Restore app_domain macro and move to private use. app_domain was split up in commit: 2e00e6373faa6271d7839d33c5b9e69d998ff020 to enable compilation by hiding type_transition rules from public policy. These rules need to be hidden from public policy because they describe how objects are labeled, of which non-platform should be unaware. Instead of cutting apart the app_domain macro, which non-platform policy may rely on for implementing new app types, move all app_domain calls to private policy. (cherry-pick of commit: 76035ea01971156895cf0d8efc1876bfa2025bd6) Bug: 33428593 Test: bullhead and sailfish both boot. sediff shows no policy change. Change-Id: I4beead8ccc9b6e13c6348da98bb575756f539665

commit: 3e8dbf01ef3a5e2c53a27ab6b068d22c1a8fe02f [log] [tgz]
author: dcashman <dcashman@google.com> Thu Dec 08 11:23:34 2016 -0800
committer: dcashman <dcashman@google.com> Thu Dec 08 14:42:43 2016 -0800
tree: c1fc339148bcd3039f58010a9eab16310be20ac6
parent: f016fc1109ee108c07531651d827a4905c1a9e31 [diff] [blame]
diff --git a/private/shared_relro.te b/private/shared_relro.te
index c3c43ab..b1ba0ff 100644
--- a/private/shared_relro.te
+++ b/private/shared_relro.te

@@ -1,4 +1,3 @@
-# app_domain fallout
-tmpfs_domain(shared_relro)
-# Map with PROT_EXEC.
-allow shared_relro shared_relro_tmpfs:file execute;
+# The shared relro process is a Java program forked from the zygote, so it
+# inherits from app to get basic permissions it needs to run.
+app_domain(shared_relro)
commit	3e8dbf01ef3a5e2c53a27ab6b068d22c1a8fe02f	[log] [tgz]
author	dcashman <dcashman@google.com>	Thu Dec 08 11:23:34 2016 -0800
committer	dcashman <dcashman@google.com>	Thu Dec 08 14:42:43 2016 -0800
tree	c1fc339148bcd3039f58010a9eab16310be20ac6
parent	f016fc1109ee108c07531651d827a4905c1a9e31 [diff] [blame]