Revert "Grant appdomain access to app_api_service" This reverts commit d5a0edd75efb37c8f14905fd705da58058e4c22e. Reason for revert: CTS failure There are apps that relies on SELinux regulations to constrain their access. We'll need to analyze them before introducing the sepolicy. Bug: 147695658 Change-Id: Ic57fcb90371b50a978ab7b2e0d20c4cb3d2da7f6 Test: cts-tradefed run cts -m CtsPermissionTestCases

commit: 5fb053eaa8b6b7d6bdf5911583b115cd0aacc215 [log] [tgz]
author: Adam Shih <adamshih@google.com> Tue Feb 04 02:51:38 2020 +0000
committer: Adam Shih <adamshih@google.com> Tue Feb 04 02:51:38 2020 +0000
tree: ac093e3ada4b0150b26ef6913cb82d8955081af3
parent: d5a0edd75efb37c8f14905fd705da58058e4c22e [diff]
diff --git a/public/app.te b/public/app.te
index e4eee82..b771b5f 100644
--- a/public/app.te
+++ b/public/app.te

@@ -50,9 +50,6 @@
 # child shell or gdbserver pty access for runas.
 allow appdomain devpts:chr_file { getattr read write ioctl };
 
-# Allow appdomain to access app_api_service
-allow { appdomain -isolated_app } app_api_service:service_manager find;
-
 # Use pipes and sockets provided by system_server via binder or local socket.
 allow appdomain system_server:fd use;
 allow appdomain system_server:fifo_file rw_file_perms;
commit	5fb053eaa8b6b7d6bdf5911583b115cd0aacc215	[log] [tgz]
author	Adam Shih <adamshih@google.com>	Tue Feb 04 02:51:38 2020 +0000
committer	Adam Shih <adamshih@google.com>	Tue Feb 04 02:51:38 2020 +0000
tree	ac093e3ada4b0150b26ef6913cb82d8955081af3
parent	d5a0edd75efb37c8f14905fd705da58058e4c22e [diff]