Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit a8276cbb authored by Jeff Sharkey's avatar Jeff Sharkey Committed by android-build-merger
Browse files

Add property to force restorecon to run. am: 6da39a44 

am: b0648a17

Change-Id: I2f244b6a467df6674da4fcac380b9f276a1ee6ca
parents 0e5bd6c8 b0648a17

services/core/java/com/android/server/pm/SELinuxMMAC.java

+8 −0
Original line number Diff line number Diff line
@@ -19,6 +19,7 @@ package com.android.server.pm; 
import android.content.pm.PackageParser;

import android.content.pm.Signature;

import android.os.Environment;

import android.os.SystemProperties;

import android.system.ErrnoException;

import android.system.Os;

import android.system.OsConstants;
@@ -64,6 +65,8 @@ public final class SELinuxMMAC { 
    // to synchronize access during policy load and access attempts.

    private static List<Policy> sPolicies = new ArrayList<>();



    private static final String PROP_FORCE_RESTORECON = "sys.force_restorecon";



    /** Path to version on rootfs */

    private static final File VERSION_FILE = new File("/selinux_version");
@@ -322,6 +325,11 @@ public final class SELinuxMMAC { 
     * @return Returns true if the restorecon should occur or false otherwise.

     */

    public static boolean isRestoreconNeeded(File file) {

        // To investigate boot timing, allow a property to always force restorecon

        if (SystemProperties.getBoolean(PROP_FORCE_RESTORECON, false)) {

            return true;

        }



        try {

            final byte[] buf = new byte[20];

            final int len = Os.getxattr(file.getAbsolutePath(), XATTR_SEAPP_HASH, buf);