapd_nohidl self:packet_socket { create setopt }; +allow hostapd_nohidl self:packet_socket { create setopt read write }; allowxperm hostapd_nohidl self:udp_socket ioctl priv_sock_ioctls; # hostapd will attempt to search sysfs but it's not needed and will spam the log |