mirror of
https://github.com/followmsi/android_device_asus_flo.git
synced 2024-09-20 18:48:01 +00:00
165b4ae091
Remove the ioctl permission for most socket types. For others, such as tcp/udp/rawip/unix_dgram/unix_stream set a default unprivileged whitelist that individual domains may extend (except where neverallowed like untrusted_app). Enforce via a neverallowxperm rule. Change-Id: I7573fdb24f9c53ad169bce2aeab1baac8b2a11ea
8 lines
403 B
Plaintext
8 lines
403 B
Plaintext
# socket ioctls defined in the kernel in include/uapi/linux/msm_ipc.h
|
|
define(`IPC_ROUTER_IOCTL_GET_VERSION', `0x0000c300')
|
|
define(`IPC_ROUTER_IOCTL_GET_MTU', `0x0000c301')
|
|
define(`IPC_ROUTER_IOCTL_LOOKUP_SERVER', `0x0000c302')
|
|
define(`IPC_ROUTER_IOCTL_GET_CURR_PKT_SIZE', `0x0000c303')
|
|
define(`IPC_ROUTER_IOCTL_BIND_CONTROL_PORT', `0x0000c304')
|
|
define(`IPC_ROUTER_IOCTL_CONFIG_SEC_RULES', `0x0000c305')
|