Hi Yuru, SEAndroid and SELinux have different format and are used in different levels in the Android Architecture. SEAndroid is a Middleware MAC. It acts between the Permission Framework (Application level) and SELinux (Linux kernel).
If you want to analyze an SEAndroid policy you can checkout the setool here: git clone https://bitbucket.org/seandroid/external-sepolicy.git (see tools/setool) This branch contains the setool, basically a set of java classes. It can be used to generate policy stanza from an app, and check if the policy stanza fulfills the default policy. hints about SEAndroid: - http://selinuxproject.org/page/SEAndroid - Security Enhanced (SE) Android: Bringing Flexible MAC to Android (paper) Hope it is useful to you. Best, Simone 2013/10/19 邵玉如 <[email protected]> > Hi everyone, > > I am trying to analyze SEAndroid policies with setools ( > http://oss.tresys.com/projects/setools), but it seems that SEAndroid and > SELinux have different policy format, thus setools cannot perform analysis. > > Is there any way to analyze SEAndroid policies automatically? > > Many thanks, > Yuru Shao >
