diff options
Diffstat (limited to 'sepolicy/readmac.te')
| -rw-r--r-- | sepolicy/readmac.te | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/sepolicy/readmac.te b/sepolicy/readmac.te new file mode 100644 index 0000000..2a326e0 --- /dev/null +++ b/sepolicy/readmac.te @@ -0,0 +1,18 @@ +type readmac, domain; +type readmac_exec, exec_type, file_type; + +# Allow for transition from init domain to readmac +init_daemon_domain(readmac) + +# Allow readmac to communicate with qmuxd via qmux_radio socket +qmux_socket(readmac) + +# Allow readmac to fully access wlan_mac.bin persist file +allow readmac persist_file:dir rw_dir_perms; +allow readmac persist_file:file create_file_perms; + +allow readmac self:capability dac_override; +allow readmac self:socket create_socket_perms_no_ioctl; + +allow readmac diag_device:chr_file rw_file_perms; +allow readmac sysfs:file r_file_perms; |