From 55ddeb63fb1b7cf367e58532c12a051edce6e50a Mon Sep 17 00:00:00 2001
From: Jiu <99115192+JiuGeFaCai@users.noreply.github.com>
Date: Mon, 17 Nov 2025 18:06:02 +0800
Subject: [PATCH] Susfs main (#592)

* Update rules.c

* Update selinux.c

* Rename susfs_set_kernel_sid to susfs_set_priv_app_sid
---
 kernel/selinux/rules.c   |  4 ++--
 kernel/selinux/selinux.c | 10 +++++-----
 kernel/selinux/selinux.h |  2 +-
 3 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/kernel/selinux/rules.c b/kernel/selinux/rules.c
index 9d9132f4..65206b5f 100644
--- a/kernel/selinux/rules.c
+++ b/kernel/selinux/rules.c
@@ -145,7 +145,7 @@ void apply_kernelsu_rules(void)
 #ifdef CONFIG_KSU_SUSFS
     // Allow umount in zygote process without installing zygisk
     ksu_allow(db, "zygote", "labeledfs", "filesystem", "unmount");
-    susfs_set_kernel_sid();
+    susfs_set_priv_app_sid();
     susfs_set_init_sid();
     susfs_set_ksu_sid();
     susfs_set_zygote_sid();
@@ -535,4 +535,4 @@ exit:
     reset_avc_cache();
 
     return ret;
-}
\ No newline at end of file
+}
diff --git a/kernel/selinux/selinux.c b/kernel/selinux/selinux.c
index 303884f0..6d76e9b4 100644
--- a/kernel/selinux/selinux.c
+++ b/kernel/selinux/selinux.c
@@ -170,14 +170,14 @@ u32 ksu_get_ksu_file_sid()
 #ifdef CONFIG_KSU_SUSFS
 #define KERNEL_INIT_DOMAIN "u:r:init:s0"
 #define KERNEL_ZYGOTE_DOMAIN "u:r:zygote:s0"
-#define KERNEL_KERNEL_DOMAIN "u:r:kernel:s0"
+#define KERNEL_PRIV_APP_DOMAIN "u:r:priv_app:s0:c512,c768"
 #ifndef KERNEL_SU_DOMAIN
 #define KERNEL_SU_DOMAIN "u:r:su:s0"
 #endif // #ifndef KERNEL_SU_DOMAIN
 u32 susfs_ksu_sid = 0;
 u32 susfs_init_sid = 0;
 u32 susfs_zygote_sid = 0;
-u32 susfs_kernel_sid = 0;
+u32 susfs_priv_app_sid = 0;
 
 static inline void susfs_set_sid(const char *secctx_name, u32 *out_sid)
 {
@@ -254,8 +254,8 @@ bool susfs_is_current_init_domain(void) {
     return unlikely(current_sid() == susfs_init_sid);
 }
 
-void susfs_set_kernel_sid(void)
+void susfs_set_priv_app_sid(void)
 {
-    susfs_set_sid(KERNEL_KERNEL_DOMAIN, &susfs_kernel_sid);
+    susfs_set_sid(KERNEL_PRIV_APP_DOMAIN, &susfs_priv_app_sid);
 }
-#endif
\ No newline at end of file
+#endif
diff --git a/kernel/selinux/selinux.h b/kernel/selinux/selinux.h
index 5e8eb793..7ae6046d 100644
--- a/kernel/selinux/selinux.h
+++ b/kernel/selinux/selinux.h
@@ -39,7 +39,7 @@ void susfs_set_ksu_sid(void);
 bool susfs_is_current_ksu_domain(void);
 void susfs_set_init_sid(void);
 bool susfs_is_current_init_domain(void);
-void susfs_set_kernel_sid(void);
+void susfs_set_priv_app_sid(void);
 #endif // #ifdef CONFIG_KSU_SUSFS
 
 #endif