From 901cc36664399f5803c64bd5a26932807d6749aa Mon Sep 17 00:00:00 2001
From: Haiqing Jiang <hqjiang1988@gmail.com>
Date: Mon, 30 Jul 2012 13:51:16 -0700
Subject: [PATCH] Untrusted_app gets route information

---
 app.te | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/app.te b/app.te
index 9324a6d83..f844221a1 100644
--- a/app.te
+++ b/app.te
@@ -102,6 +102,8 @@ allow untrusted_app node_type:{ tcp_socket udp_socket } node_bind;
 allow untrusted_app port_type:udp_socket name_bind;
 allow untrusted_app port_type:tcp_socket name_bind;
 unix_socket_connect(untrusted_app, dnsproxyd, netd)
+# Get route information.
+allow untrusted_app self:netlink_route_socket { create bind read nlmsg_read };
 }
 # Bluetooth access.
 bool app_bluetooth false;
-- 
GitLab