drgreen/android_device_google_gs-common
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[SELinux] Add gyotaku_app doamin to gs-common. am: 678fb46c3c

Browse Source 
Original change: https://googleplex-android-review.googlesource.com/c/device/google/gs-common/+/24702882

Change-Id: I22d0b3e6bafdaa0b4d0e9b0f2a5f9a934be7adc6
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
Klines Jiang 2023-09-20 18:30:41 +00:00 committed by Automerger Merge Worker
commit e2c9fa6c57
3 changed files with 35 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
gyotaku_app/gyotaku.mk Normal file
View File

@ -0,0 +1,8 @@
ifneq ($(TARGET_BUILD_VARIANT), user)
ifeq (,$(filter aosp_%, $(TARGET_PRODUCT))) # Skip aosp target product
PRODUCT_PACKAGES_DEBUG += \
Gyotaku
BOARD_SEPOLICY_DIRS += device/google/gs-common/gyotaku_app/sepolicy/
endif
endif

25
gyotaku_app/sepolicy/gyotaku_app.te Normal file
View File

@ -0,0 +1,25 @@
type gyotaku_app, domain;
userdebug_or_eng(`
app_domain(gyotaku_app)
net_domain(gyotaku_app)
# For Gyotaku app common use
allow gyotaku_app app_api_service:service_manager find;
allow gyotaku_app privapp_data_file:lnk_file read;
allow gyotaku_app system_app_data_file:dir create_dir_perms;
allow gyotaku_app system_app_data_file:file create_file_perms;
# For access /proc/fs/f2fs/* storage use
allow gyotaku_app proc_f2fs:dir search;
allow gyotaku_app proc_f2fs:file r_file_perms;
# For access /proc/stat use
allow gyotaku_app proc_stat:file r_file_perms;
# For getproperty isDebuggable use
get_prop(gyotaku_app, userdebug_or_eng_prop)
# For persistent property use
get_prop(gyotaku_app, logpersistd_logging_prop);
')

2
gyotaku_app/sepolicy/seapp_contexts Normal file
View File

@ -0,0 +1,2 @@
# Gyotaku app
user=system seinfo=platform name=com.google.android.apps.internal.gyotaku domain=gyotaku_app type=system_app_data_file levelFrom=all