Gitiles
Code Review Sign In
LeafOS / LeafOS-Project / android_system_sepolicy / b794ad0f8d81341c89b040bced2933224bff04a4^! / . / private
commitb794ad0f8d81341c89b040bced2933224bff04a4[log] [tgz]
authorNeil Fuller <nfuller@google.com>Mon Jun 25 15:36:51 2018 +0100
committerNeil Fuller <nfuller@google.com>Mon Jun 25 17:59:56 2018 +0100
tree2a2bf3ffd25dccc1e9dbc8da9c5c23d1048fc99d
parent0474b119ca75e92b20e74faea302037934a6a447 [diff]
Add label for time (zone) system properties

This adds a label for system properties that will affect system-wide
time / time detection logic.

The first example will be something like:
persist.time.detection_impl_version

Bug: 78217059
Test: build
Change-Id: I46044f1e28170760001da9acf2496a1e3037e48a

diff --git a/private/compat/26.0/26.0.ignore.cil b/private/compat/26.0/26.0.ignore.cil
index ebd4037..79cadf8 100644
--- a/private/compat/26.0/26.0.ignore.cil
+++ b/private/compat/26.0/26.0.ignore.cil

@@ -118,6 +118,7 @@
     thermalserviced
     thermalserviced_exec
     thermalserviced_tmpfs
+    time_prop
     timedetector_service
     timezone_service
     timezonedetector_service

diff --git a/private/compat/27.0/27.0.ignore.cil b/private/compat/27.0/27.0.ignore.cil
index fe9887e..3b3f6f8 100644
--- a/private/compat/27.0/27.0.ignore.cil
+++ b/private/compat/27.0/27.0.ignore.cil

@@ -95,6 +95,7 @@
     system_boot_reason_prop
     system_update_service
     test_boot_reason_prop
+    time_prop
     timedetector_service
     timezonedetector_service
     tombstone_wifi_data_file

diff --git a/private/property_contexts b/private/property_contexts
index 8befae5..6ebad35 100644
--- a/private/property_contexts
+++ b/private/property_contexts

@@ -146,3 +146,6 @@
 persist.odm.            u:object_r:vendor_default_prop:s0
 persist.vendor.         u:object_r:vendor_default_prop:s0
 vendor.                 u:object_r:vendor_default_prop:s0
+
+# Properties that relate to time / time zone detection behavior.
+persist.time.           u:object_r:time_prop:s0

diff --git a/private/radio.te b/private/radio.te
index b4f5390..9ac2cf1 100644
--- a/private/radio.te
+++ b/private/radio.te

@@ -3,3 +3,6 @@
 app_domain(radio)
 
 read_runtime_log_tags(radio)
+
+# Telephony code contains time / time zone detection logic so it reads the associated properties.
+get_prop(radio, time_prop)

diff --git a/private/system_server.te b/private/system_server.te
index d3b8bcd..d7bf54a 100644
--- a/private/system_server.te
+++ b/private/system_server.te

@@ -795,6 +795,9 @@
 allow system_server functionfs:dir search;
 allow system_server functionfs:file rw_file_perms;
 
+# system_server contains time / time zone detection logic so reads the associated properties.
+get_prop(system_server, time_prop)
+
 ###
 ### Neverallow rules
 ###