No, This configuration app is not the system app. Its job is just to download configuration data from server. Since our devices support various deployment scenarios, thus, various protocols involved in dealing with configuration data. Thus, we have multiple configuration process dealing with getting configuration data depending on deployment scenarios. As a result, some of these configuration processes are low privilege process, not system app.
Tai On 4/6/15, 10:14 AM, "Stephen Smalley" <[email protected]> wrote: >On 04/06/2015 09:57 AM, Tai Nguyen (tainguye) wrote: >> That is a good question. Currently, we have a constraint requirement >>that >> a configuration app can write data to this system app directory and we >> donĀ¹t want to give write permission to system_app_data_file to the >> configuration app. Thus, we decide to relabel the dir to app_data_file >> instead. > >Not sure I follow. The configuration app is also a platform-signed app, >right? And it probably also runs with system UID as otherwise it can't >pass the DAC checks to write to the file? So what is your concern with >having it write to system_app_data_file? > > _______________________________________________ Seandroid-list mailing list [email protected] To unsubscribe, send email to [email protected]. To get help, send an email containing "help" to [email protected].
