| Amit Pundir | e0b877a | 2023-07-19 10:17:38 +0530 | [diff] [blame] | 1 | type set_ethaddr, domain, coredomain; |
| 2 | type set_ethaddr_exec, exec_type, system_file_type, file_type; |
| 3 | init_daemon_domain(set_ethaddr); |
| 4 | |
| 5 | allow set_ethaddr proc_cmdline:file { open read }; |
| 6 | allow set_ethaddr proc_bootconfig:file { open read }; |
| 7 | allow set_ethaddr rootfs:dir { open read }; |
| 8 | allow set_ethaddr self:capability net_admin; |
| 9 | allow set_ethaddr self:netlink_route_socket { bind create getattr nlmsg_read nlmsg_readpriv nlmsg_write read setopt write }; |
| 10 | allow set_ethaddr self:udp_socket { create ioctl }; |
| 11 | allow set_ethaddr shell_exec:file { execute getattr map read }; |
| 12 | allow set_ethaddr system_file:file execute_no_trans; |
| 13 | allow set_ethaddr toolbox_exec:file { execute execute_no_trans getattr map open read }; |