summaryrefslogtreecommitdiff
path: root/sepolicy
diff options
context:
space:
mode:
Diffstat (limited to 'sepolicy')
-rw-r--r--sepolicy/file_contexts1
-rw-r--r--sepolicy/init_eth0.te10
2 files changed, 11 insertions, 0 deletions
diff --git a/sepolicy/file_contexts b/sepolicy/file_contexts
new file mode 100644
index 0000000..3eabb35
--- /dev/null
+++ b/sepolicy/file_contexts
@@ -0,0 +1 @@
+/system/bin/init.eth0.sh u:object_r:init_eth0_exec:s0 \ No newline at end of file
diff --git a/sepolicy/init_eth0.te b/sepolicy/init_eth0.te
new file mode 100644
index 0000000..45fd56d
--- /dev/null
+++ b/sepolicy/init_eth0.te
@@ -0,0 +1,10 @@
+type init_eth0, domain;
+type init_eth0_exec, exec_type, file_type;
+
+init_daemon_domain(init_eth0)
+
+allow init_eth0 self:capability { net_admin net_raw };
+allow init_eth0 self:udp_socket { create ioctl };
+allowxperm init_eth0 self:udp_socket ioctl priv_sock_ioctls;
+allow init_eth0 shell_exec:file { execute getattr read };
+allow init_eth0 toolbox_exec:file { execute execute_no_trans getattr open read };
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-01 19:39:26 +0000