mirror of
https://gitlab.com/Nanolx/NanoDroid
synced 2024-10-31 09:20:23 +00:00
128 lines
3.5 KiB
Bash
Executable File
128 lines
3.5 KiB
Bash
Executable File
#!/system/bin/sh
|
|
|
|
# Permissions
|
|
perm_fake="android.permission.FAKE_PACKAGE_SIGNATURE"
|
|
perm_floc="android.permission.ACCESS_FINE_LOCATION"
|
|
perm_cloc="android.permission.ACCESS_COARSE_LOCATION"
|
|
perm_bloc="android.permission.ACCESS_BACKGROUND_LOCATION"
|
|
perm_phon="android.permission.READ_PHONE_STATE"
|
|
perm_rext="android.permission.READ_EXTERNAL_STORAGE"
|
|
perm_wext="android.permission.WRITE_EXTERNAL_STORAGE"
|
|
perm_calr="android.permission.READ_CALENDAR"
|
|
perm_calw="android.permission.WRITE_CALENDAR"
|
|
perm_conr="android.permission.READ_CONTACTS"
|
|
perm_conw="android.permission.WRITE_CONTACTS"
|
|
perm_gacc="android.permission.GET_ACCOUNTS"
|
|
perm_rsms="android.permission.RECEIVE_SMS"
|
|
|
|
# Packages
|
|
microG="com.google.android.gms"
|
|
PlayStore="com.android.vending"
|
|
DroidGuard="org.microg.gms.droidguard"
|
|
GCalSync="com.google.android.syncadapters.calendar"
|
|
GConSync="com.google.android.syncadapters.contacts"
|
|
nlpIchnaea="org.microg.nlp.backend.ichnaea"
|
|
nlpDejavu="org.fitchfamily.android.dejavu"
|
|
nlpApple="org.microg.nlp.backend.apple"
|
|
nlpBmap="org.openbmap.unifiedNlp"
|
|
|
|
# GmsCore userId
|
|
gms_uid=$(dumpsys package com.google.android.gms | awk -F= '/userId/{print $2; exit}')
|
|
|
|
error () {
|
|
echo "!! ${@}"
|
|
exit 1
|
|
}
|
|
|
|
check_package () {
|
|
pm list packages | grep -q "^package:${1}$" && return 0 || return 1
|
|
}
|
|
|
|
check_permission () {
|
|
[[ $(dumpsys package ${1} | grep -Eo "^[ ]+${2}: granted=false") ]] && return 1 || return 0
|
|
}
|
|
|
|
grant_permission () {
|
|
if [ -n "${3}" ]; then
|
|
pm grant --user ${3} ${1} ${2} 2>/dev/null
|
|
else
|
|
pm grant ${1} ${2} 2>/dev/null
|
|
fi
|
|
}
|
|
|
|
permissions () {
|
|
if check_package ${1}; then
|
|
echo "package ${1} found"
|
|
if ! check_permission ${1} ${2}; then
|
|
grant_permission ${1} ${2} ${3} && \
|
|
echo "permission ${2} granted" || \
|
|
echo "failed to grant permission ${2}"
|
|
else echo "already has permission ${2}"
|
|
fi
|
|
fi
|
|
}
|
|
|
|
get_app_location () {
|
|
pm list packages -f ${1} | sed 's|package:\(.*\)=[^=]*|\1|g'
|
|
}
|
|
|
|
user_install_app () {
|
|
pm install -r ${1}
|
|
}
|
|
|
|
user_install () {
|
|
check_package ${1} || return
|
|
loc=$(get_app_location ${1})
|
|
case ${loc} in
|
|
/data/* ) echo "package ${1} already is user app" ;;
|
|
* )
|
|
user_install_app ${loc} && \
|
|
echo "package ${1} installed as user app" || \
|
|
echo "failed to install package ${1} as user app"
|
|
;;
|
|
esac
|
|
}
|
|
|
|
[[ $(whoami) = "root" ]] || [[ $(whoami) = "shell" ]] || error "not running as either ADB or root"
|
|
|
|
if [ "$(getprop ro.build.version.sdk)" -ge 29 ]; then
|
|
# microG GmsCore needs to be installed as user app for all permissions to be granted
|
|
# see https://github.com/microg/android_packages_apps_GmsCore/issues/1100#issuecomment-711088518
|
|
user_install ${microG}
|
|
fi
|
|
|
|
# microG DroidGuard Helper needs to be installed as user app to prevent crashes
|
|
user_install ${DroidGuard}
|
|
|
|
# Fake Package Signature
|
|
permissions ${microG} ${perm_fake}
|
|
permissions ${PlayStore} ${perm_fake}
|
|
|
|
# Location
|
|
for app in ${microG} ${nlpIchnaea} ${nlpDejavu} ${nlpApple} ${nlpBmap}; do
|
|
permissions ${app} ${perm_cloc}
|
|
done
|
|
|
|
for app in ${microG} ${nlpIchnaea} ${nlpDejavu} ${nlpApple}; do
|
|
permissions ${app} ${perm_floc}
|
|
done
|
|
|
|
# Restricted permissions
|
|
permissions ${microG} ${perm_bloc} ${gms_uid}
|
|
permissions ${microG} ${perm_rsms} ${gms_uid}
|
|
|
|
# Misc. permissions
|
|
permissions ${microG} ${perm_gacc}
|
|
permissions ${microG} ${perm_phon}
|
|
permissions ${microG} ${perm_rext}
|
|
permissions ${microG} ${perm_wext}
|
|
|
|
# Google Calendar Sync
|
|
permissions ${GCalSync} ${perm_calr}
|
|
permissions ${GCalSync} ${perm_calw}
|
|
|
|
# Google Contacts Sync
|
|
permissions ${GConSync} ${perm_conr}
|
|
permissions ${GConSync} ${perm_conw}
|
|
permissions ${GConSync} ${perm_gacc}
|