lowpan: Add wpantund to SEPolicy
Bug: b/64399219
Test: Manual
Change-Id: I4f6c7e4e3339ae95e43299bf364edff40d07c796
(cherry picked from commit c8bd93d7e86647ad6880d460f8aa9d24088fad58)
diff --git a/private/compat/26.0/26.0.ignore.cil b/private/compat/26.0/26.0.ignore.cil
index c64c866..1f2d823 100644
--- a/private/compat/26.0/26.0.ignore.cil
+++ b/private/compat/26.0/26.0.ignore.cil
@@ -33,7 +33,11 @@
thermalserviced_tmpfs
timezone_service
tombstoned_java_trace_socket
- vold_service))
+ vold_service
+ wpantund
+ wpantund_exec
+ wpantund_service
+ wpantund_tmpfs))
;; private_objects - a collection of types that were labeled differently in
;; older policy, but that should not remain accessible to vendor policy.
diff --git a/private/file_contexts b/private/file_contexts
index d5a0bb1..fe4b100 100644
--- a/private/file_contexts
+++ b/private/file_contexts
@@ -259,6 +259,7 @@
/system/bin/thermalserviced u:object_r:thermalserviced_exec:s0
/system/bin/webview_zygote32 u:object_r:webview_zygote_exec:s0
/system/bin/webview_zygote64 u:object_r:webview_zygote_exec:s0
+/system/bin/wpantund u:object_r:wpantund_exec:s0
/system/bin/virtual_touchpad u:object_r:virtual_touchpad_exec:s0
/system/bin/hw/android\.hidl\.allocator@1\.0-service u:object_r:hal_allocator_default_exec:s0
/system/etc/selinux/mapping/[0-9]+\.[0-9]+\.cil u:object_r:sepolicy_file:s0
diff --git a/private/system_server.te b/private/system_server.te
index 260d6ce..769b3b7 100644
--- a/private/system_server.te
+++ b/private/system_server.te
@@ -180,6 +180,7 @@
binder_call(system_server, netd)
binder_call(system_server, vold)
binder_call(system_server, wificond)
+binder_call(system_server, wpantund)
binder_service(system_server)
# Use HALs
diff --git a/private/wpantund.te b/private/wpantund.te
new file mode 100644
index 0000000..e91662c
--- /dev/null
+++ b/private/wpantund.te
@@ -0,0 +1,3 @@
+typeattribute wpantund coredomain;
+
+init_daemon_domain(wpantund)