xref: /ohos5.0/base/startup/appspawn/appdata-sandbox-app.json

{
    "global": {
        "sandbox-root": "/mnt/sandbox/<currentUserId>/app-root",
        "sandbox-ns-flags": [ "pid" ]
    },
    "required": {
        "system-const": {
            "mount-paths": [{
                "src-path" : "/config",
                "sandbox-path" : "/config"
            }, {
                "src-path" : "/dev",
                "sandbox-path" : "/dev"
            }, {
                "src-path" : "/proc",
                "sandbox-path" : "/proc"
            }, {
                "src-path" : "/sys",
                "sandbox-path" : "/sys"
            }, {
                "src-path" : "/sys_prod",
                "sandbox-path" : "/sys_prod"
            }, {
                "src-path" : "/system/app",
                "sandbox-path" : "/system/app"
            }, {
                "src-path" : "/system/fonts",
                "sandbox-path" : "/system/fonts"
            }, {
                "src-path" : "/system/<lib>",
                "sandbox-path" : "/system/<lib>"
            }, {
                "src-path" : "/system/<lib>/platformsdk",
                "sandbox-path" : "/system/<lib>/platformsdk"
            }, {
                "src-path" : "/system/<lib>/ndk",
                "sandbox-path" : "/system/<lib>/ndk"
            }, {
                "src-path" : "/system/<lib>/module",
                "sandbox-path" : "/system/<lib>/module"
            }, {
                "src-path" : "/system/<lib>/chipset-pub-sdk",
                "sandbox-path" : "/system/<lib>/chipset-pub-sdk"
            }, {
                "src-path" : "/system/<lib>/chipset-sdk",
                "sandbox-path" : "/system/<lib>/chipset-sdk"
            }, {
                "src-path" : "/system/<lib>/seccomp",
                "sandbox-path" : "/system/<lib>/seccomp"
            }, {
                "src-path" : "/system/<lib>/extensionability",
                "sandbox-path" : "/system/<lib>/extensionability"
            }, {
                "src-path" : "/system/<lib>/media",
                "sandbox-path" : "/system/<lib>/media"
            }, {
                "src-path" : "/system/data",
                "sandbox-path" : "/system/data"
            }, {
                "src-path" : "/system/usr",
                "sandbox-path" : "/system/usr"
            }, {
                "src-path" : "/system/profile",
                "sandbox-path" : "/system/profile"
            }, {
                "src-path" : "/system/bin",
                "sandbox-path" : "/system/bin"
            }, {
                "src-path" : "/system/etc",
                "sandbox-path" : "/system/etc"
            }, {
                "src-path" : "/system/etc/hosts",
                "sandbox-path" : "/data/service/el1/network/hosts_user/hosts"
            }, {
                "src-path" : "/system/resource",
                "sandbox-path" : "/system/resource"
            }, {
                "src-path" : "/vendor/<lib>",
                "sandbox-path" : "/vendor/<lib>"
            }, {
                "src-path" : "/vendor/etc/vulkan",
                "sandbox-path" : "/vendor/etc/vulkan"
            }, {
                "src-path" : "/vendor/etc/hiai",
                "sandbox-path" : "/vendor/etc/hiai"
            }, {
                "src-path" : "/data/local/shader_cache/cloud/common",
                "sandbox-path" : "/data/storage/shader_cache/common"
            }, {
                "src-path" : "/data/service/el0/public/for-all-app",
                "sandbox-path" : "/data/service/el0/public/for-all-app"
            }, {
                "src-path" : "/data/service/el1/public/for-all-app",
                "sandbox-path" : "/data/service/el1/public/for-all-app"
            }, {
                "src-path": "/storage/media/<currentUserId>/local/files/Docs/Downloads/<PackageName>",
                "sandbox-path": "/storage/Users/<currentUserId>/Downloads"
            }, {
                "src-path" : "/mnt/hmdfs/<currentUserId>/cloud/data/<PackageName>",
                "sandbox-path" : "/data/storage/el2/cloud"
            }, {
                "src-path" : "/data/data/hiai",
                "sandbox-path" : "/data/data/hiai"
            }, {
                "src-path" : "/chip_prod/lib64/passthrough",
                "sandbox-path" : "/chip_prod/lib64/passthrough"
            }],
            "mount-files": [{
                "src-path" : "/system/<lib>/ld-musl-arm.so.1",
                "sandbox-path" : "/system/<lib>/ld-musl-arm.so.1"
            }],
            "symbol-links" : [{
                "target-name" : "/system/bin",
                "link-name" : "/bin",
                "check-action-status": "false"
            }, {
                "target-name" : "/system/lib",
                "link-name" : "/lib",
                "check-action-status": "false"
            }, {
                "target-name" : "/system/etc",
                "link-name" : "/etc",
                "check-action-status": "false"
            }, {
                "target-name" : "/sys/kernel/debug",
                "link-name" : "/d",
                "check-action-status": "false"
            }],
            "mount-groups" : []
        },
        "app-variable": {
            "mount-paths": [{
                "src-path": "/data/app/el1/<currentUserId>/base/<variablePackageName>",
                "sandbox-path": "/data/storage/el1/base"
            }, {
                "src-path": "/data/app/el1/<currentUserId>/database/<variablePackageName>",
                "sandbox-path": "/data/storage/el1/database"
            }, {
                "src-path" : "/system/app/ohos.global.systemres",
                "sandbox-path" : "/data/global/systemResources"
            }, {
                "src-path" : "/system/app/SystemResources",
                "sandbox-path" : "/data/global/systemResources"
            }, {
                "src-path" : "/data/app/el1/bundle/public/<PackageName>",
                "sandbox-path" : "/data/storage/el1/bundle",
                "check-action-status": "true"
            }, {
                "src-path" : "/data/misc",
                "sandbox-path" : "/data/storage/el1/bundle/misc"
            }, {
                "src-path" : "/data/local/ark-cache/<PackageName>",
                "sandbox-path" : "/data/storage/ark-cache"
            }, {
                "src-path" : "/data/local/ark-profile/<currentUserId>/<PackageName>",
                "sandbox-path" : "/data/storage/ark-profile"
            }, {
                "src-path" : "/data/local/shader_cache/local/<PackageName>",
                "sandbox-path" : "/data/storage/shader_cache/local"
            }, {
                "src-path" : "/data/local/shader_cache/cloud/<PackageName>",
                "sandbox-path" : "/data/storage/shader_cache/cloud"
            }, {
                "src-path" : "/mnt/share/<currentUserId>/<PackageName_index>",
                "sandbox-path" : "/data/storage/el2/share"
            }, {
                "src-path" : "/data/service/el1/public/themes/<currentUserId>/a/app",
                "sandbox-path" : "/data/themes/a/app"
            }, {
                "src-path" : "/data/service/el1/public/themes/<currentUserId>/b/app",
                "sandbox-path" : "/data/themes/b/app"
            }, {
                "src-path" : "/data/service/el1/<currentUserId>/utdtypes/utd",
                "sandbox-path" : "/data/utd"
            }, {
                "src-path" : "/data/service/el1/public/cert_manager_service/certificates/user_open",
                "sandbox-path" : "/data/certificates/user_cacerts"
            }, {
                "src-path" : "/data/app/el1/bundle/public/<arkWebPackageName>",
                "sandbox-path" : "/data/storage/el1/bundle/arkwebcore"
            },{
                "src-path" : "/mnt/hmdfs/<currentUserId>",
                "sandbox-path" : "/mnt/hmdfs/<currentUserId>"
            }],
            "mount-groups": ["el2", "el3", "el4"]
        }
    },
    "conditional": {
        "permission": [{
            "name": "ohos.permission.FILE_ACCESS_MANAGER",
            "sandbox-switch": "ON",
            "gids": ["file_manager", "user_data_rw"],
            "mount-paths": [{
                "src-path": "/storage/media/<currentUserId>/local/files/Docs",
                "sandbox-path": "/storage/Users/<currentUserId>"
            }, {
                "src-path": "/storage/media/<currentUserId>/local/files/.Recent",
                "sandbox-path": "/storage/Users/<currentUserId>/.Recent"
            }],
            "mount-groups": [ "user-public" ]
        }, {
            "name": "ohos.permission.READ_IMAGEVIDEO",
            "sandbox-switch": "ON",
            "gids": ["user_data_rw"],
            "mount-paths": [{
                "src-path": "/storage/cloud/<currentUserId>/files/.thumbs/Photo",
                "sandbox-path": "/storage/Share/.thumbs/Photo"
            }]
        }, {
            "name": "ohos.permission.FILE_CROSS_APP",
            "gids": ["file_manager"],
            "mount-paths": [{
                "src-path": "/storage/media/<currentUserId>/local/files/Docs",
                "sandbox-path": "/storage/Users/<currentUserId>"
            }, {
                "src-path": "/data/app/el1/<currentUserId>/base",
                "sandbox-path": "/storage/Users/<currentUserId>/appdata/el1",
                "category": "dac_override"
            }, {
                "src-path": "/data/app/el2/<currentUserId>/base",
                "sandbox-path": "/storage/Users/<currentUserId>/appdata/el2",
                "category": "dac_override"
            }],
            "mount-groups": [ "user-public" ]
        }, {
            "name": "ohos.permission.ACTIVATE_THEME_PACKAGE",
            "mount-paths": [{
                "src-path": "/data/service/el1/public/themes/<currentUserId>/a/system",
                "sandbox-path": "/data/themes/a/system"
            }, {
                "src-path": "/data/service/el1/public/themes/<currentUserId>/b/system",
                "sandbox-path": "/data/themes/b/system"
            }, {
                "src-path": "/data/service/el1/public/themes/<currentUserId>/fa",
                "sandbox-path": "/data/themes/f"
            },{
                "src-path": "/data/service/el1/public/themes/<currentUserId>/share",
                "sandbox-path": "/data/themes/s"
            }]
        }, {
            "name": "ohos.permission.GET_WALLPAPER",
            "mount-paths": [{
                "src-path": "/data/service/el1/public/wallpaper/<currentUserId>",
                "sandbox-path": "/data/wallpaper"
            }]
        }, {
            "name": "ohos.permission.ACCESS_BUNDLE_DIR",
            "gids": ["wifi"],
            "mount-paths": [{
                "src-path": "/data/app/el1/bundle/public",
                "sandbox-path": "/data/bundles/"
            }]
        }, {
            "name": "ohos.permission.ACCESS_PROTOCOL_DFX_DATA",
            "mount-paths": [{
                "src-path": "/data/log/protocol",
                "sandbox-path": "/data/log/protocol"
            }, {
                "src-path": "/log/chr",
                "sandbox-path": "/log/chr"
            }]
        }, {
            "name": "ohos.permission.ACCESS_MEDIALIB_THUMB_DB",
            "gids": [3008],
            "mount-paths": [{
                    "src-path": "/data/app/el2/<currentUserId>/database/com.ohos.medialibrary.medialibrarydata",
                    "sandbox-path": "/data/medialibrary/database"
                }
            ]
        }, {
            "name": "ohos.permission.ACCESS_SHADER_CACHE_DIR",
            "mount-paths": [{
                "src-path": "/data/local/shader_cache",
                "sandbox-path": "/data/storage/shader_caches"
            }]
        }, {
            "name": "ohos.permission.ACCESS_HIVIEWX",
            "mount-paths": [{
                "src-path": "/data/log/UserView",
                "sandbox-path": "/data/log/UserView"
            }]
        }, {
            "name": "ohos.permission.PROTECT_SCREEN_LOCK_DATA",
            "mount-paths": [{
                "src-path": "/data/app/el5/<currentUserId>/base/<PackageName>",
                "sandbox-path": "/data/storage/el5/base"
            }, {
                "src-path": "/data/app/el5/<currentUserId>/database/<PackageName>",
                "sandbox-path": "/data/storage/el5/database"
            }]
        }, {
            "name": "ohos.permission.ACCESS_FILE_CONTENT_SHARE",
            "sandbox-switch": "ON",
            "gids": ["file_manager", "user_data_rw"],
            "mount-paths": [{
              "src-path": "/data/service/el2/public/file_monitor_service/content_share",
              "sandbox-path": "/storage/ContentShare"
           }]
        }, {
            "name": "ohos.permission.ACCESS_LOCAL_BACKUP",
            "gids": [1023],
            "mount-paths": [{
                "src-path": "/data/hwbackup",
                "sandbox-path": "/data/hwbackup"
            }]
        }, {
            "name": "ohos.permission.ACCESS_APP_INSTALL_DIR",
            "sandbox-switch": "ON",
            "gids": ["app_install"],
            "mount-paths": [{
                "src-path": "/data/service/el1/public/bms/bundle_manager_service/app_install/<currentUserId>/",
                "sandbox-path": "/data/bms_app_install/"
            }]
        }],
        "spawn-flag": [{
            "name": "START_FLAGS_BACKUP",
            "mount-paths": [{
                "src-path": "/data/app/el2/<currentUserId>/base/<variablePackageName>/.backup",
                "sandbox-path": "/data/storage/el2/backup"
            }, {
                "src-path": "/data/app/el1/<currentUserId>/base/<variablePackageName>/.backup",
                "sandbox-path": "/data/storage/el1/backup"
            }],
            "mount-groups": []
        }, {
            "name": "DLP_MANAGER",
            "mount-paths": [ {
                "src-path": "/data/app/el1/<currentUserId>/base/<PackageName_index>",
                "sandbox-path": "/data/storage/el1/base"
            }, {
                "src-path": "/data/app/el1/<currentUserId>/database/<PackageName_index>",
                "sandbox-path": "/data/storage/el1/database"
            }, {
                "src-path": "/data/app/el2/<currentUserId>/base/<PackageName_index>",
                "sandbox-path": "/data/storage/el2/base"
            }, {
                "src-path": "/data/app/el2/<currentUserId>/database/<PackageName_index>",
                "sandbox-path": "/data/storage/el2/database"
            }, {
                "src-path": "/data/app/el2/<currentUserId>/log/<PackageName_index>",
                "sandbox-path": "/data/storage/el2/log"
            }, {
                "src-path": "/mnt/share/<currentUserId>/<PackageName_index>",
                "sandbox-path": "/data/storage/el2/share"
            }],
            "mount-groups": []
        }, {
            "name": "DEVELOPER_MODE",
            "mount-paths": [{
                "src-path": "/data/app/el1/bundle/<currentUserId>/hnppublic",
                "sandbox-path": "/data/service/hnp"
            }, {
                "src-path" : "/data/app/el1/bundle/<currentUserId>/hnp/<PackageName>",
                "sandbox-path" : "/data/app"
            }
        ]}],
        "package-name": [{
            "name": "com.ohos.medialibrary.medialibrarydata",
            "mount-paths" : [{
                "src-path" : "/storage/media/<currentUserId>",
                "sandbox-path" : "/storage/media"
            }, {
                "src-path" : "/data/service/el2/<currentUserId>/hmdfs/cache/account_cache",
                "sandbox-path" : "/data/service/el2/<currentUserId>/hmdfs/cache/account_cache"
            }, {
                "src-path" : "/storage/cloud/<currentUserId>",
                "sandbox-path" : "/storage/cloud"
            }, {
                "src-path" : "none",
                "sandbox-path" : "/storage/cloud/epfs",
                "category": "epfs"
            }, {
                "src-path" : "/mnt/data/<currentUserId>",
                "sandbox-path" : "/mnt/data/<currentUserId>"
            }]
        }, {
            "name" : "com.ohos.amsdialog",
            "sandbox-switch": "ON",
            "mount-paths" : [{
                "src-path" : "/data/app/el1/bundle/public/",
                "sandbox-path" : "/data/bundles/",
                "check-action-status": "true"
            }],
            "symbol-links" : []
        }, {
            "name": "com.ohos.dlpmanager",
            "sandbox-switch": "ON",
            "sandbox-shared" : "true",
            "mount-paths" :[{
                "src-path" : "/mnt/data/<currentUserId>",
                "sandbox-path" : "/mnt/data",
                "category": "shared",
                "check-action-status": "true"
            }, {
                "src-path" : "/dev/fuse",
                "sandbox-path" : "/mnt/data/fuse",
                "category": "dlp_fuse"
            }],
            "mount-groups": ["dlpmgr"]
        }, {
            "name" : "com.ohos.permissionmanager",
            "sandbox-switch": "ON",
            "mount-paths" : [{
                    "src-path" : "/data/app/el1/bundle/public/",
                    "sandbox-path" : "/data/bundles/",
                    "check-action-status": "true"
                }
            ],
            "symbol-links" : []
        }]
    },
    "name-groups": [{
        "name": "user-public",
        "type": "system-const",
        "mount-paths": [{
            "src-path": "/data/service/el1/public/storage_daemon/share/public",
            "sandbox-path": "/storage/Share"
        }, {
            "src-path": "/mnt/data/external",
            "sandbox-path": "/storage/External"
        }]
    }, {
        "name": "el2",
        "type": "app-variable",
        "deps-mode": "not-exists",
        "mount-paths-deps": {
            "src-path": "/data/app/el2/<currentUserId>/base",
            "sandbox-path": "/data/storage/el2",
            "category": "shared"
        },
        "mount-paths": [{
            "src-path": "/data/app/el2/<currentUserId>/base/<variablePackageName>",
            "sandbox-path": "<deps-path>/base"
        }, {
            "src-path": "/data/app/el2/<currentUserId>/database/<variablePackageName>",
            "sandbox-path": "<deps-path>/database"
        }, {
            "src-path": "/data/app/el2/<currentUserId>/log/<variablePackageName>",
            "sandbox-path": "<deps-path>/log"
        }, {
            "src-path": "/mnt/hmdfs/<currentUserId>/non_account/merge_view/data",
            "sandbox-path": "<deps-path>/auth_groups"
        }, {
            "src-path": "/mnt/hmdfs/<currentUserId>/account/merge_view/data/<PackageName>",
            "sandbox-path": "<deps-path>/distributedfiles"
        }, {
            "src-path": "/mnt/share/<currentUserId>/<PackageName_index>",
            "sandbox-path": "<deps-path>/share"
        }]
    }, {
        "name": "el3",
        "type": "app-variable",
        "deps-mode": "not-exists",
        "mount-paths-deps": {
            "src-path": "/data/app/el3/<currentUserId>/base",
            "sandbox-path": "/data/storage/el3",
            "category": "shared"
        },
        "mount-paths": [{
            "src-path": "/data/app/el3/<currentUserId>/base/<variablePackageName>",
            "sandbox-path": "<deps-path>/base"
        }, {
            "src-path": "/data/app/el3/<currentUserId>/database/<variablePackageName>",
            "sandbox-path": "<deps-path>/database"
        }]
    }, {
        "name": "el4",
        "type": "app-variable",
        "deps-mode": "not-exists",
        "mount-paths-deps": {
            "src-path": "/data/app/el4/<currentUserId>/base",
            "sandbox-path": "/data/storage/el4",
            "category": "shared"
        },
        "mount-paths": [{
            "src-path": "/data/app/el4/<currentUserId>/base/<variablePackageName>",
            "sandbox-path": "<deps-path>/base"
        }, {
            "src-path": "/data/app/el4/<currentUserId>/database/<variablePackageName>",
            "sandbox-path": "<deps-path>/database"
        }]
    }, {
        "name": "HspList",
        "type": "app-variable",
        "mount-paths": [{
            "src-path": "/data/app/el1/bundle/public/<bundle-name>/<version>/<module-name>",
            "sandbox-path": "/data/storage/el2/group/<bundle-name>/<module-name>"
        }]
    }, {
        "name": "DataGroup",
        "type": "app-variable",
        "mount-paths": [{
            "src-path": "<data-dir>",
            "sandbox-path": "/data/storage/el2/group/<data-uuid>"
        }]
    }, {
        "name": "Overlay",
        "type": "app-variable",
        "mount-paths": [{
            "src-path": "<hap-path>",
            "sandbox-path": "/data/storage/overlay/<hap-name>",
            "category": "shared"
        }]
    }]
}