Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 9ebf0c8ecfd03b0e00b8878f776ab35be5de9e80
commit9ebf0c8ecfd03b0e00b8878f776ab35be5de9e80[log] [tgz]
authorThiƩbaud Weksteen <tweek@google.com>Tue Jan 25 21:07:00 2022 +1100
committerThiƩbaud Weksteen <tweek@google.com>Fri Jan 28 13:51:36 2022 +1100
tree2c5065ca74ac9e8b4a5034dfe208298bfefcdf96
parent7423beb1bdd6ab0a1df3dda15ade7cb3f7640f3b [diff]
Split sepolicy_neverallow rule

sepolicy_neverallow is based on a combination of calling checkpolicy
followed by sepolicy-analyze. If the first tool fails, the error message
associated with the second is returned, which is misleading.

Separate both part of the rule using a new build command.

Bug: 175911415
Test: Modify policy to trigger neverallow (checkpolicy); no misleading
    messages from sepolicy-analyze
Change-Id: I5977ced23dee09a28c7df334e4790d212e0db0c1
1 file changed
tree: 2c5065ca74ac9e8b4a5034dfe208298bfefcdf96
  1. apex/
  2. build/
  3. com.android.sepolicy/
  4. compat/
  5. contexts/
  6. microdroid/
  7. prebuilts/
  8. private/
  9. public/
  10. reqd_mask/
  11. tests/
  12. tools/
  13. vendor/
  14. .gitignore
  15. Android.bp
  16. Android.mk
  17. CleanSpec.mk
  18. contexts_tests.mk
  19. definitions.mk
  20. mac_permissions.mk
  21. METADATA
  22. MODULE_LICENSE_PUBLIC_DOMAIN
  23. NOTICE
  24. OWNERS
  25. policy_version.mk
  26. PREUPLOAD.cfg
  27. README
  28. TEST_MAPPING
  29. treble_sepolicy_tests_for_release.mk