diff options
Diffstat (limited to 'common/ipacm.te')
| -rw-r--r-- | common/ipacm.te | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/common/ipacm.te b/common/ipacm.te index 087092f2..000bfa5e 100644 --- a/common/ipacm.te +++ b/common/ipacm.te @@ -12,8 +12,12 @@ net_domain(ipacm) userdebug_or_eng(` # Allow using the logging file between ipacm and ipacm-diag unix_socket_send(ipacm, ipacm, ipacm-diag) + diag_use(ipacm-diag) ') +# Allow capabilities to create netfilter_socket +allow ipacm self:netlink_netfilter_socket create_socket_perms; + # Allow capabilities to perform network operations and interactions with network interfaces allow ipacm ipacm:capability net_admin; |