Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_core / c19a7dd30e26b9f1854425160ca984d6bbd3dbb3^1..c19a7dd30e26b9f1854425160ca984d6bbd3dbb3 / .
commitc19a7dd30e26b9f1854425160ca984d6bbd3dbb3[log] [tgz]
authorAlistair Delva <adelva@google.com>Thu Mar 11 15:52:02 2021 +0000
committerGerrit Code Review <noreply-gerritcodereview@google.com>Thu Mar 11 15:52:02 2021 +0000
tree99dda3c1fabb3ee38b2a9a65f5c8d1a12dd76345
parent43defd972f06edfeda82e738fd5300b33a8081fa [diff]
parent63594a4dbc56bd49e55cf7a1cad719cb11242691 [diff]
Merge changes from topic "bootconfig-selinux-property"

* changes:
  Allow selinux to be set by bootconfig
  Allow android_dt_dir to be set by bootconfig

diff --git a/init/selinux.cpp b/init/selinux.cpp
index 0336936..47686b8 100644
--- a/init/selinux.cpp
+++ b/init/selinux.cpp

@@ -92,7 +92,7 @@
 
 enum EnforcingStatus { SELINUX_PERMISSIVE, SELINUX_ENFORCING };
 
-EnforcingStatus StatusFromCmdline() {
+EnforcingStatus StatusFromProperty() {
     EnforcingStatus status = SELINUX_ENFORCING;
 
     ImportKernelCmdline([&](const std::string& key, const std::string& value) {
@@ -101,12 +101,20 @@
         }
     });
 
+    if (status == SELINUX_ENFORCING) {
+        ImportBootconfig([&](const std::string& key, const std::string& value) {
+            if (key == "androidboot.selinux" && value == "permissive") {
+                status = SELINUX_PERMISSIVE;
+            }
+        });
+    }
+
     return status;
 }
 
 bool IsEnforcing() {
     if (ALLOW_PERMISSIVE_SELINUX) {
-        return StatusFromCmdline() == SELINUX_ENFORCING;
+        return StatusFromProperty() == SELINUX_ENFORCING;
     }
     return true;
 }

diff --git a/init/util.cpp b/init/util.cpp
index eab99d4..a40d104 100644
--- a/init/util.cpp
+++ b/init/util.cpp

@@ -376,6 +376,15 @@
             android_dt_dir = value;
         }
     });
+    // ..Or bootconfig
+    if (android_dt_dir == kDefaultAndroidDtDir) {
+        ImportBootconfig([&](const std::string& key, const std::string& value) {
+            if (key == "androidboot.android_dt_dir") {
+                android_dt_dir = value;
+            }
+        });
+    }
+
     LOG(INFO) << "Using Android DT directory " << android_dt_dir;
     return android_dt_dir;
 }