summaryrefslogtreecommitdiffstats
path: root/init/subcontext.cpp
diff options
context:
space:
mode:
Diffstat (limited to 'init/subcontext.cpp')
-rw-r--r--init/subcontext.cpp15
1 files changed, 9 insertions, 6 deletions
diff --git a/init/subcontext.cpp b/init/subcontext.cpp
index 85da23734..927953d67 100644
--- a/init/subcontext.cpp
+++ b/init/subcontext.cpp
@@ -23,6 +23,7 @@
#include <android-base/file.h>
#include <android-base/logging.h>
+#include <android-base/properties.h>
#include <android-base/strings.h>
#include <selinux/android.h>
@@ -30,6 +31,7 @@
#include "system/core/init/subcontext.pb.h"
#include "util.h"
+using android::base::GetBoolProperty;
using android::base::GetExecutablePath;
using android::base::Join;
using android::base::Socketpair;
@@ -258,12 +260,13 @@ Result<Success> Subcontext::Execute(const std::vector<std::string>& args) {
static std::vector<Subcontext> subcontexts;
std::vector<Subcontext>* InitializeSubcontexts() {
- static const char* const paths_and_secontexts[][2] = {
- // TODO: Enable this once the SEPolicy is in place.
- // {"/vendor", kVendorContext.c_str()},
- };
- for (const auto& [path_prefix, secontext] : paths_and_secontexts) {
- subcontexts.emplace_back(path_prefix, secontext);
+ if (GetBoolProperty("ro.init.subcontexts_enabled", false)) {
+ static const char* const paths_and_secontexts[][2] = {
+ {"/vendor", kVendorContext.c_str()},
+ };
+ for (const auto& [path_prefix, secontext] : paths_and_secontexts) {
+ subcontexts.emplace_back(path_prefix, secontext);
+ }
}
return &subcontexts;
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-12-28 00:54:38 +0000