1 type netmgrd, domain; 2 type netmgrd_exec, exec_type, file_type; 3 4 init_daemon_domain(netmgrd) 5 net_domain(netmgrd) 6 7 # Creates/Talks to qmuxd via the qmux_radio socket. 8 qmux_socket(netmgrd) 9 10 # Allow writing of ipv6 network properties 11 allow netmgrd proc_net:file w_file_perms; 12 13 # Allow netmgrd operations 14 allow netmgrd self:capability { net_admin net_raw fsetid }; 15 16 # Allow execution of /system/bin/sh. 17 allow netmgrd shell_exec:file rx_file_perms; 18 19 # Allow execution of /system/bin/*. 20 allow netmgrd system_file:file rx_file_perms; 21 22 allow netmgrd toolbox_exec:file rx_file_perms; 23 24 userdebug_or_eng(` 25 allow netmgrd diag_device:chr_file rw_file_perms; 26 ') 27 28 dontaudit netmgrd self:capability sys_module; 29
