Skip to content
Snippets Groups Projects
Commit 536ddba8 authored by Sérgio Faria's avatar Sérgio Faria Committed by Nick Kralevich
Browse files

Allow setopt on bluetooth's unix_stream_socket. 


This is extremely useful as it allows timeouts on the socket.
Since ioctl is allowed, setopt shouldn't be a problem.

Resolves denials, in 3rd party apps, such as:

avc:  denied  { setopt } for  pid=18107 comm="AudioRouter-6"
scontext=u:r:untrusted_app:s0 tcontext=u:r:bluetooth:s0
tclass=unix_stream_socket

Change-Id: I6f38d7b86983c517575b735f43b62a2ed811e81c
Signed-off-by: default avatarSérgio Faria <sergio91pt@gmail.com>
parent ad891591
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
bluetooth.te
+ 1
1
View file @ 536ddba8
...@@ -31,7 +31,7 @@ allow bluetooth self:capability net_admin; ...@@ -31,7 +31,7 @@ allow bluetooth self:capability net_admin;
# Allow clients to use a socket provided by the bluetooth app. # Allow clients to use a socket provided by the bluetooth app.
# TODO: See if this is still required under bluedroid. # TODO: See if this is still required under bluedroid.
allow bluetoothdomain bluetooth:unix_stream_socket { getopt getattr read write ioctl shutdown }; allow bluetoothdomain bluetooth:unix_stream_socket { getopt setopt getattr read write ioctl shutdown };
# tethering # tethering
allow bluetooth self:tun_socket create_socket_perms; allow bluetooth self:tun_socket create_socket_perms;
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment