diff options
| author | Jong Wook Kim | 2018-03-16 18:24:00 -0500 |
|---|---|---|
| committer | Jong Wook Kim | 2018-03-23 11:54:06 -0500 |
| commit | 041336510b0e55789b7c10b2afc3363973313466 (patch) | |
| tree | 65105471b1da3c0130be1e623875c416763724bc | |
| parent | efe57930077db28ed74cfe72d727344dba98841d (diff) | |
| download | system-sepolicy-041336510b0e55789b7c10b2afc3363973313466.tar.gz system-sepolicy-041336510b0e55789b7c10b2afc3363973313466.tar.xz system-sepolicy-041336510b0e55789b7c10b2afc3363973313466.zip | |
Wifi HAL SIOCSIFHWADDR sepolicy
Add sepolicy rule to grant Wifi HAL permission to use SIOCSIFHWADDR
ioctl. This permission is needed to dynamically change MAC address of
the device.
We are moving the implementation of setting the MAC address from
WifiCond to Vendor HAL to give vendors flexibility in supporting
Connected MAC Randomization. Will clean up WifiCond sepolicy afterwards.
Bug: 74347653
Test: Verified manually
Change-Id: I334cefddf385ecb1ee169eb692c4e0060c26d6d9
| -rw-r--r-- | public/hal_wifi.te | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/public/hal_wifi.te b/public/hal_wifi.te index b8693fb3..78823d00 100644 --- a/public/hal_wifi.te +++ b/public/hal_wifi.te | |||
| @@ -12,7 +12,7 @@ set_prop(hal_wifi, wifi_prop) | |||
| 12 | 12 | ||
| 13 | # allow hal wifi set interfaces up and down | 13 | # allow hal wifi set interfaces up and down |
| 14 | allow hal_wifi self:udp_socket create_socket_perms; | 14 | allow hal_wifi self:udp_socket create_socket_perms; |
| 15 | allowxperm hal_wifi self:udp_socket ioctl { SIOCSIFFLAGS }; | 15 | allowxperm hal_wifi self:udp_socket ioctl { SIOCSIFFLAGS SIOCSIFHWADDR }; |
| 16 | 16 | ||
| 17 | allow hal_wifi self:global_capability_class_set { net_admin net_raw }; | 17 | allow hal_wifi self:global_capability_class_set { net_admin net_raw }; |
| 18 | # allow hal_wifi to speak to nl80211 in the kernel | 18 | # allow hal_wifi to speak to nl80211 in the kernel |