[GitHub/LineageOS/android_device_motorola_exynos9610-common.git] / sepolicy / vendor / pktrouter.te

type pktrouter, domain, mlstrustedsubject;
type pktrouter_exec, exec_type, file_type, vendor_file_type;
init_daemon_domain(pktrouter)

allow pktrouter pktrouter_device:chr_file rw_file_perms;

allow pktrouter self:packet_socket create_socket_perms_no_ioctl;
allow pktrouter node:rawip_socket node_bind;
allow pktrouter port:udp_socket name_bind;
allow pktrouter node:udp_socket node_bind;
allow pktrouter self:netlink_route_socket { create bind write nlmsg_write read };

allowxperm pktrouter self:udp_socket ioctl SIOCGIFNAME;
allow pktrouter self:capability net_raw;
allow pktrouter self:udp_socket create_socket_perms;
Commit	Line	Data
e74173c2 JA	1	type pktrouter, domain, mlstrustedsubject;
	2	type pktrouter_exec, exec_type, file_type, vendor_file_type;
	3	init_daemon_domain(pktrouter)
	4
	5	allow pktrouter pktrouter_device:chr_file rw_file_perms;
	6
	7	allow pktrouter self:packet_socket create_socket_perms_no_ioctl;
	8	allow pktrouter node:rawip_socket node_bind;
	9	allow pktrouter port:udp_socket name_bind;
	10	allow pktrouter node:udp_socket node_bind;
	11	allow pktrouter self:netlink_route_socket { create bind write nlmsg_write read };
	12
	13	allowxperm pktrouter self:udp_socket ioctl SIOCGIFNAME;
	14	allow pktrouter self:capability net_raw;
	15	allow pktrouter self:udp_socket create_socket_perms;