Add fs_bpf rules for network stack.
CRs-Fixed: 3292390 Change-Id: Idca5cc815ca09da1c1181221c84102434c730a54
This commit is contained in:
Manoj Basapathi
parent
26ae8da91e
commit
82a20ed16e
1 changed files with 4 additions and 0 deletions
4
qva/vendor/common/network_stack.te
vendored
4
qva/vendor/common/network_stack.te
vendored
|
|
@ -28,3 +28,7 @@
|
|||
allow network_stack vendor_dpmd:unix_stream_socket connectto;
|
||||
allow network_stack vendor_dpmtcm_socket:sock_file write;
|
||||
hal_client_domain(network_stack, vendor_hal_perf);
|
||||
|
||||
# allow Tethering(network_stack process) to run/update/read the eBPF maps to offload tethering traffic by eBPF.
|
||||
allow network_stack fs_bpf :dir search;
|
||||
allow network_stack fs_bpf :file { read write };
|
||||
|
|
|
|||
Loading…
Reference in a new issue