From 59faed058de762f3920cd0a6219c68e5f16844bd Mon Sep 17 00:00:00 2001
From: Nick Kralevich <nnk@google.com>
Date: Tue, 16 Jul 2013 09:03:58 -0700
Subject: [PATCH] Allow apps to create listening ports

Bug: 9872463
Change-Id: I47eabeace3387afd24c0fd4bee70e77c0a3586d5
---
 untrusted_app.te | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/untrusted_app.te b/untrusted_app.te
index 5b03280f2..ca6fc5467 100644
--- a/untrusted_app.te
+++ b/untrusted_app.te
@@ -28,9 +28,9 @@ allow untrusted_app sdcard_external:file create_file_perms;
 allow untrusted_app asec_apk_file:dir { getattr };
 allow untrusted_app asec_apk_file:file r_file_perms;
 
-# Create listening tcp/udp sockets
+# Create tcp/udp sockets
 allow untrusted_app node_type:{ tcp_socket udp_socket } node_bind;
-allow untrusted_app self:{ tcp_socket udp_socket } create_socket_perms;
+allow untrusted_app self:{ tcp_socket udp_socket } { create_socket_perms accept listen };
 
 # Allow the allocation and use of ptys
 # Used by: https://play.google.com/store/apps/details?id=jackpal.androidterm
-- 
GitLab