Sync internal master and AOSP sepolicy. Bug: 37916906 Test: Builds 'n' boots. Change-Id: Ia1d86264446ebecc1ca79f32f11354921bc77668 Merged-In: I208ec6a864127a059fb389417a9c6b259d7474cb

commit: 91d398d802b4fbd33c2b88da9f56ecee8bdc363c [log] [tgz]
author: Dan Cashman <dcashman@google.com> Tue Sep 26 12:58:29 2017 -0700
committer: Dan Cashman <dcashman@google.com> Tue Sep 26 14:38:47 2017 -0700
tree: ae80a698d8f48b79a749eb9d0b1668402614c1d0
parent: 6922dfe3661ca7c4043f6ef9c6c61fdb9c7fa89a [diff] [blame]
diff --git a/public/hal_tetheroffload.te b/public/hal_tetheroffload.te
index a4c21fcd..48d67a2 100644
--- a/public/hal_tetheroffload.te
+++ b/public/hal_tetheroffload.te

@@ -1,3 +1,8 @@
 ## HwBinder IPC from client to server, and callbacks
 binder_call(hal_tetheroffload_client, hal_tetheroffload_server)
 binder_call(hal_tetheroffload_server, hal_tetheroffload_client)
+
+allow hal_tetheroffload_client hal_tetheroffload_hwservice:hwservice_manager find;
+
+# allow the client to pass the server already open netlink sockets
+allow hal_tetheroffload_server hal_tetheroffload_client:netlink_netfilter_socket { getattr read setopt write };
commit	91d398d802b4fbd33c2b88da9f56ecee8bdc363c	[log] [tgz]
author	Dan Cashman <dcashman@google.com>	Tue Sep 26 12:58:29 2017 -0700
committer	Dan Cashman <dcashman@google.com>	Tue Sep 26 14:38:47 2017 -0700
tree	ae80a698d8f48b79a749eb9d0b1668402614c1d0
parent	6922dfe3661ca7c4043f6ef9c6c61fdb9c7fa89a [diff] [blame]