Home Explore Help
Register Sign In
drachfly
/
android10
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
android10
/
system
/
sepolicy
/
vendor
/
hal_wifi_supplicant_default.te

hal_wifi_supplicant_default.te 1.5 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132 
  1. # wpa supplicant or equivalent
    2. 

  2. type hal_wifi_supplicant_default, domain;
    3. 

  3. hal_server_domain(hal_wifi_supplicant_default, hal_wifi_supplicant)
    4. 

  4. type hal_wifi_supplicant_default_exec, exec_type, vendor_file_type, file_type;
    5. 

  5. init_daemon_domain(hal_wifi_supplicant_default)
    6. 

  6. 

  7. net_domain(hal_wifi_supplicant_default)
    8. 

  8. # Create a socket for receiving info from wpa
    9. 

  9. type_transition hal_wifi_supplicant_default wifi_data_file:dir wpa_socket "sockets";
    10. 

  10. 

  11. # Allow wpa_supplicant to configure nl80211
    12. 

  12. allow hal_wifi_supplicant_default proc_net_type:file write;
    13. 

  13. 

  14. # Allow wpa_supplicant to talk to Wifi Keystore HwBinder service.
    15. 

  15. hwbinder_use(hal_wifi_supplicant_default)
    16. 

  16. allow hal_wifi_supplicant_default system_wifi_keystore_hwservice:hwservice_manager find;
    17. 

  17. binder_call(hal_wifi_supplicant_default, wifi_keystore_service_server)
    18. 

  18. 

  19. allow hal_wifi_supplicant_default wpa_data_file:dir create_dir_perms;
    20. 

  20. allow hal_wifi_supplicant_default wpa_data_file:file create_file_perms;
    21. 

  21. allow hal_wifi_supplicant_default wpa_data_file:sock_file create_file_perms;
    22. 

  22. 

  23. # Write to security logs for audit.
    24. 

  24. get_prop(hal_wifi_supplicant_default, device_logging_prop)
    25. 

  25. 

  26. # Devices upgrading to P may grant this permission in device-specific
    27. 

  27. # policy along with the data_between_core_and_vendor_violators
    28. 

  28. # attribute needed for an exemption.  However, devices that launch with
    29. 

  29. # P should use /data/vendor/wifi, which is already granted in core
    30. 

  30. # policy.  This is dontaudited here to avoid conditional
    31. 

  31. # device-specific behavior in wpa_supplicant.
    32. 

  32. dontaudit hal_wifi_supplicant_default wifi_data_file:dir search;
    33.