Merge "network_stack - dontaudit getopt on key_socket"
This commit is contained in:
Maciej Żenczykowski
Gerrit Code Review
commit
755faacde2
1 changed files with 3 additions and 0 deletions
|
|
@ -32,6 +32,9 @@ binder_call(network_stack, netd);
|
|||
# in order to invoke side effect of close() on such a socket calling synchronize_rcu()
|
||||
# TODO: Remove this permission when 4.9 kernel is deprecated.
|
||||
allow network_stack self:key_socket create;
|
||||
# Java's Os.close() in libcore/luni/src/main/java/libcore/io/BlockGuardOs.java;l=100
|
||||
# calls if (fd.isSocket$()) if (isLingerSocket(fd)) ...
|
||||
dontaudit network_stack self:key_socket getopt;
|
||||
|
||||
# Grant read permission of connectivity namespace system property prefix.
|
||||
get_prop(network_stack, device_config_connectivity_prop)
|
||||
|
|
|
|||
Loading…
Reference in a new issue