shamu: sepolicy: Address netmgrd denial

Change-Id: I16c046cddfaf3988cc3a7ef47b1e9274a1e7c6ce
author: elektroschmock <elektroschmock78@googlemail.com> 2019-06-05 11:26:27 +0200
committer: Elektroschmock <elektroschmock78@googlemail.com> 2019-06-06 21:22:28 +0200
commit: 64bfd14939ef2f9c6a16e0abda84fd09a1c51b05 (patch)
tree: 4c95dc878b5e0d555e21bc3ed4f436bce9fc06a9
parent: 44a98a7bc257b240c90327a2c5a3f49e5acac365 (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/sepolicy/netmgrd.te b/sepolicy/netmgrd.te
index 848658e4..ff0a28bd 100644
--- a/sepolicy/netmgrd.te
+++ b/sepolicy/netmgrd.te
@@ -31,8 +31,12 @@ allow netmgrd system_file:file rx_file_perms;
 allow netmgrd vendor_file_type:file rx_file_perms;
 
 #Allow operations on different types of sockets
-allow netmgrd self:netlink_socket create_socket_perms_no_ioctl;
-allow netmgrd self:rawip_socket create_socket_perms_no_ioctl;
+allow netmgrd self:{
+    netlink_socket
+    rawip_socket
+    netlink_generic_socket
+} create_socket_perms_no_ioctl;
+
 allow netmgrd self:netlink_route_socket nlmsg_write;
 allow netmgrd self:netlink_xfrm_socket { create_socket_perms_no_ioctl nlmsg_write nlmsg_read };
author	elektroschmock <elektroschmock78@googlemail.com>	2019-06-05 11:26:27 +0200
committer	Elektroschmock <elektroschmock78@googlemail.com>	2019-06-06 21:22:28 +0200
commit	64bfd14939ef2f9c6a16e0abda84fd09a1c51b05 (patch)
tree	4c95dc878b5e0d555e21bc3ed4f436bce9fc06a9
parent	44a98a7bc257b240c90327a2c5a3f49e5acac365 (diff)