fix build: exclude bluetooth from neverallow restriction

Bluetooth is sometimes started from init. Addresses the following compiler error: libsepol.report_failure: neverallow on line 489 of system/sepolicy/domain.te (or line 9149 of policy.conf) violated by allow init bluetooth:process { transition }; libsepol.check_assertions: 1 neverallow failures occurred Error while expanding policy (cherry-picked from commit 7e380216) Change-Id: I2bc1e15217892e1ba2a62c9683af0f3c0aa16b86

fix build: exclude bluetooth from neverallow restriction
Bluetooth is sometimes started from init. Addresses the following compiler error: libsepol.report_failure: neverallow on line 489 of system/sepolicy/domain.te (or line 9149 of policy.conf) violated by allow init bluetooth:process { transition }; libsepol.check_assertions: 1 neverallow failures occurred Error while expanding policy (cherry-picked from commit 7e380216) Change-Id: I2bc1e15217892e1ba2a62c9683af0f3c0aa16b86
e1b00f39 · Nick Kralevich · Jeff Vander Stoep · c255e377 · e1b00f39
Commit e1b00f39 authored 8 years ago by Nick Kralevich Committed by Jeff Vander Stoep 8 years ago
--- a/domain.te
+++ b/domain.te
@@ -519,7 +519,7 @@ neverallow {

 # Only domains spawned from zygote and runas may have the appdomain attribute.
 neverallow { domain -runas -zygote } {
-  appdomain -shell userdebug_or_eng(`-su')
+  appdomain -shell userdebug_or_eng(`-su') -bluetooth
 }:process { transition dyntransition };

 # Minimize read access to shell- or app-writable symlinks.