Revert^2 "Introducing vm_tethering_service as system_server_service" This reverts commit 3833f2f9d62c69cbc95053703b769c515d970b94. Reason for revert: Relanding the change Change-Id: I0089cb05124f20f9bb735aa99f753c8bc658dde7

commit: c9df2934a159df223fa4d0be4da99269e18d9cf3 [log] [tgz]
author: Seungjae Yoo <seungjaeyoo@google.com> Mon Jun 17 00:38:19 2024 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Mon Jun 17 00:38:19 2024 +0000
tree: c94fbe6a5d66960d86aa93d3ff387c07e00d08fd
parent: 3833f2f9d62c69cbc95053703b769c515d970b94 [diff]
diff --git a/build/soong/service_fuzzer_bindings.go b/build/soong/service_fuzzer_bindings.go
index 6ea7679..b7364bd 100644
--- a/build/soong/service_fuzzer_bindings.go
+++ b/build/soong/service_fuzzer_bindings.go

@@ -190,6 +190,7 @@
 		"android.system.virtualizationservice_internal.IVfioHandler":          EXCEPTION_NO_FUZZER,
 		"android.system.virtualizationservice_internal.IVmnic":                EXCEPTION_NO_FUZZER,
 		"android.system.virtualizationmaintenance":                            EXCEPTION_NO_FUZZER,
+		"android.system.vmtethering.IVmTethering":                             EXCEPTION_NO_FUZZER,
 		"ambient_context":               EXCEPTION_NO_FUZZER,
 		"app_binding":                   EXCEPTION_NO_FUZZER,
 		"app_hibernation":               EXCEPTION_NO_FUZZER,

diff --git a/private/service.te b/private/service.te
index 1fb4d1d..6c55ed4 100644
--- a/private/service.te
+++ b/private/service.te

@@ -31,7 +31,8 @@
     type virtualization_maintenance_service, service_manager_type;
 ')
 is_flag_enabled(RELEASE_AVF_ENABLE_NETWORK, `
-    type vmnic_service, service_manager_type;
+    type vm_tethering_service, system_server_service, service_manager_type;
+    type vmnic_service,        service_manager_type;
 ')
 
 type uce_service,                   service_manager_type;

diff --git a/private/service_contexts b/private/service_contexts
index c7917f1..d1eecd5 100644
--- a/private/service_contexts
+++ b/private/service_contexts

@@ -172,6 +172,7 @@
 ')
 is_flag_enabled(RELEASE_AVF_ENABLE_NETWORK, `
     android.system.virtualizationservice_internal.IVmnic u:object_r:vmnic_service:s0
+    android.system.vmtethering.IVmTethering              u:object_r:vm_tethering_service:s0
 ')
 ambient_context                           u:object_r:ambient_context_service:s0
 app_binding                               u:object_r:app_binding_service:s0

diff --git a/private/virtualizationservice.te b/private/virtualizationservice.te
index 3d0aac0..b6ba55b 100644
--- a/private/virtualizationservice.te
+++ b/private/virtualizationservice.te

@@ -28,6 +28,7 @@
     # Let virtualizationservice find and communicate with vmnic.
     allow virtualizationservice vmnic_service:service_manager find;
     binder_call(virtualizationservice, vmnic)
+    allow virtualizationservice vm_tethering_service:service_manager find;
 ')
 
 # Allow the virtualizationservice domain to serve a remotely provisioned component for
commit	c9df2934a159df223fa4d0be4da99269e18d9cf3	[log] [tgz]
author	Seungjae Yoo <seungjaeyoo@google.com>	Mon Jun 17 00:38:19 2024 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Mon Jun 17 00:38:19 2024 +0000
tree	c94fbe6a5d66960d86aa93d3ff387c07e00d08fd
parent	3833f2f9d62c69cbc95053703b769c515d970b94 [diff]