From 04fad00762fcfc2230c7b5841d0c246a0479b33b Mon Sep 17 00:00:00 2001
From: xshu <xshu@google.com>
Date: Tue, 4 Dec 2018 17:21:19 -0800
Subject: [PATCH] Wifi HAL SIOCETHTOOL sepolicy

Allow wifi HAL to use SIOCETHTOOL. This permission is needed to get
factory MAC address of the device.

Bug: 111634904
Test: Manual check that the device can get factory MAC address
Change-Id: I50e91ef7390ad4fba6e014990ee23feb777c4391
---
 public/hal_wifi.te | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/public/hal_wifi.te b/public/hal_wifi.te
index f735be51b..805adaf07 100644
--- a/public/hal_wifi.te
+++ b/public/hal_wifi.te
@@ -10,9 +10,9 @@ r_dir_file(hal_wifi, sysfs_type)
 set_prop(hal_wifi, exported_wifi_prop)
 set_prop(hal_wifi, wifi_prop)
 
-# allow hal wifi set interfaces up and down
+# allow hal wifi set interfaces up and down and get the factory MAC
 allow hal_wifi self:udp_socket create_socket_perms;
-allowxperm hal_wifi self:udp_socket ioctl { SIOCSIFFLAGS SIOCSIFHWADDR };
+allowxperm hal_wifi self:udp_socket ioctl { SIOCSIFFLAGS SIOCSIFHWADDR SIOCETHTOOL };
 
 allow hal_wifi self:global_capability_class_set { net_admin net_raw };
 # allow hal_wifi to speak to nl80211 in the kernel
-- 
GitLab