commit 080bfa019cda7cd4974e9eef61c2e45f405ccb6b
author Jong Wook Kim <jongwook@google.com> Tue Jan 23 22:37:13 2018 +0000
committer android-build-merger <android-build-merger@google.com> Tue Jan 23 22:37:13 2018 +0000
tree ecf731ef3994eb2ba8b6d0295a62945af698353f
parent de962429dc2450903f8b9a717052e92c0bfc4555
parent 01649ac8616776883900303c9eceb1b5c3931f47

Merge "MAC Anonymization: wificond SIOCSIFHWADDR sepolicy" am: 25e183a9f5 am: 3ffc490522
am: 01649ac861

Change-Id: I1b3a4e10732833e85f665f43c3705b207f284aac

public/wificond.te

diff --git a/public/wificond.te b/public/wificond.te
index 8eeb8c8..f4990b2 100644
--- a/public/wificond.te
+++ b/public/wificond.te
@@ -13,7 +13,7 @@
 # create sockets to set interfaces up and down
 allow wificond self:udp_socket create_socket_perms;
 # setting interface state up/down is a privileged ioctl
-allowxperm wificond self:udp_socket ioctl { SIOCSIFFLAGS };
+allowxperm wificond self:udp_socket ioctl { SIOCSIFFLAGS SIOCSIFHWADDR };
 allow wificond self:global_capability_class_set { net_admin net_raw };
 # allow wificond to speak to nl80211 in the kernel
 allow wificond self:netlink_socket create_socket_perms_no_ioctl;