Backport relaxed neverallow for hal_tv_tuner_server See aosp/3174581 for the original change. Bug: 357535633 Test: atest android.security.cts.SELinuxNeverallowRulesTestVendor Change-Id: I68410c8cd0b6fe4b0097a3004ab49a669846de68

commit: f3f1c7bdfba72c4bf7872c1a4569822362529964 [log] [tgz]
author: Thiébaud Weksteen <tweek@google.com> Tue Aug 06 13:47:53 2024 +1000
committer: Thiébaud Weksteen <tweek@google.com> Tue Aug 06 14:30:36 2024 +1000
tree: 135c10208fceea25808ac42c98b1197cc02d0abf
parent: 1669ef469f7131e20df8ca33e5f39d660fd6b865 [diff]
diff --git a/prebuilts/api/202404/202404_general_sepolicy.conf b/prebuilts/api/202404/202404_general_sepolicy.conf
index 7486c32..5ce168c 100644
--- a/prebuilts/api/202404/202404_general_sepolicy.conf
+++ b/prebuilts/api/202404/202404_general_sepolicy.conf

@@ -20767,6 +20767,7 @@
   # TODO(b/196225233): Remove hal_uwb_vendor_server
   -hal_uwb_vendor_server
   -hal_nlinterceptor_server
+  -hal_tv_tuner_server
 } self:{ capability cap_userns } { net_admin net_raw };
 
 # Unless a HAL's job is to communicate over the network, or control network
@@ -20789,6 +20790,7 @@
   -hal_uwb_vendor_server
   -hal_nlinterceptor_server
   -hal_bluetooth_server
+  -hal_tv_tuner_server
 } domain:{ udp_socket rawip_socket } *;
 
 neverallow {
@@ -20802,6 +20804,7 @@
   -hal_telephony_server
   -hal_nlinterceptor_server
   -hal_bluetooth_server
+  -hal_tv_tuner_server
 } {
   domain
commit	f3f1c7bdfba72c4bf7872c1a4569822362529964	[log] [tgz]
author	Thiébaud Weksteen <tweek@google.com>	Tue Aug 06 13:47:53 2024 +1000
committer	Thiébaud Weksteen <tweek@google.com>	Tue Aug 06 14:30:36 2024 +1000
tree	135c10208fceea25808ac42c98b1197cc02d0abf
parent	1669ef469f7131e20df8ca33e5f39d660fd6b865 [diff]