Add ppp/mtp policy.

Initial policy for Point-to-Point tunneling and tunneling manager services.
author: rpcraig <rpcraig@tycho.ncsc.mil> 2012-08-20 06:13:28 -0400
committer: rpcraig <rpcraig@tycho.ncsc.mil> 2012-08-20 06:19:36 -0400
commit: d49f7e6e363014b010b755ab8ee23d3f7c0a9344 (patch)
tree: 6e187380bff58d4a29e55bcf1998fa086a54fbd7 /ppp.te
parent: 171a06257124401af2e7c33fbbcbc69c18e45486 (diff)
download: android_external_sepolicy-d49f7e6e363014b010b755ab8ee23d3f7c0a9344.tar.gz
android_external_sepolicy-d49f7e6e363014b010b755ab8ee23d3f7c0a9344.tar.bz2
android_external_sepolicy-d49f7e6e363014b010b755ab8ee23d3f7c0a9344.zip
1 files changed, 17 insertions, 0 deletions
diff --git a/ppp.te b/ppp.te
new file mode 100644
index 0000000..115fb98
--- /dev/null
+++ b/ppp.te
@@ -0,0 +1,17 @@
+# Point to Point Protocol daemon
+type ppp, domain;
+type ppp_device, dev_type;
+type ppp_exec, exec_type, file_type;
+type ppp_system_file, file_type;
+
+domain_auto_trans(mtp, ppp_exec, ppp)
+
+allow ppp mtp:socket { read write ioctl };
+allow ppp ppp_device:chr_file rw_file_perms;
+allow ppp self:capability net_admin;
+allow ppp self:udp_socket { create ioctl };
+allow ppp ppp_system_file:dir search;
+allow ppp ppp_system_file:file rx_file_perms;
+allow ppp vpn_data_file:dir w_dir_perms;
+allow ppp vpn_data_file:file create_file_perms;
+allow ppp mtp:fd use;
author	rpcraig <rpcraig@tycho.ncsc.mil>	2012-08-20 06:13:28 -0400
committer	rpcraig <rpcraig@tycho.ncsc.mil>	2012-08-20 06:19:36 -0400
commit	d49f7e6e363014b010b755ab8ee23d3f7c0a9344 (patch)
tree	6e187380bff58d4a29e55bcf1998fa086a54fbd7 /ppp.te
parent	171a06257124401af2e7c33fbbcbc69c18e45486 (diff)
download	android_external_sepolicy-d49f7e6e363014b010b755ab8ee23d3f7c0a9344.tar.gz android_external_sepolicy-d49f7e6e363014b010b755ab8ee23d3f7c0a9344.tar.bz2 android_external_sepolicy-d49f7e6e363014b010b755ab8ee23d3f7c0a9344.zip