restrict app access to socket ioctls Create a macro of unprivileged ioctls including - All common socket ioctls except MAC address - All wireless extensions ioctls except get/set ESSID - Some commonly used tty ioctls Bug: 21657002 Change-Id: Ib08be9cb70d08c1fa2c8bddbae519e7c2df5293c

commit: de9b5301a14abf388589b06e819bb001d69e0cf1 [log] [tgz]
author: Jeff Vander Stoep <jeffv@google.com> Fri Jun 05 15:28:55 2015 -0700
committer: Jeffrey Vander Stoep <jeffv@google.com> Fri Jun 05 22:35:51 2015 +0000
tree: b6cfa40bdb0bc8fe9430f8797f1bcb0bff8c5ee3
parent: 20d0ad0ed8786585683cac32a610fc57b4ff3c5e [diff] [blame]
diff --git a/Android.mk b/Android.mk
index f3da450..1b903bd 100644
--- a/Android.mk
+++ b/Android.mk

@@ -36,6 +36,7 @@
                         policy_capabilities \
                         te_macros \
                         attributes \
+                        ioctl_macros \
                         *.te \
                         roles \
                         users \
commit	de9b5301a14abf388589b06e819bb001d69e0cf1	[log] [tgz]
author	Jeff Vander Stoep <jeffv@google.com>	Fri Jun 05 15:28:55 2015 -0700
committer	Jeffrey Vander Stoep <jeffv@google.com>	Fri Jun 05 22:35:51 2015 +0000
tree	b6cfa40bdb0bc8fe9430f8797f1bcb0bff8c5ee3
parent	20d0ad0ed8786585683cac32a610fc57b4ff3c5e [diff] [blame]