Archives/MinMicroG
2
0
Fork 0
mirror of https://github.com/FriendlyNeighborhoodShane/MinMicroG synced 2024-11-15 00:12:48 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add privapp whitelist incomplete build-time alternative

Browse Source
This commit is contained in:
FriendlyNeighborhoodShane 2020-03-23 15:44:20 +05:30
parent ae8c7119fa
commit 14812b1782
1 changed files with 33 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

33
conf/createwhitelist.txt
View File

@ -143,3 +143,36 @@ createwhitelist() {
done; done;
} }
checkwhitelist() {
echo " ";
echo " - Checking priv-app permissions...";
aapt="util/aapt";
privpermlist="util/privperms.lst";
[ -f "$resdldir/$privpermlist" ] || { echo "ERROR: No privileged permission list to check" >&2; return 1; }
[ -f "$resdldir/$aapt" ] || { echo "ERROR: No aapt found" >&2; return 1; }
privlogfile="$(ls -t $reldir/update-*.log | head)";
for privappfile in $(cat "$reldir/$privlogfile" | grep -Po "FILE: [^,]*" | cut -d" " -f2 | grep -o "/system/priv-app/.*/.*.apk"); do
[ -f "$privappfile" ] || { echo "ERROR: Privapp $privappfile not found" >&2; continue; }
privperms="";
privapppackage="$("$resdldir/$aapt" dump badging "$privappfile" | grep -o "package: name=[^ ]*" | sed "s|'| |g" | awk '{ print $3 }')"
privappperms="$("$resdldir/$aapt" dump permissions "$privappfile" | grep -o "uses-permission: name=[^ ]*" | sed "s|'| |g" | awk '{ print $3 }' | sort -u)";
for privperm in in $privappperms; do
grep -q "$privperm" "$resdldir/$privpermlist" || continue;
grep -q "$privperm" "$resdir/system/etc/permissions/$privapppackage.xml" && continue;
privperms="$privperm $privperms";
done;
[ "$privperms" ] || continue;
echo " ";
echo " -- File: $privappfile";
echo " -- Package: $privapppackage";
for permentry in $privperms; do
echo " ++ Needs whitelisting perm $permentry";
done;
done;
}