Allow networking on loopback in doze, standby, and powersave. Restricting networking on loopback is needlessly restrictive because it doesn't have substantial power impact. Bug: 30186506 Change-Id: Ibe31aff7c43ae02821fdf4a00b600fb5f5f5bc30

commit: 238e81894de39fe7c5ed74f297c36a4798008247 [log] [tgz]
author: Lorenzo Colitti <lorenzo@google.com> Tue Jul 26 17:59:41 2016 +0900
committer: Lorenzo Colitti <lorenzo@google.com> Thu Jul 28 18:43:22 2016 +0900
tree: f231bfd290323be65cc096862e4447b121a720b2
parent: 0726fec82842883a2332318aa675f7f04670db51 [diff] [blame]
diff --git a/server/FirewallController.cpp b/server/FirewallController.cpp
index 839312d..826cf75 100644
--- a/server/FirewallController.cpp
+++ b/server/FirewallController.cpp

@@ -300,6 +300,9 @@
     std::string commands;
     StringAppendF(&commands, "*filter\n:%s -\n", name);
 
+    // Always allow networking on loopback.
+    StringAppendF(&commands, "-A %s -i lo -o lo -j RETURN\n", name);
+
     // Allow TCP RSTs so we can cleanly close TCP connections of apps that no longer have network
     // access. Both incoming and outgoing RSTs are allowed.
     StringAppendF(&commands, "-A %s -p tcp --tcp-flags RST RST -j RETURN\n", name);
commit	238e81894de39fe7c5ed74f297c36a4798008247	[log] [tgz]
author	Lorenzo Colitti <lorenzo@google.com>	Tue Jul 26 17:59:41 2016 +0900
committer	Lorenzo Colitti <lorenzo@google.com>	Thu Jul 28 18:43:22 2016 +0900
tree	f231bfd290323be65cc096862e4447b121a720b2
parent	0726fec82842883a2332318aa675f7f04670db51 [diff] [blame]