Move seinfo and install-time changes to inside PMS.

import android.content.pm.PackageManager;

import android.content.pm.PackageManager.NameNotFoundException;

import android.content.pm.ResolveInfo;

import android.content.pm.SELinuxMMAC;

import android.os.Binder;

import android.os.Bundle;

import android.os.Environment;

        }

    }

    private static final String MMAC_ENFORCE_PROPERTY = "persist.mmac.enforce";

    private static final String SEPOLICY_PATH_SEPOLICY = "/data/security/sepolicy";

    private static final String SEPOLICY_PATH_PROPCTXS = "/data/security/property_contexts";

            return false;

        }

        boolean systemState = SELinuxMMAC.getEnforcingMode();

        boolean systemState = SystemProperties.getBoolean(MMAC_ENFORCE_PROPERTY, false);

        boolean enforceMMAC = mmacAdmin.enforceMMAC;

        if (!firstBoot || !systemState) {

            if (systemState != enforceMMAC) {

                Slog.v(TAG, "Changed MMAC enforcing status " + systemState + " to " + enforceMMAC);

                SELinuxMMAC.setEnforcingMode(enforceMMAC);

                SystemProperties.set(MMAC_ENFORCE_PROPERTY, enforceMMAC ? "true" : "false");

            }

        }

import android.content.pm.PermissionInfo;

import android.content.pm.ProviderInfo;

import android.content.pm.ResolveInfo;

import android.content.pm.SELinuxMMAC;

import android.content.pm.ServiceInfo;

import android.content.pm.Signature;

import android.content.pm.ManifestDigest;

            readPermissions();

            mFoundPolicyFile = SELinuxMMAC.readInstallPolicy();

            mRestoredSettings = mSettings.readLPw(sUserManager.getUsers(false),

                    mSdkVersion, mOnlyCore);

            long startTime = SystemClock.uptimeMillis();

                }

            }

            // Find potential SELinux install policy

            long startPolicyTime = SystemClock.uptimeMillis();

            mFoundPolicyFile = SELinuxMMAC.readInstallPolicy();

            Slog.i(TAG, "Time to scan SELinux install policy: "

                   + ((SystemClock.uptimeMillis()-startPolicyTime)/1000f)

                   + " seconds");

            // Find base frameworks (resource packages without code).

            mFrameworkInstallObserver = new AppDirObserver(

                mFrameworkDir.getPath(), OBSERVER_EVENTS, true);

        }

        mScanningPath = scanFile;

        if (mFoundPolicyFile && !SELinuxMMAC.passInstallPolicyChecks(pkg) &&

                SELinuxMMAC.getEnforcingMode()) {

            Slog.w(TAG, "Installing application package " + pkg.packageName

                   + " failed due to policy.");

            mLastScanError = PackageManager.INSTALL_FAILED_POLICY_REJECTED_PERMISSION;

            return null;

        }

        if ((parseFlags&PackageParser.PARSE_IS_SYSTEM) != 0) {

            pkg.applicationInfo.flags |= ApplicationInfo.FLAG_SYSTEM;

        }

            if (mSettings.isDisabledSystemPackageLPr(pkg.packageName)) {

                pkg.applicationInfo.flags |= ApplicationInfo.FLAG_UPDATED_SYSTEM_APP;

            } else if (mFoundPolicyFile && !SELinuxMMAC.passInstallPolicyChecks(pkg) &&

                       SELinuxMMAC.getEnforcingMode()) {

                Slog.w(TAG, "Installing application package " + pkg.packageName

                       + " failed due to policy.");

                mLastScanError = PackageManager.INSTALL_FAILED_POLICY_REJECTED_PERMISSION;

                return null;

            }

            pkg.applicationInfo.uid = pkgSetting.appId;

 * limitations under the License.

 */

package android.content.pm;

package com.android.server.pm;

import android.content.pm.ApplicationInfo;

import android.content.pm.PackageParser;

    }

    /**

     * Returns the current status of MMAC enforcing mode.

     * Sets the current status of MMAC enforcing mode.

     * @param boolean value to set the enforcing state too.

     */

    public static void setEnforcingMode(boolean value) {

LOCAL_PATH:= $(call my-dir)

ACTUAL_LOCAL_PATH := $(call my-dir)

# this var will hold all the test apk module names later. 

FrameworkServicesTests_all_apks :=

# We have to include the subdir makefiles first

# so that FrameworkServicesTests_all_apks will be populated correctly.

include $(call all-makefiles-under,$(ACTUAL_LOCAL_PATH))

LOCAL_PATH := $(ACTUAL_LOCAL_PATH)

include $(CLEAR_VARS)

# We only want this apk build for tests.

LOCAL_CERTIFICATE := platform

# intermediate dir to include all the test apks as raw resource 

FrameworkServicesTests_intermediates := $(call intermediates-dir-for,APPS,$(LOCAL_PACKAGE_NAME))/test_apks/res

LOCAL_RESOURCE_DIR := $(FrameworkServicesTests_intermediates) $(LOCAL_PATH)/res

include $(BUILD_PACKAGE)

# Rules to copy all the test apks to the intermediate raw resource directory 

FrameworkServicesTests_all_apks_res := $(addprefix $(FrameworkServicesTests_intermediates)/raw/, \

    $(foreach a, $(FrameworkServicesTests_all_apks), $(patsubst FrameworkServicesTests_%,%,$(a))))

$(FrameworkServicesTests_all_apks_res): $(FrameworkServicesTests_intermediates)/raw/%: $(call intermediates-dir-for,APPS,FrameworkServicesTests_%)/package.apk | $(ACP)

	$(call copy-file-to-new-target)

# Use R_file_stamp as dependency because we want the test apks in place before the R.java is generated.

$(R_file_stamp) : $(FrameworkServicesTests_all_apks_res)

FrameworkServicesTests_all_apks :=

FrameworkServicesTests_intermediates :=

FrameworkServicesTests_all_apks_res :=

LOCAL_PATH:= $(call my-dir)

include $(CLEAR_VARS)

FrameworkServicesTests_BUILD_PACKAGE := $(LOCAL_PATH)/FrameworkServicesTests_apk.mk

# build sub packages

include $(call all-makefiles-under,$(LOCAL_PATH))