From df5abb19b84bf5496b82a458170e53baa7e61912 Mon Sep 17 00:00:00 2001
From: Jeff Vander Stoep <jeffv@google.com>
Date: Fri, 22 Jul 2016 11:34:07 -0700
Subject: [PATCH] rild: grant priv ioctl commands for udp sockets

Fixes wifi tethering.

avc: denied { ioctl } for pid=657 comm="rild" path="socket:[40758]" dev="sockfs" ino=40758 ioctlcmd=89fd scontext=u:r:rild:s0 tcontext=u:r:rild:s0 tclass=udp_socket permissive=0

Change-Id: Iace07595eb2159500050ca1a1092f59f879c011d
---
 rild.te | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/rild.te b/rild.te
index 81b4a1150..0d834e19b 100644
--- a/rild.te
+++ b/rild.te
@@ -4,6 +4,8 @@ type rild_exec, exec_type, file_type;
 
 init_daemon_domain(rild)
 net_domain(rild)
+allowxperm rild self:udp_socket ioctl priv_sock_ioctls;
+
 allow rild self:netlink_route_socket nlmsg_write;
 allow rild kernel:system module_request;
 allow rild self:capability { setpcap setgid setuid net_admin net_raw };
-- 
GitLab