Skip to content
Snippets Groups Projects
Commit 7e380216 authored by Nick Kralevich's avatar Nick Kralevich
Browse files

fix build: exclude bluetooth from neverallow restriction 

Bluetooth is sometimes started from init.

Addresses the following compiler error:

  libsepol.report_failure: neverallow on line 489 of
  system/sepolicy/domain.te (or line 9149 of policy.conf) violated by
  allow init bluetooth:process { transition };
  libsepol.check_assertions: 1 neverallow failures occurred
  Error while expanding policy

Change-Id: I2bc1e15217892e1ba2a62c9683af0f3c0aa16b86
parent c55cf17a
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
domain.te
+ 1
1
View file @ 7e380216
...@@ -485,7 +485,7 @@ neverallow { ...@@ -485,7 +485,7 @@ neverallow {
# Only domains spawned from zygote and runas may have the appdomain attribute. # Only domains spawned from zygote and runas may have the appdomain attribute.
neverallow { domain -runas -zygote } { neverallow { domain -runas -zygote } {
appdomain -shell userdebug_or_eng(`-su') appdomain -shell userdebug_or_eng(`-su') -bluetooth
}:process { transition dyntransition }; }:process { transition dyntransition };
# Minimize read access to shell- or app-writable symlinks. # Minimize read access to shell- or app-writable symlinks.
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment