Merge "Clarify init_shell, shell, and su domain usage."

d28ac521 · Nick Kralevich · Gerrit Code Review · 49d713af · b3cb9695 · d28ac521
Commit d28ac521 authored 11 years ago by Nick Kralevich Committed by Gerrit Code Review 11 years ago
--- a/init_shell.te
+++ b/init_shell.te
-# Restricted domain for shell processes spawned by init
+# Restricted domain for shell processes spawned by init.
+# Normally these are shell commands or scripts invoked via sh
+# from an init*.rc file.  No service should ever run in this domain.
 type init_shell, domain, shelldomain;
 domain_auto_trans(init, shell_exec, init_shell)
 unconfined_domain(init_shell)

--- a/shell.te
+++ b/shell.te
-# Domain for shell processes spawned by ADB
+# Domain for shell processes spawned by ADB or console service.
 type shell, domain, shelldomain, mlstrustedsubject;
 type shell_exec, exec_type, file_type;

--- a/su.te
+++ b/su.te
@@ -2,6 +2,9 @@
 type su_exec, exec_type, file_type;
 userdebug_or_eng(`
+  # Domain used for su processes, as well as for adbd and adb shell
+  # after performing an adb root command.  The domain definition is
+  # wrapped to ensure that it does not exist at all on -user builds.
  type su, domain;
  domain_auto_trans(shell, su_exec, su)