Evolution-X-Tensor/device_google_gs101
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge "Remove sepolicy of Wirecutter" into sc-dev

Browse source
This commit is contained in:
Andy Chou 2021-04-12 02:06:48 +00:00 committed by Android (Google) Code Review
commit deaf447bc6
4 changed files with 0 additions and 41 deletions
Download patch file Download diff file Expand all files Collapse all files

10
ambient/exo_wirecutter_app.te
View file

@ -1,10 +0,0 @@
type exo_wirecutter_app, domain, coredomain;
app_domain(exo_wirecutter_app)
allow exo_wirecutter_app app_api_service:service_manager find;
allow exo_wirecutter_app fwk_stats_hwservice:hwservice_manager find;
allow exo_wirecutter_app gpu_device:dir search;
binder_call(exo_wirecutter_app, statsd)
allow exo_wirecutter_app fwk_stats_service:service_manager find;
binder_use(exo_wirecutter_app)

2
ambient/keys.conf
View file

@ -1,2 +0,0 @@
[@EXO_WIRECUTTER]
ALL : vendor/google/dev-keystore/certs/com_google_pixel_wirecutter/com_google_pixel_wirecutter.x509.pem

26
ambient/mac_permissions.xml
View file

@ -1,26 +0,0 @@
<?xml version="1.0" encoding="utf-8"?>
<policy>
<!--
* A signature is a hex encoded X.509 certificate or a tag defined in
keys.conf and is required for each signer tag.
* A signer tag may contain a seinfo tag and multiple package stanzas.
* A default tag is allowed that can contain policy for all apps not signed with a
previously listed cert. It may not contain any inner package stanzas.
* Each signer/default/package tag is allowed to contain one seinfo tag. This tag
represents additional info that each app can use in setting a SELinux security
context on the eventual process.
* When a package is installed the following logic is used to determine what seinfo
value, if any, is assigned.
- All signatures used to sign the app are checked first.
- If a signer stanza has inner package stanzas, those stanza will be checked
to try and match the package name of the app. If the package name matches
then that seinfo tag is used. If no inner package matches then the outer
seinfo tag is assigned.
- The default tag is consulted last if needed.
-->
<signer signature="@EXO_WIRECUTTER" >
<seinfo value="wirecutter" />
</signer>
</policy>

3
ambient/seapp_contexts
View file

@ -1,5 +1,2 @@
# Domain for Exo app # Domain for Exo app
user=_app seinfo=platform name=com.google.pixel.exo domain=exo_app type=app_data_file levelFrom=all user=_app seinfo=platform name=com.google.pixel.exo domain=exo_app type=app_data_file levelFrom=all
# Domain for Exo Wirecutter app
user=_app seinfo=wirecutter name=com.google.pixel.wirecutter domain=exo_wirecutter_app type=app_data_file levelFrom=all