sepolicy for gsid Bug: 122556707 Test: gsid starts Change-Id: Ib05ddb79051436f51cd236de04027a3b12ee87a9 Signed-off-by: Sandeep Patil <sspatil@google.com>

commit: 6d53efcf468e13be3fa08ec5055a6f7e2e934a42 [log] [tgz]
author: David Anderson <dvander@google.com> Mon Jan 14 14:38:17 2019 -0800
committer: Sandeep Patil <sspatil@google.com> Tue Jan 15 20:43:33 2019 -0800
tree: b475ebcce7532352e8e631db2a798ab310c4e89f
parent: f0dd63dbe024f1f7b268fd3db8748895953ddec4 [diff]
diff --git a/private/compat/28.0/28.0.ignore.cil b/private/compat/28.0/28.0.ignore.cil
index 960d5fc..690b47f 100644
--- a/private/compat/28.0/28.0.ignore.cil
+++ b/private/compat/28.0/28.0.ignore.cil

@@ -35,6 +35,9 @@
     flags_health_check_exec
     fwk_bufferhub_hwservice
     fwk_stats_hwservice
+    gsi_service
+    gsid
+    gsid_exec
     color_display_service
     hal_atrace_hwservice
     hal_face_hwservice

diff --git a/private/file_contexts b/private/file_contexts
index dfdcc1b..0605ee4 100644
--- a/private/file_contexts
+++ b/private/file_contexts

@@ -310,6 +310,7 @@
 /system/bin/wait_for_keymaster   u:object_r:wait_for_keymaster_exec:s0
 /system/bin/watchdogd            u:object_r:watchdogd_exec:s0
 /system/bin/apexd                u:object_r:apexd_exec:s0
+/system/bin/gsid                 u:object_r:gsid_exec:s0
 
 #############################
 # Vendor files

diff --git a/private/gsid.te b/private/gsid.te
new file mode 100644
index 0000000..5ac1c25
--- /dev/null
+++ b/private/gsid.te

@@ -0,0 +1,10 @@
+# gsid - Manager for GSI Installation
+
+type gsid, domain;
+type gsid_exec, exec_type, file_type, system_file_type;
+typeattribute gsid coredomain;
+
+init_daemon_domain(gsid)
+
+binder_use(gsid)
+add_service(gsid, gsi_service)

diff --git a/private/service.te b/private/service.te
index 3fec882..fc9a95a 100644
--- a/private/service.te
+++ b/private/service.te

@@ -1,2 +1,3 @@
+type gsi_service,               service_manager_type;
 type stats_service, service_manager_type;
 type statscompanion_service, system_server_service, service_manager_type;

diff --git a/private/service_contexts b/private/service_contexts
index a548883..82c94f9 100644
--- a/private/service_contexts
+++ b/private/service_contexts

@@ -10,6 +10,7 @@
 app_binding                               u:object_r:app_binding_service:s0
 app_prediction                            u:object_r:app_prediction_service:s0
 apexservice                               u:object_r:apex_service:s0
+gsiservice                                u:object_r:gsi_service:s0
 appops                                    u:object_r:appops_service:s0
 appwidget                                 u:object_r:appwidget_service:s0
 assetatlas                                u:object_r:assetatlas_service:s0
commit	6d53efcf468e13be3fa08ec5055a6f7e2e934a42	[log] [tgz]
author	David Anderson <dvander@google.com>	Mon Jan 14 14:38:17 2019 -0800
committer	Sandeep Patil <sspatil@google.com>	Tue Jan 15 20:43:33 2019 -0800
tree	b475ebcce7532352e8e631db2a798ab310c4e89f
parent	f0dd63dbe024f1f7b268fd3db8748895953ddec4 [diff]