This repo contains the MTK SELinux policy configuration for BSP project.
It is built in BSP project by default.
BSP means Board Support Package.
Configuration files:
../../*/common/device.mk
../../*/common/BoardConfig.mk
Directory structure description:
./debug:
This directory contains the MTK SELinux policy configuration for debug features.
It defines the domains and types for MTK debug services and apps common to all devices.
It isn't built in Customer user load with MTK_LOG_CUSTOMER_SUPPORT = no by default.
./neverallows:
This directory contains the MTK SELinux policy configuration for neverallows.
It extends the AOSP neverallows to all devices.
./non_plat
./*/non_plat:
These directories contains the MTK SELinux policy configuration for vendor.
It defines the domains and types for MTK services running in /vendor all devices.
It is built into vendor.img:/vendor/etc/selinux.
./plat_private
./*/plat_private:
These directories contains the MTK SELinux policy configuration for platform private.
It extends the domains and types for the AOSP services and apps common to all devices.
It is built into system.img:/system/system_ext/etc/selinux or system_ext.img:
/system_ext/etc/selinux.
./plat_public
./*/plat_public:
These directories contains the MTK SELinux policy configuration for platform public.
It defines the domains and types for MTK services running in /system all devices.
It is built into vendor.img:/vendor/etc/selinux & system.img:/system/system_ext/etc/selinux
or system_ext.img:/system_ext/etc/selinux.
