diff options
| author | rpcraig <rpcraig@tycho.ncsc.mil> | 2012-12-04 08:09:02 -0500 |
|---|---|---|
| committer | Stephen Smalley <sds@tycho.nsa.gov> | 2013-03-22 15:05:44 -0400 |
| commit | ff7e5305b87da76735add3444846814958c5d555 (patch) | |
| tree | 9251acbf390e24bf45e671601201770b35156c6f /netd.te | |
| parent | 4d3f1089aa3c763e4e2c2ccbce2ab23dd700ea48 (diff) | |
| download | android_external_sepolicy-ff7e5305b87da76735add3444846814958c5d555.tar.gz android_external_sepolicy-ff7e5305b87da76735add3444846814958c5d555.tar.bz2 android_external_sepolicy-ff7e5305b87da76735add3444846814958c5d555.zip | |
Create policy for PAN connections.
Policy to allow bluetooth tethering.
Change-Id: Ic24c97b0e1dc93395b8381b78ca4929baa30337c
Signed-off-by: rpcraig <rpcraig@tycho.ncsc.mil>
Diffstat (limited to 'netd.te')
| -rw-r--r-- | netd.te | 9 |
1 files changed, 8 insertions, 1 deletions
@@ -4,7 +4,7 @@ type netd_exec, exec_type, file_type; init_daemon_domain(netd) typeattribute netd mlstrustedsubject; -allow netd self:capability { net_admin net_raw sys_module }; +allow netd self:capability { net_admin net_raw sys_module kill }; allow netd self:netlink_kobject_uevent_socket *; allow netd self:netlink_route_socket *; allow netd self:netlink_nflog_socket *; @@ -28,3 +28,10 @@ allow netd sysfs:file write; # Network driver loading. allow netd kernel:system module_request; +# Set dhcp lease for PAN connection +unix_socket_connect(netd, property, init) +allow netd system_prop:property_service set; + +# Connect to PAN +domain_auto_trans(netd, dhcp_exec, dhcp); +allow netd dhcp:process signal; |