Add remote_provisioning.hostname property
This property contains the server name for the remote provisioning
service, if any, used by the device.
Test: RkpdAppUnitTests
Change-Id: Iad7805fe6da1ce89a9311d5caf7c9c651af2d16d
diff --git a/private/property.te b/private/property.te
index dee6369..c4351d1 100644
--- a/private/property.te
+++ b/private/property.te
@@ -628,7 +628,7 @@
neverallow domain system_and_vendor_property_type:{file property_service} *;
neverallow {
- # Only init and the remote provisioner can set the ro.remote_provisioning.* props
+ # Only init and the remote provisioner can set the remote_provisioning props
domain
-init
-remote_prov_app
diff --git a/private/property_contexts b/private/property_contexts
index 8f0f851..8483c3d 100644
--- a/private/property_contexts
+++ b/private/property_contexts
@@ -1364,6 +1364,9 @@
remote_provisioning.strongbox.rkp_only u:object_r:remote_prov_prop:s0 exact bool
remote_provisioning.tee.rkp_only u:object_r:remote_prov_prop:s0 exact bool
+# Hostname for the remote provisioning server a device should communicate with
+remote_provisioning.hostname u:object_r:remote_prov_prop:s0 exact string
+
# Broadcast boot stages, which keystore listens to
keystore.boot_level u:object_r:keystore_listen_prop:s0 exact int