Allow setopt on bluetooth's unix_stream_socket. This is extremely useful as it allows timeouts on the socket. Since ioctl is allowed, setopt shouldn't be a problem. Resolves denials, in 3rd party apps, such as: avc: denied { setopt } for pid=18107 comm="AudioRouter-6" scontext=u:r:untrusted_app:s0 tcontext=u:r:bluetooth:s0 tclass=unix_stream_socket Change-Id: I6f38d7b86983c517575b735f43b62a2ed811e81c Signed-off-by: Sérgio Faria <sergio91pt@gmail.com>

commit: 536ddba8986a0039f77809232477485dde6995a8 [log] [tgz]
author: Sérgio Faria <sergio91pt@gmail.com> Sun Jun 29 13:11:27 2014 +0100
committer: Nick Kralevich <nnk@google.com> Mon Jun 30 15:15:12 2014 +0000
tree: 50cfcce412a2994db6b45a468da5181de5bdd7cf
parent: ad891591e6c5d3ffffd2633672c48ab7e263cdec [diff]
diff --git a/bluetooth.te b/bluetooth.te
index 7d56d45..4e274c4 100644
--- a/bluetooth.te
+++ b/bluetooth.te

@@ -31,7 +31,7 @@
 
 # Allow clients to use a socket provided by the bluetooth app.
 # TODO:  See if this is still required under bluedroid.
-allow bluetoothdomain bluetooth:unix_stream_socket { getopt getattr read write ioctl shutdown };
+allow bluetoothdomain bluetooth:unix_stream_socket { getopt setopt getattr read write ioctl shutdown };
 
 # tethering
 allow bluetooth self:tun_socket create_socket_perms;
commit	536ddba8986a0039f77809232477485dde6995a8	[log] [tgz]
author	Sérgio Faria <sergio91pt@gmail.com>	Sun Jun 29 13:11:27 2014 +0100
committer	Nick Kralevich <nnk@google.com>	Mon Jun 30 15:15:12 2014 +0000
tree	50cfcce412a2994db6b45a468da5181de5bdd7cf
parent	ad891591e6c5d3ffffd2633672c48ab7e263cdec [diff]