PWN-Hunter/android_system_sepolicy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

seinfo can be used to select types, and sebool is now supported.

Browse Source
This commit is contained in:
Stephen Smalley 2012-07-27 17:08:21 -04:00
parent 2b47c3fc35
commit dd31ddfd87
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
seapp_contexts
View File

@ -3,11 +3,11 @@
# user (string) # user (string)
# seinfo (string) # seinfo (string)
# name (string) # name (string)
# sebool (string)
# isSystemServer=true can only be used once. # isSystemServer=true can only be used once.
# An unspecified boolean defaults to false. # An unspecified isSystemServer defaults to false.
# An unspecified string selector will match any value. # An unspecified string selector will match any value.
# A user string selector that ends in * will perform a prefix match. # A user string selector that ends in * will perform a prefix match.
# seinfo= is only used when looking up app process security contexts.
# All specified input selectors in an entry must match (i.e. logical AND). # All specified input selectors in an entry must match (i.e. logical AND).
# Matching is case-insensitive. # Matching is case-insensitive.
# Precedence rules: # Precedence rules:
@ -17,6 +17,7 @@
# (4) Longer user= prefix before shorter user= prefix. # (4) Longer user= prefix before shorter user= prefix.
# (5) Specified seinfo= string before unspecified seinfo= string. # (5) Specified seinfo= string before unspecified seinfo= string.
# (6) Specified name= string before unspecified name= string. # (6) Specified name= string before unspecified name= string.
# (7) Specified sebool= string before unspecified sebool= string.
# #
# Outputs: # Outputs:
# domain (string) # domain (string)