57e9946fb7
Full treble targets cannot have sockets between framework and vendor processes. In theory, this should not affect aosp_arm64_ab where only framework binaries are built. However, /system/sepolicy has rild.te which is now vendor binary and this causes neverallow conflict when building aosp_arm64_ab. So, we just temporarily annotate the rild with socket_between_core_and_vendor_violators so that the neverallow conflict can be avoided. Test: choosecombo 1 aosp_arm64_ab userdebug; m -j 80 The build should not break. Change-Id: I260757cde96857cc3f539d5f82ca69c50653f8c7
8 lines
373 B
Text
8 lines
373 B
Text
# type_transition must be private policy the domain_trans rules could stay
|
|
# public, but conceptually should go with this
|
|
type rild_exec, exec_type, file_type;
|
|
init_daemon_domain(rild)
|
|
|
|
# TODO(b/36613472), TODO(b/36718031): Remove this once rild no longer
|
|
# communicates with non-vendor components over sockets.
|
|
typeattribute rild socket_between_core_and_vendor_violators;
|