Support reading output from IptablesRestoreController. Add the ability to IptablesRestoreController to return the output of a command. This is useful to run commands that list chains or return counters through the ip[6]tables-restore. Also enable unsigned-integer-overflow sanitization the unit tests because their behaviour should be representative of actual code. Having address sanitization enabled would have saved a fair amount of time debugging an on-device abort() that did not affect the tests. Test: new unit test passes Bug: 32323979 Change-Id: I70726ebbade0cb792aba38787c57378df177f2d8

commit: cd28377ac7736aa18700ffdc075e3b16c1d1f656 [log] [tgz]
author: Lorenzo Colitti <lorenzo@google.com> Tue Jan 31 19:00:49 2017 +0900
committer: Lorenzo Colitti <lorenzo@google.com> Fri Feb 10 11:39:34 2017 +0900
tree: 37427e0bb20088b4b3c07cefbe0eb7e7a828410c
parent: 946a9eab0642ef8c8ec4f9cc740b6a5320cda281 [diff] [blame]
diff --git a/server/NetdConstants.cpp b/server/NetdConstants.cpp
index f8a0d36..ff3fc2c 100644
--- a/server/NetdConstants.cpp
+++ b/server/NetdConstants.cpp

@@ -119,8 +119,13 @@
     return res;
 }
 
+int execIptablesRestoreWithOutput(IptablesTarget target, const std::string& commands,
+                                  std::string *output) {
+    return android::net::gCtls->iptablesRestoreCtrl.execute(target, commands, output);
+}
+
 int execIptablesRestore(IptablesTarget target, const std::string& commands) {
-    return android::net::gCtls->iptablesRestoreCtrl.execute(target, commands);
+    return execIptablesRestoreWithOutput(target, commands, nullptr);
 }
 
 /*
commit	cd28377ac7736aa18700ffdc075e3b16c1d1f656	[log] [tgz]
author	Lorenzo Colitti <lorenzo@google.com>	Tue Jan 31 19:00:49 2017 +0900
committer	Lorenzo Colitti <lorenzo@google.com>	Fri Feb 10 11:39:34 2017 +0900
tree	37427e0bb20088b4b3c07cefbe0eb7e7a828410c
parent	946a9eab0642ef8c8ec4f9cc740b6a5320cda281 [diff] [blame]