From 5086de28a5bd6ec8a447e99c9b4ffde27d402734 Mon Sep 17 00:00:00 2001
From: Stephen Smalley <sds@tycho.nsa.gov>
Date: Tue, 11 Feb 2014 10:44:21 -0500
Subject: [PATCH] DO NOT MERGE: Update hostapd domain for
 /data/misc/wifi/sockets label change.

Change I9e35cc93abf89ce3594860aa3193f84a3b42ea6e changed the type
on /data/misc/wifi/sockets to wpa_socket and change
I51b09c5e40946673a38732ea9f601b2d047d3b62 fixed the type on existing
devices.  Consequently hostapd now needs access to wpa_socket dir
and sock_file.

Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov>

(cherry picked from commit f20673712b07f585de0cd6e6e8f542e866ad54bc)

Change-Id: I58dd3d5927e6cf9e349dc7584df499521d49afb1
---
 hostapd.te | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/hostapd.te b/hostapd.te
index f4a8fea03..a6ca0e754 100644
--- a/hostapd.te
+++ b/hostapd.te
@@ -11,8 +11,8 @@ allow hostapd self:udp_socket { create ioctl };
 
 allow hostapd wifi_data_file:file rw_file_perms;
 allow hostapd wifi_data_file:dir create_dir_perms;
-allow hostapd wifi_data_file:sock_file { create setattr write unlink };
-
+allow hostapd wpa_socket:dir create_dir_perms;
+allow hostapd wpa_socket:sock_file create_file_perms;
 allow hostapd netd:fd use;
 allow hostapd netd:udp_socket { read write };
 allow hostapd netd:fifo_file { read write };
-- 
GitLab