Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_sepolicy / 3e307a4de570a64437e3071ae398ed291ba82098
commit3e307a4de570a64437e3071ae398ed291ba82098[log] [tgz]
authorDan Cashman <dcashman@google.com>Wed Jun 21 10:00:32 2017 -0700
committerDan Cashman <dcashman@google.com>Wed Jun 21 12:30:36 2017 -0700
tree4c3fc61908d66beb784b7efbae33f10a21070ae4
parent330d4477783751ed8dc37bc8539a8575e63801fa [diff]
Remove neverallow preventing hwservice access for apps.

Same-process HALs are forbidden except for very specific HALs that have
been provided and whitelisted by AOSP.  As a result, a vendor extension
HAL may have a need to be accessed by untrusted_app.  This is still
discouraged, and the existing AOSP hwservices are still forbidden, but
remove the blanket prohibition.  Also indicate that this is temporary,
and that partners should expect to get exceptions to the rule into AOSP
in the future.

Bug: 62806062
Test: neverallow-only change builds.  Verify new attribute is in policy.
Change-Id: I6d3e659147d509a3503c2c9e0b6bb9016cc75832
2 files changed
tree: 4c3fc61908d66beb784b7efbae33f10a21070ae4
  1. private/
  2. public/
  3. reqd_mask/
  4. tests/
  5. tools/
  6. vendor/
  7. Android.bp
  8. Android.mk
  9. CleanSpec.mk
  10. MODULE_LICENSE_PUBLIC_DOMAIN
  11. NOTICE
  12. PREUPLOAD.cfg
  13. README