summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--init.hardware.rc2
-rw-r--r--sepolicy/vendor/cnd.te6
2 files changed, 5 insertions, 3 deletions
diff --git a/init.hardware.rc b/init.hardware.rc
index 13a060c7..c10c24c7 100644
--- a/init.hardware.rc
+++ b/init.hardware.rc
@@ -718,7 +718,7 @@ service qmuxd /vendor/bin/qmuxd
service cnd /vendor/bin/cnd
class main
- group system
+ group system wifi inet radio wakelock
socket cnd stream 660 root inet
service netmgrd /vendor/bin/netmgrd
diff --git a/sepolicy/vendor/cnd.te b/sepolicy/vendor/cnd.te
index 475a0a33..0f863c8c 100644
--- a/sepolicy/vendor/cnd.te
+++ b/sepolicy/vendor/cnd.te
@@ -5,8 +5,10 @@ file_type_auto_trans(cnd, socket_device, cnd_socket);
# cnd is started by init, type transit from init domain to cnd domain
init_daemon_domain(cnd)
+#TODO remove chown fsetid setgid setuid once b/80006180 is resolved
#communicating with QTI wlan driver for WFC/ VTiWLAN quality
-allow cnd self:capability net_bind_service;
+allow cnd self:capability { chown fsetid setgid setuid net_bind_service };
+
unix_socket_send(cnd, wpa, hal_wifi_supplicant)
allow cnd wpa_data_file:dir rw_dir_perms;
allow cnd wpa_data_file:sock_file create_file_perms;
@@ -51,4 +53,4 @@ binder_call(cnd, dataservice_app)
binder_call(cnd, ims)
binder_call(cnd, location)
-dontaudit cnd kernel:system module_request; \ No newline at end of file
+dontaudit cnd kernel:system module_request;
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-08 12:29:06 +0000