commit e3f31cfd1ed2a34a9e518b1abaa7ae31c6c0b210
author Anton Hansson <hansson@google.com> Sat Jun 03 08:53:47 2023 +0000
committer Android Build Cherrypicker Worker <android-build-cherrypicker-worker@google.com> Sat Jun 03 08:53:47 2023 +0000
tree e786e916c9ba94def4599c32255b122589007e02
parent 48fa309aa322fdcdbe0d9e870bdd861fab0fd8c0

Allow Bluetooth to use privapp_allowlist

Apparently there's some special case-code in package manager that
scans apps as privileged regardless of their location. BT is one
such app -- so allow it to specify a privapp allowlist even though
it isn't in priv-app.

Bug: 284500052
Test: use privapp_allowlist in Bluetooth and its overriddes
(cherry picked from https://googleplex-android-review.googlesource.com/q/commit:a91268a690e2aa98a0fa7b376a948a48f41b1265)
Merged-In: Ib9ac86ebc45087a176100fe8df07db7bf81a85a7
Change-Id: Ib9ac86ebc45087a176100fe8df07db7bf81a85a7

java/app.go

diff --git a/java/app.go b/java/app.go
index 58580d4..85bb3d3 100755
--- a/java/app.go
+++ b/java/app.go
@@ -289,7 +289,13 @@
 	}
 
 	if a.appProperties.Privapp_allowlist != nil && !Bool(a.appProperties.Privileged) {
-		ctx.PropertyErrorf("privapp_allowlist", "privileged must be set in order to use privapp_allowlist")
+		// There are a few uids that are explicitly considered privileged regardless of their
+		// app's location. Bluetooth is one such app. It should arguably be moved to priv-app,
+		// but for now, allow it not to be in priv-app.
+		privilegedBecauseOfUid := ctx.ModuleName() == "Bluetooth"
+		if !privilegedBecauseOfUid {
+			ctx.PropertyErrorf("privapp_allowlist", "privileged must be set in order to use privapp_allowlist (with a few exceptions)")
+		}
 	}
 
 	for _, cert := range a.appProperties.Additional_certificates {