Skip to content
Snippets Groups Projects
Commit 8d92a9a1 authored by Joel Galenson's avatar Joel Galenson
Browse files

Update neverallow exception. 

This fixes an incorrect exception in the neverallow rule.

Test: Built policy for all lunch targets.
Change-Id: I283833131c6f1fd741e934de24c838594ac38a18
parent fd9f7de7
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 3 additions and 1 deletion
public/domain.te
+ 3
1
View file @ 8d92a9a1
...@@ -1116,10 +1116,12 @@ neverallow ~coredomain coredomain_hwservice:hwservice_manager add; ...@@ -1116,10 +1116,12 @@ neverallow ~coredomain coredomain_hwservice:hwservice_manager add;
neverallow * same_process_hwservice:hwservice_manager add; neverallow * same_process_hwservice:hwservice_manager add;
# On TREBLE devices, most coredomains should not access vendor_files. # On TREBLE devices, most coredomains should not access vendor_files.
# TODO(b/71553434): Remove exceptions here.
full_treble_only(` full_treble_only(`
neverallow { neverallow {
coredomain coredomain
-halclientdomain -appdomain
-bootanim
-init -init
-ueventd -ueventd
-crash_dump -crash_dump
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment